SMS COMPLIANCE POLICY

Terms and Conditions:

By providing your phone number, you consent to receive customer care messages from Integrative Medicine Healing Center, Karen L. Mutter, DO and Cheryl Cawthon, RN, AP. Message frequency may vary. On average you may receive 1-2 messages per month. Message and data rates may apply.

Opt-In:
By texting YES to (727) 524-0900, you agree to receive SMS messages from Integrative Medicine Healing Center, Karen L. Mutter, DO and/or Cheryl Cawthon, RN, AP. Typical SMS message frequency is 1-2 times per month.  

For help or assistance, reply HELP to any message or contact our office directly.  Our support team will get back to you promptly. Message and data rates may apply.

Opt-Out:
To opt out of receiving SMS messages from Integrative Medicine Healing Center, Karen L. Mutter, DO and/ or Cheryl Cawthon, RN, AP reply STOP to (727) 524-0900 at anytime. You will no longer receive further messages from them.

Privacy:
Your data, including your phone number, will not be transferred to external organizations under any circumstances.  Integrative Medicine Healing Center, Karen L. Mutter, DO and Cheryl Cawthon RN, AP respect your privacy and complies with all applicable laws and regulations regarding text message communications.

If you have any questions or concerns regarding your privacy or the handling of your personal data, including your phone number, you can contact us at (727) 524-0900 or visit our website at https://karenmutterdo.com

 

HIPAA COMPLIANCE POLICY

Purpose: This policy outlines the steps Integrative Medicine Healing Center, Karen L. Mutter, DO and Cheryl Cawthon, RN, AP take to ensure that all protected health information (PHI) is handled in compliance with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule, Security Rule, and Breach Notification Rule. The aim is to safeguard the privacy and security of PHI across all platforms, including online communication methods like SMS.

Scope: This policy applies to all employees, contractors, business associates, and other relevant parties who handle PHI within our organization.

Policy:

  1. Protected Health Information (PHI):
    PHI refers to any health information that can identify an individual and relates to their health status, treatment, or payment for healthcare services.
  2. Data Encryption:
    All PHI transmitted electronically must be encrypted, including information sent via SMS or other digital means.
  3. Access Control:
    Access to PHI will be restricted based on the minimum necessary standard. Only authorized personnel will have access to PHI.
  4. Training and Awareness:
    Employees and contractors will undergo regular HIPAA compliance training and be informed of the potential risks associated with mishandling PHI.
  5. Incident Response:
    Any breach of PHI must be reported immediately to the Privacy Officer, who will investigate and take appropriate action to mitigate any damage.
  6. Business Associates Agreement (BAA):
    All third-party vendors that may handle PHI, including SMS service providers, must sign a BAA that ensures they meet HIPAA standards for privacy and security.