Weight-Loss Surgery Assessment

Terms of Use

Last revised March 6, 2024

Welcome to the MercyOne website (the "Site") owned by MercyOne ("Company"). Your compliance with these Terms of Use / Online Privacy ("Terms of Use") is a condition to your use of the Site. If you do not agree to be bound by the Terms of Use, promptly exit this Site.

Please consult the Online Privacy portion of these Terms of Use for information regarding our practices with respect to collection, use and sharing of personal information through this Site. Please consult our Notice of Privacy Practices for information on how we use patient information and your rights regarding your patient information.

Ownership of the Site

All pages within this Site and any material made available for download are owned or licensed by the Company.

The Site is protected by United States and international copyright and trademark laws. The Contents of the Site, including without limitation the files, documents, text, photographs, images, audio, and video, and any materials accessed through or made available for use or download through this Site ("Content") may not be copied, distributed, modified, reproduced, published or used, in whole or in part, except for purposes authorized or approved by Company, including the provision of services or products to Company, or in connection with a business relationship with Company.

You may not frame or utilize framing techniques to enclose, or deep linking to, any name, trademarks, service marks, logo, Content or other proprietary information (including; images, text, page layout, or form) of Company without our express written consent. If you have questions about the Site or any materials or would like more information or to request written consent please Contact Us.

Site Security

You are prohibited from violating or attempting to violate the security of the Site, including, without limitation, (a) accessing data not intended for such user or logging onto a server or an account which the user is not authorized to access; (b) attempting to probe, scan or test the vulnerability of a system or network or to breach security or authentication measures without proper authorization; or (c) accessing or using the Site or any portion thereof without authorization, in violation of these Terms of Use or in violation of applicable law.

Violations of system or network security may result in civil or criminal liability. Company will investigate occurrences that may involve such violations and may involve, and cooperate with, law enforcement authorities in prosecuting users who are involved in such violations. You agree not to use any device, software or routine to interfere or attempt to interfere with the proper working of this Site or any activity being conducted on this Site.

Access to Site; Indemnification

In the event access to the Site or a portion thereof is limited requiring a user ID and password ("Protected Areas"), you agree to access Protected Areas using only your user ID and password as provided to you by Company. You agree to protect the confidentiality of your user ID and password, and not to share or disclose your user ID or password to any third party. You agree that you are fully responsible for all activity occurring under your user ID.

Your access to the Site may be revoked by Company at any time with or without cause. You agree to defend, indemnify and hold Company harmless from and against all third party claims, damages and expenses (including reasonable attorneys fees) against or incurred by Company arising out of your use or access of the Site, or access by anyone accessing the Site using your user ID and password.

Accuracy and Integrity of Information

Although Company attempts to ensure the integrity and accurateness of the Site, it makes no representations, warranties or guarantees whatsoever as to the correctness or accuracy of the Site and Content thereon. It is possible that the Site could include typographical errors, inaccuracies or other errors, and that unauthorized additions, deletions and alterations could be made to the Site by third parties.

In the event that an inaccuracy arises, please inform Company so that it can be corrected. Information contained on the Site may be changed or updated without notice. Additionally, Company shall have no responsibility or liability for information or Content posted to the Site from any non-Company affiliated third party.

Online Transaction - Payment of Bills

Patients are able to pay their hospital bills and charges online. Our financial services provider manages and operates the online bill payment feature, including the processing of credit card, debit card and e-check bank accounting withdrawals. Please consult the website of our service providers for their terms of use and privacy practices. There is a link on our Site to the website of the service provider.

Visitors to our Site may be able to register or purchase products online; for example visitors may be able to purchase from the Gift Shop or register for classes. We reserve the right to refuse or cancel any order. Some situations that may result in your order being refused or canceled include limitations on quantities available for purchase, inaccuracies or errors in product or pricing information, or problems identified by our credit and fraud avoidance department.

We may also require additional verifications or information before accepting any order. We will contact you if all or any portion of your order is canceled or if additional information is required to accept your order. If your order is canceled after your credit card (or other payment account) has been charged, we will issue a credit to your credit card (or other applicable payment account) in the amount of the charge.

If a credit card account is being used for a transaction, Company may obtain preapproval for an amount up to the amount of the payment.

You represent and warrant that if you are making online payments that (i) any credit card, debit card and bank account information you supply is true, correct and complete, (ii) charges incurred by you will be honored by your credit/debit card company or bank, (iii) you will pay the charges incurred by you in the amounts posted, including any applicable taxes, and (iv) you are the person in whose name the card was issued and you are authorized to make a purchase or other transaction with the relevant card and card information.

Typographical Errors and Incorrect Pricing In the event a product or service is listed at an incorrect price due to typographical error or error in pricing information received from our suppliers, we shall have the right to refuse or cancel any orders placed for product / service listed at the incorrect price. We shall have the right to refuse or cancel any such orders whether or not the order has been confirmed and your credit or debit card charged.

