Compliance & HIPAA Policy

Protecting Privacy, Integrity, and Trust

Doctiplus Care Agency is committed to operating with integrity, accountability, and full compliance with all applicable healthcare laws and regulations. Protecting the privacy, dignity, and personal health information of every individual we serve is a core responsibility we take seriously.

This Compliance & HIPAA Policy outlines our commitment to safeguarding sensitive information, with particular focus on the Health Insurance Portability and Accountability Act (HIPAA).

Understanding HIPAA

HIPAA, the Health Insurance Portability and Accountability Act of 1996, is a federal law that establishes national standards for protecting sensitive patient health information. It applies to healthcare providers, home care agencies, and their business partners.

HIPAA requires that Protected Health Information (PHI) be safeguarded in all forms, including:

• Paper medical records.
• Verbal communication.
• Electronic health information.

PHI includes, but is not limited to:
• Names, addresses, and contact information.
• Medical histories and diagnoses.
• Treatment plans and care notes.
• Insurance and billing information.

Doctiplus Commitment to Confidentiality

Every individual in our care has the right to privacy and confidentiality. Doctiplus does not use, access, disclose, or discuss client-specific health information unless:

Treatment and care

Using health information to deliver, coordinate, and manage safe patient care across settings.

Quality improvement

Reviewing data to evaluate performance, reduce errors, and improve outcomes and patient safety.

Billing and insurance

Using necessary information to process claims, verify coverage, and manage payment accurately.

Legal and regulatory

Disclosing information when required to meet laws, audits, reporting, and regulatory duties.

How We Protect Protected Health Information (PHI)

Doctiplus uses appropriate administrative, physical, and technical safeguards to protect PHI, including:

• Secure storage of paper and electronic records
• Password-protected systems and encrypted data
• Controlled access to offices, files, and devices
• Confidential communication practices
• Regular audits and monitoring

All employees, caregivers, contractors, and partners are required to follow these procedures at all times.

Doctiplus maintains compliance through:

• Regular HIPAA training for all staff and caregivers.
• Written policies and procedures.
• Internal audits and monitoring.
• Prompt investigation of potential violations.
• Corrective actions when necessary.

We continuously improve our policies to align with current laws and regulations.

Examples of HIPAA Violations

The following actions are considered violations of HIPAA and are strictly prohibited at Doctiplus:

• Accessing client records without authorization.
• Sharing PHI with unauthorized individuals.
• Discussing client information in public areas.
• Leaving records unattended or unsecured.
• Using personal devices to store or transmit PHI without approval.

Questions or Concerns

If you have questions about this Compliance & HIPAA Policy or believe your privacy rights may have been violated, please contact us:info@doctiplus.us We take every concern seriously and are committed to resolving issues promptly, confidentially, and professionally.

Compliance & HIPAA Policy