Privacy Policy

Information We Collect

Sterling Health Solutions collects information necessary to provide you with high-quality healthcare services. The types of information we may collect include:

• Personal Information: Name, date of birth, address, phone number, email address, and emergency contact information.
• Insurance Information: Insurance carrier, policy number, group number, and coverage details.
• Health Information: Medical history, current medications, diagnoses, treatment plans, vital signs, and clinical notes.
• Website Usage Data: IP address, browser type, pages visited, and other analytics data collected through standard web technologies.

How We Use Your Information

We use the information we collect for the following purposes:

• Providing, coordinating, and managing your healthcare services.
• Processing insurance claims and billing for services rendered.
• Communicating with you about your care, appointments, and health-related information.
• Coordinating care with your other healthcare providers, hospitals, and specialists.
• Complying with legal and regulatory requirements.
• Improving our services and website functionality.

HIPAA Compliance

Sterling Health Solutions is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the HITECH Act. We maintain strict administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of all protected health information (PHI) entrusted to us. Our workforce members receive regular HIPAA training, and we conduct periodic risk assessments to identify and mitigate potential vulnerabilities.

Protected Health Information (PHI)

Protected Health Information includes any individually identifiable health information that we create, receive, maintain, or transmit in the course of providing healthcare services. This includes information in your medical records, billing records, and any data transmitted by Remote Patient Monitoring devices. PHI is subject to the highest level of protection under our privacy and security policies and is only accessed by authorized personnel on a need-to-know basis.

Your Rights Under HIPAA

As a patient, you have the following rights regarding your protected health information:

• Right to Access: You may request access to your medical records and obtain copies of your PHI.
• Right to Amendment: You may request corrections to your medical records if you believe the information is inaccurate or incomplete.
• Right to an Accounting of Disclosures: You may request a list of instances where we have disclosed your PHI for purposes other than treatment, payment, or healthcare operations.
• Right to Request Restrictions: You may request restrictions on how we use or disclose your PHI, although we are not required to agree to all requests.
• Right to Confidential Communications: You may request that we communicate with you through specific means or at specific locations.
• Right to a Copy: You have the right to receive a paper copy of this privacy notice upon request.

Information Sharing

We do not sell, rent, or trade your personal or health information to third parties. We may share your information in the following limited circumstances:

• With your other healthcare providers for the purpose of treatment coordination.
• With insurance companies and payers for billing and payment processing.
• With business associates who perform services on our behalf, under strict contractual agreements (Business Associate Agreements) that require them to protect your information.
• As required by law, including compliance with court orders, subpoenas, or government investigations.
• For public health activities, such as reporting communicable diseases as required by state or federal law.

Data Security

We implement industry-standard security measures to protect your information, including encrypted data transmission (SSL/TLS), secure electronic health record systems, access controls with role-based permissions, regular security audits, and secure data backup procedures. All Remote Patient Monitoring data is transmitted and stored using encrypted channels that meet or exceed HIPAA security requirements. While no method of electronic transmission or storage is 100% secure, we continuously review and update our security practices to protect your information.

Website Analytics

Our website may use cookies and similar technologies to improve your browsing experience and analyze site usage. This data is collected anonymously and does not include any protected health information. Website analytics data may include pages visited, time spent on pages, referring websites, and general geographic location. You may adjust your browser settings to decline cookies, although some website features may not function properly without them. We do not use website tracking technologies to collect or associate health information with your browsing activity.

Contact Information

If you have questions about this privacy policy, wish to exercise your HIPAA rights, or need to report a privacy concern, please contact our Privacy Officer: