Privacy Policy
Last Updated: January 2025
The LightHaus ("we," "us," or "our") is committed to protecting your privacy and safeguarding your Protected Health Information (PHI) in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable privacy laws. This Privacy Policy explains how we collect, use, disclose, and protect your information.
1. HIPAA Notice of Privacy Practices
Your Rights
Under HIPAA, you have the following rights regarding your Protected Health Information:
- Right to Access: You have the right to inspect and obtain a copy of your health records.
- Right to Amend: You may request corrections to your health information if you believe it is incorrect or incomplete.
- Right to an Accounting of Disclosures: You may request a list of certain disclosures we have made of your health information.
- Right to Request Restrictions: You may request restrictions on certain uses and disclosures of your health information.
- Right to Confidential Communications: You may request that we communicate with you about your health information by alternative means or at alternative locations.
- Right to a Paper Copy: You have the right to obtain a paper copy of this notice upon request.
How We Use and Disclose Health Information
We may use and disclose your health information for the following purposes:
Treatment: We use your health information to provide, coordinate, and manage your healthcare and related services. This includes consultation with other healthcare providers involved in your care.
Payment: We may use and disclose your health information to obtain payment for services we provide to you, including billing, collections, and insurance claims.
Healthcare Operations: We may use your health information for our healthcare operations, including quality assessment, staff training, licensing, and business planning.
2. Information We Collect
Protected Health Information (PHI)
- Personal identification information (name, address, phone, email, date of birth)
- Insurance information
- Medical history and treatment information
- Mental health and substance abuse treatment records
- Billing and payment information
Website Information
- Contact form submissions
- Insurance verification requests
- IP addresses and browser information (for website functionality)
- Cookies and similar technologies
3. How We Protect Your Information
Security Measures
We implement appropriate physical, technical, and administrative safeguards to protect your information:
- Secure, encrypted data transmission (SSL/HTTPS)
- Limited access to PHI on a need-to-know basis
- Employee training on HIPAA compliance and confidentiality
- Secure storage of physical and electronic records
- Regular security assessments and updates
- Business Associate Agreements with third-party vendors
4. Permitted Disclosures Without Authorization
We may disclose your health information without your authorization in the following situations:
- As Required by Law: When disclosure is required by federal, state, or local law.
- Public Health Activities: To prevent or control disease, injury, or disability.
- Health Oversight Activities: To health oversight agencies for activities authorized by law.
- Judicial and Administrative Proceedings: In response to court orders or lawful subpoenas.
- Law Enforcement: For law enforcement purposes as required by law.
- Serious Threats: To avert a serious threat to health or safety.
- Workers' Compensation: For workers' compensation or similar programs.
5. Substance Abuse Treatment Records - 42 CFR Part 2
Information related to substance abuse treatment is protected by federal confidentiality regulations (42 CFR Part 2) and cannot be disclosed without your written consent except as specifically permitted by regulation. Violations of these regulations are punishable by fine and/or imprisonment.
6. Your Consent and Authorization
For uses and disclosures not described in this notice, we will obtain your written authorization before using or disclosing your health information. You may revoke your authorization in writing at any time, except to the extent we have already taken action in reliance on your authorization.
7. Website Privacy
Contact Forms
Information submitted through our contact forms or insurance verification forms is transmitted securely and used only to respond to your inquiry and provide requested services.
Cookies
Our website may use cookies to improve user experience. You can choose to disable cookies through your browser settings.
Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites.
8. Children's Privacy
Our services are not directed to individuals under 18 without parental consent. We do not knowingly collect information from minors without appropriate parental or guardian authorization.
9. Changes to This Privacy Policy
We reserve the right to modify this Privacy Policy at any time. Changes will be effective upon posting to our website. We will provide notice of material changes as required by law.
10. Complaints and Questions
If you believe your privacy rights have been violated or if you have questions about this Privacy Policy, you may:
Contact our Privacy Officer:
The LightHaus
10572 Lexington St
Stanton, CA 90680
Phone: (213) 584-3253
Email: [email protected]
File a complaint with:
U.S. Department of Health and Human Services
Office for Civil Rights
200 Independence Avenue, S.W.
Washington, D.C. 20201
Phone: 1-877-696-6775
Website: www.hhs.gov/ocr/privacy/hipaa/complaints/
You will not be retaliated against for filing a complaint.
11. Acknowledgment
By using our services or website, you acknowledge that you have read and understood this Privacy Policy.
Notice: This privacy policy is effective as of the date listed above and complies with HIPAA Privacy Rule (45 CFR Part 160 and Part 164, Subparts A and E) and 42 CFR Part 2 regarding confidentiality of substance abuse treatment records.