HIPAA COMPLIANCE STATEMENT

Embody + Mind Collective, PLLC
At Embody + Mind Collective, we are committed to protecting the privacy and confidentiality of your personal health information in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and all applicable federal and state privacy laws.

Our Responsibilities Under HIPAA
As a HIPAA-compliant practice, we are required to:
  • Maintain the privacy and security of your protected health information (PHI)
  • Provide you with a Notice of Privacy Practices that outlines how your information may be used or disclosed
  • Only use or disclose your PHI for treatment, payment, and health care operations, or as otherwise required or permitted by law
  • Obtain written authorization from you before using or disclosing your information for purposes outside of treatment, payment, or operations (unless legally exempt)
  • Offer you access to your records, the ability to request amendments, and information about disclosures of your PHI upon request

How We Protect Your Information
We implement a combination of administrative, physical, and technical safeguards to protect your personal health information, including:
  • Secure electronic health records and data encryption
  • Password-protected access and secure networks
  • Confidential communication protocols for telehealth and email
  • Staff training and adherence to HIPAA-compliant policies and procedures

Your Rights Under HIPAA
As a client of Embody + Mind Collective, you have the right to:
  • Request a copy of your medical record
  • Ask for corrections to your health information
  • Request restrictions on certain uses or disclosures
  • Choose how we communicate with you (e.g., by phone, email, or mail)
  • File a complaint if you believe your rights have been violated

If you have questions about our privacy practices or your rights under HIPAA, please contact us at:

We are here to support you and are committed to protecting your privacy every step of the way.