Notice of Privacy Practices | HIPAA Notice

MedicareBilling.ai

4146 Welcome Ave N
Minneapolis, MN 55422
United States of America

HIPAA Notice Required Statement

A federal law, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), requires that we provide this Notice to you. This Notice describes how we may use and disclose your protected health information (PHI) and your rights regarding that information.

1. Who This Notice Applies To

This Notice of Privacy Practices describes the privacy practices of MedicareBilling.ai and applies to:

All individuals who use our Medicare bill review and appeal services
Family members, caregivers, and authorized representatives acting on behalf of patients
Healthcare providers who engage our services
Any other individuals whose PHI is collected or maintained by our services

2. Our Legal Duty

We are required by law to:

Maintain the privacy of your protected health information (PHI)
Provide you with this Notice of our legal duties and privacy practices
Notify you if a breach occurs that may have compromised your PHI
Follow the duties and privacy practices described in this Notice

We reserve the right to change our privacy practices and to make the changes effective for all PHI we maintain. If we make material changes to this Notice, we will post the updated Notice on our website and provide it to you upon request.

3. Uses and Disclosures of Your PHI

We may use and disclose your PHI for the following purposes without your written authorization:

3.1 Treatment

We may use and disclose your PHI to provide, coordinate, or manage your healthcare and any related services. For example, we may share your billing information with healthcare providers to help them provide you with appropriate care.

3.2 Payment

We may use and disclose your PHI to bill and collect payment for our services. This may include:

Billing you directly for services rendered
Submitting claims to Medicare, Medicare Advantage plans, or other insurance
Tracking and reporting payments received
Collection activities if necessary

3.3 Healthcare Operations

We may use and disclose your PHI for our healthcare operations, which include:

Quality assessment and improvement activities
Employee review and training programs
Compliance and auditing activities
Business planning and development
General administrative activities

3.4 Legal Requirements

We may disclose your PHI when required by federal, state, or local law. This includes disclosure for:

Judicial and administrative proceedings
Law enforcement purposes
Public health activities
Health oversight activities
Coroners, medical examiners, and funeral directors
Research (with appropriate authorization or as permitted by law)
To avert a serious threat to health or safety

4. Uses and Disclosures Requiring Your Authorization

Other uses and disclosures of your PHI will only be made with your written authorization. You may revoke such authorization at any time by providing written notice to us.

We will obtain your authorization before:

Using or disclosing your PHI for marketing purposes
Selling your PHI
Disclosing any psychotherapy notes (if applicable)
Any other use or disclosure not described in this Notice

5. Your Rights Under HIPAA

You have the following rights regarding your protected health information:

Right to Access

You have the right to inspect and obtain a copy of your PHI that we maintain in a designated record set. To request access, submit a written request to our Privacy Officer. We may charge a fee for the costs of copying, mailing, or other supplies.

Right to Amend

If you believe that your PHI is incomplete or incorrect, you may request an amendment. Your request must be in writing and explain why you believe the information should be amended.

Right to an Accounting of Disclosures

You have the right to request an accounting of certain disclosures we have made of your PHI. This right does not include disclosures made for treatment, payment, or healthcare operations. Your request must specify the time period, which cannot be longer than six years.

Right to Request Restrictions

You have the right to request a restriction or limitation on the PHI we use or disclose about you. While we are not required to agree to all restriction requests, if we do agree, we will comply with your request unless the information is needed to provide you emergency treatment.

Right to Request Confidential Communications

You have the right to request that we contact you about medical matters in a specific way. For example, you may ask us to contact you only at work or by mail. We will accommodate reasonable requests.

Right to a Paper Copy of This Notice

You have the right to a paper copy of this Notice at any time, even if you have agreed to receive this Notice electronically. You may obtain a copy by contacting our Privacy Officer.

6. Authorization to Act on Behalf of Others

If you wish to have another individual (such as a family member, caregiver, or authorized representative) act on your behalf regarding your PHI, you must provide us with written authorization. This authorization must:

Identify the person who is authorized to act on your behalf
Describe the PHI that may be disclosed
Specify the purpose of the disclosure
Include your signature and date

Special rules may apply if you have a legal guardian, power of attorney, or other legal representative. Contact us for more information about these arrangements.

7. Business Associates

Some services we provide may involve sharing PHI with third-party business associates who perform functions on our behalf. These business associates are required to:

Protect the privacy of your PHI
Not use or disclose your PHI in ways that violate HIPAA
Return or destroy your PHI when no longer needed
Implement safeguards to protect your information

We maintain a Business Associate Agreement (BAA) with each business associate that accesses your PHI.

8. Security of Your Information

We implement appropriate administrative, physical, and technical safeguards to protect your PHI against unauthorized access, use, or disclosure. These safeguards include:

Secure data storage and transmission (encryption)
Access controls and authentication procedures
Regular security assessments and updates
Employee training on privacy and security
Incident response procedures for potential breaches

9. Breach Notification

If there is a breach of your unsecured PHI, we will notify you as required by HIPAA. The notification will include:

A description of what happened, including the date of the breach
The types of information involved
Steps you should take to protect yourself
What we are doing to investigate and mitigate the breach
Contact procedures for further information

10. Complaints

If you believe your privacy rights have been violated, you may file a complaint with us or with the Secretary of the U.S. Department of Health and Human Services.

To File a Complaint With Us:

Contact our Privacy Officer in writing at the address provided below. All complaints should be submitted in writing.

To File a Complaint With the Federal Government:

Office for Civil Rights, U.S. Department of Health and Human Services
233 N. Michigan Avenue, Suite 240
Chicago, IL 60601
Phone: (800) 368-1019
TDD: (800) 537-7697

There will be no retaliation for filing a complaint.

11. Changes to This Notice

We reserve the right to change this Notice and to make the revised or changed Notice effective for PHI we already have about you, as well as any PHI we may receive in the future. We will post a copy of the current Notice on our website. The Notice will contain the effective date on the first page.

12. Contact Information

If you have any questions about this Notice or wish to exercise any of your rights, please contact our Privacy Officer:

MedicareBilling.ai Privacy Officer

4146 Welcome Ave N
Minneapolis, MN 55422
United States of America

Email: [email protected]
Phone: 763-230-2183

Effective Date: May 10, 2026

Previous Effective Date: [Prior Date if applicable]