If your credit or debit card has already been charged for the purchase and your order is canceled, we shall immediately issue a credit to your credit or debit card account in the amount of the incorrect price.

MEDICAL ADVICE DISCLAIMER

THE CONTENT OF THE SITE, INCLUDING WITHOUT LIMITATION, TEXT, COPY, AUDIO, VIDEO, PHOTOGRAPHS, ILLUSTRATIONS, GRAPHICS AND OTHER VISUALS, IS FOR INFORMATIONAL PURPOSES ONLY AND DOES NOT CONSTITUTE PROFESSIONAL MEDICAL ADVICE, DIAGNOSIS, TREATMENT OR RECOMMENDATIONS OF ANY KIND. YOU SHOULD ALWAYS SEEK THE ADVICE OF YOUR QUALIFIED HEATH CARE PROFESSIONALS WITH ANY QUESTIONS OR CONCERNS YOU MAY HAVE REGARDING YOUR INDIVIDUAL NEEDS AND ANY MEDICAL CONDITIONS.

RELIANCE ON ANY INFORMATION APPEARING ON THE SITE, WHETHER PROVIDED BY COMPANY, ITS CONTENT PROVIDERS, ITS CLIENTS, VISITORS TO THE SITE OR OTHERS, IS SOLELY AT YOUR OWN RISK.

GENERAL WARRANTY DISCLAIMER

COMPANY DOES NOT WARRANT THAT ACCESS TO OR USE OF THE SITE WILL BE UNINTERRUPTED OR ERROR-FREE OR THAT DEFECTS IN THE SITE WILL BE CORRECTED. THIS SITE, INCLUDING ANY CONTENT OR INFORMATION CONTAINED WITHIN IT OR ANY SITE-RELATED SERVICE, IS PROVIDED "AS IS," WITH ALL FAULTS, WITH NO REPRESENTATIONS OR WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, QUALITY OF INFORMATION, QUIET ENJOYMENT, AND TITLE/NON-INFRINGEMENT.

COMPANY SPECIFICALLY DISCLAIMS ALL LIABILITY FOR ERRORS OR OMISSIONS IN, OR THE MISUSE OR MISINTERPRETATION OF, ANY INFORMATION OBTAINED THROUGH THE SITE. COMPANY DOES NOT WARRANT THE ACCURACY, COMPLETENESS OR TIMELINESS OF THE INFORMATION OBTAINED THROUGH THE SITE. YOU ASSUME TOTAL RESPONSIBILITY AND RISK FOR YOUR USE OF THIS SITE, SITE-RELATED SERVICES, AND LINKED WEBSITES. COMPANY DOES NOT WARRANT THAT FILES AVAILABLE FOR DOWNLOAD WILL BE FREE OF VIRUSES, WORMS, TROJAN HORSES OR OTHER DESTRUCTIVE PROGRAMMING.

YOU ARE RESPONSIBLE FOR IMPLEMENTING PROCEDURES SUFFICIENT TO SATISFY YOUR NEEDS FOR DATA BACK UP AND SECURITY. YOU AGREE THAT COMPANY SHALL NOT BE LIABLE FOR ANY COST OR DAMAGE ARISING DIRECTLY OF INDIRECTLY FROM ANY SUCH CODE. YOU ASSUME TOTAL RESPONSIBILITY AND RISK FOR YOUR USE OF THE SITE AND OF THE INTERNET.

LIMITATION OF LIABILITY REGARDING USE OF SITE

COMPANY AND ANY THIRD PARTIES MENTIONED ON THIS SITE ARE NEITHER RESPONSIBLE NOR LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, SPECIAL, EXEMPLARY, PUNITIVE, OR OTHER DAMAGES WHATSOEVER (INCLUDING, WITHOUT LIMITATION, THOSE RESULTING FROM LOST PROFITS, LOST DATA, OR BUSINESS INTERRUPTION) ARISING OUT OF OR RELATING IN ANY WAY TO THE SITE, SITE-RELATED SERVICES, CONTENT OR INFORMATION CONTAINED WITHIN THE SITE, AND/OR ANY LINKED WEBSITE, WHETHER BASED ON WARRANTY, CONTRACT, TORT, OR ANY OTHER LEGAL THEORY AND WHETHER OR NOT ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

YOUR SOLE REMEDY FOR DISSATISFACTION WITH THE SITE, SITE-RELATED SERVICES, AND/OR LINKED WEBSITES IS TO STOP USING THE SITE AND/OR THOSE SERVICES.

External Sites

Company makes no representations whatsoever about any other website that you may access through this Site. When you access a non-Company site, please understand that it is independent from Company, and that Company has no control over the Content on that website. In addition, a link to a non-Company website does not mean that Company endorses or accepts any responsibility for the Content, or the use, of the linked site.

