We honor privacy.

Privacy Policy

At HealthHaven Advisors, we are committed to protecting the privacy of our clients and visitors to our website. This Privacy Policy outlines how we collect, use, and protect personal information, including Protected Health Information (PHI), in compliance with the Health Insurance Portability and Accountability Act (HIPAA).

Information We Collect

We collect both personal information and non-personal information from individuals who visit our website, contact us, or use our services.

  • Personal Information: This may include your name, email address, phone number, billing information, and other details provided when you interact with us.
  • Protected Health Information (PHI): If you are a client or healthcare provider, we may collect PHI as part of our services, including medical records, insurance information, and other health-related data.
  • Non-Personal Information: We may collect non-identifying information such as IP addresses, browser types, and website usage data through cookies or other tracking technologies to improve our website and services.

How We Use the Information

We use the information we collect for the following purposes:

  • To provide and manage our services
  • To communicate with clients and respond to inquiries
  • To process payments and manage accounts
  • To ensure compliance with legal and regulatory requirements, including HIPAA
  • To improve our website, services, and user experience
  • To safeguard the security and confidentiality of personal and health information

Handling Protected Health Information (PHI)

As a provider of services to healthcare professionals, HealthHaven Advisors adheres strictly to HIPAA rules regarding the handling of PHI. We implement the necessary administrative, physical, and technical safeguards to protect your PHI and ensure its confidentiality, integrity, and security.

How We Protect PHI:

  • Access Controls: Only authorized personnel have access to PHI, and access is granted based on role and job responsibilities.
  • Data Encryption: All PHI that is stored or transmitted is encrypted using industry-standard encryption methods.
  • Audit Controls: We regularly audit systems that store and process PHI to ensure compliance with HIPAA regulations.
  • Secure Communication: We use secure channels, such as encrypted emails or portals, to transmit PHI to prevent unauthorized access during communication.
  • Physical Safeguards: Any physical records containing PHI are securely stored, and access is restricted to authorized personnel only.

Sharing of Information

We do not sell, rent, or share personal information or PHI with third parties except in the following circumstances:

  • With Your Consent: We may share information with third parties if you have given explicit consent.
  • To Provide Services: We may share information with trusted third-party service providers who assist us in delivering our services (e.g., payment processors, IT providers). These third parties are required to protect your information and comply with applicable privacy regulations, including HIPAA.
  • For Legal Reasons: We may disclose personal information or PHI if required by law or in response to a court order, subpoena, or other legal request.
  • In Case of Emergencies: We may disclose PHI when necessary to prevent a serious threat to the health or safety of an individual or the public.

Your Rights Regarding Your Information

If you are a client of HealthHaven Advisors, you have the following rights regarding your personal information and PHI:

  • Access to Your Information: You have the right to access and obtain a copy of your personal information and PHI held by us.
  • Request Corrections: You can request corrections to any inaccuracies in your personal information or PHI.
  • Request Restrictions: You may request restrictions on how we use or disclose your PHI, though we may not be able to fulfill all requests due to legal or operational reasons.
  • Confidential Communications: You can request that we communicate with you through specific methods or at specific locations to maintain confidentiality.
  • Request Deletion: In some circumstances, you may request that we delete your personal information, though PHI must be retained in certain cases to comply with HIPAA and other legal requirements.

Security Measures

We take the security of your information seriously and implement appropriate measures to protect your data, including:

  • Encryption: Personal information and PHI are encrypted both in transit and at rest.
  • Firewall Protection: We use firewalls and intrusion detection systems to protect our networks and data.
  • Regular Security Audits: We conduct regular security audits and vulnerability assessments to ensure the security of our systems.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When changes are made, we will update the “Last Updated” date at the top of this page. We encourage you to review this policy regularly to stay informed about how we protect your information.

Contact Us

If you have any questions about this Privacy Policy or how we handle your information, please contact us at:

HealthHaven Advisors

Email: hello@healthhavenadvisors.com
Phone: (800) 717-8309