OBERD PRIVACY POLICY
OUR COMMITMENT TO PRIVACY
URS is committed to protecting the privacy of any health information we receive or create from any source and this commitment is a central component of our business. Further, we are required by law to protect and maintain the confidentiality of any and all health information and we have established a number of systems to fully and effectively meet our legal and ethical obligations to any patient whose health information is transmitted to us.
WHAT INFORMATION IS COVERED BY OUR PRIVACY POLICY
“Health Information” and “Protected Health Information” and “Personal Health Information” are all subject to our privacy policy. Collectively, these terms include any information that could possibly identify a patient, a patient’s physical or mental health or a patient’s medical records. They include any information relating to patient treatment, diagnosis, prognosis, insurance information, payment information, health care directives, and organ or tissue donation.
WHAT WE DO WITH INFORMATION WE RECEIVE
We are in the business of assisting physicians and their patients with the flow of electronic information. Information we receive is used to facilitate the physician/patient relationship and to improve communication and education relating to medical products and services, and to improve the quality and efficiency of the patient’s care. The information we receive and which is subject to this privacy policy is made available to a patient’s physician and to members of the physician’s group, and possibly to third-party providers of secure web-based facilities but we do not make that information available to any other person or entity unless so instructed by the physician.
HOW WE PROTECT THE INFORMATION WE RECEIVE
The information we receive and which is subject to this privacy policy is stored either in our facilities or in a secured third-party facility under the terms of a hosting agreement with us that obligates the third-party to observe our privacy policy. We continuously staff our facilities and restrict access with biometric security features or other equivalent access control measures, and our facilities are subject to continuous video monitoring. All information we receive and which is subject to our privacy policy is stored in encrypted form (using the AES-256 method, the strongest known) so, even if the files should fall into the wrong hands, they are not readable. When data moves in or out of the database it is encrypted while in transit so, even if intercepted, the information is not readable.
If you have additional questions on URS’s Privacy and Security policy, feel free send an email to [email protected]