It is up to you to take precautions to ensure that whatever you select for your use or download is free of such items as viruses, worms, Trojan horses, and other items of a destructive nature. If you decide to access any of the third party sites linked to this Site, you do this entirely at your own risk

ONLINE PRIVACY

Scope. This section describes how we use and share personal information collected through this Site. Our Site also contains links to third party sites that are not owned or controlled by Company. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage you to be aware when you leave our Site and to read the privacy statements of each and every website that collects personal information. For information about how we collect, use and share your health and medical information, please refer to our Notice of Privacy Practices.

Information You Provide To Us. You can provide information to us on our Site through various means, such as contacting us through our Site, filling out feedback forms, paying your hospital bills online or purchasing products online from our gift store. Depending on which feature you are using, you may be asked provide personal information such as, name, address, telephone number, email address, credit or debit card information, bank account information, etc. No Information From Children Under Age 13.

 If you are under the age of 13, please do not attempt to register with us at this Site or provide any personal information about yourself to us via this Site. If we learn that we have collected personal information from a child under the age of 13, we will promptly delete that information. If you believe we might have any information from a child under the age of 13 collected via this Site, please contact us. Information We Collect Automatically.

We collect certain information automatically as you use our Site, such as IP address, browser type, computer or device type, the website from where you navigated to our Site, and the pages on our Site that you view.

Cookies and Other Tracking Technology

We use common Internet technologies, such as cookies and other tracking technology, to optimize the performance of our website and other digital properties such as social media sites, email campaigns, and online advertising. Cookies, beacons, tags, log files and other technologies may be used to collect information about visitors to our website, use of our online services, and interactions with our email campaigns, advertisements and other marketing content.

Collected information may include, but not be limited to, computer / mobile browser type, computer / mobile operating system and IP address. This data may be merged with your online interactions – pages viewed, links clicked, or content viewed. This information, and the analyses performed after collection, helps us to provide for a more customized and personalized experience for you and future visitors.

We may collaborate with advertisers and marketing research firms as part of our marketing activities. These advertisers and research firms also may use cookies and tags to track the effectiveness of marketing campaigns on our behalf. The information they collect does not contain personally identifiable information. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent. However, some website features or services may not function properly without cookies.

How we Use and Share Your Information

• To Provide Products, Services, and Information. We collect personal information from you so that we can provide products and services that you purchase using the Site, and information that you request from us. We use your personal information to contact you about your orders, process credit card / debit card transactions, and ship products to you. We may provide information to third party service providers that help us bring you the services we offer. For example, we use third parties to help host and maintain our Site, and to process payments.
• Communications from Us. We respect and are committed to protecting your privacy. We may collect personally identifiable information, including your email address, when you visit our site. We also automatically receive and record information on our server logs from your browser including your IP address, cookie information and the page(s) you visited. We will use the information to contact you about products, services and information and to provide relevant advertising to you. We will not sell your personally identifiable information, but we may provide your email address to third parties who will contact you about our products and services or whose products or services would be of interest to you.
• Legal Requests or Requirements and to Prevent Harm. We will share personal information with third party companies, organizations or individuals outside of Company if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to:
• Meet any applicable law, regulation, subpoena, legal process or enforceable governmental request.
• Enforce applicable Terms of Use, including investigation of potential violations.
• Detect, prevent, or otherwise address fraud, security or technical issues.
• Protect against harm to the rights, property or safety of Company, our users, customers or the public as required or permitted by law.

Transfer in the Event of Sale or Change of Control. 

If the ownership of all or substantially all of our business changes or we otherwise transfer assets relating to our business or the Site to a third party, such as by merger, acquisition, bankruptcy proceeding or otherwise, we may transfer or sell your personal information to the new owner. In such a case, unless permitted otherwise by applicable law, your information would remain subject to the promises made in the applicable privacy statement unless you agree differently.

Security Of Your Information

In order to help secure your personal information, access to your data on our Site is password-protected, and sensitive data (such as a credit card number) is protected by encryption when it is exchanged between your web browser and our Site. To protect any data you store on our servers, we also regularly audit our system for possible vulnerabilities and attacks, and we use a tier-one secured-access data center.

However, since the Internet is not a 100% secure environment, we cannot guarantee, ensure, or warrant the security of any information you transmit to us. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. It is your responsibility to protect the security of your login information. Please note that e-mails you send to us through our Site are not encrypted, and we strongly advise you not to communicate any confidential information through these means.

Our Secure Sockets Layer (SSL) software is the industry standard and among the best software available today for secure commerce transactions. It encrypts all of your personal information, including credit card number, name, and address, so that it cannot be read over the internet.

Revisions To Terms Of Use / Privacy; General Terms

Company reserves the right, in its sole discretion, to terminate your access to all or part of this Site, with or without cause, and with or without notice. In the event that any of the Terms of Use are held by a court or other tribunal of competent jurisdiction to be unenforceable, such provisions shall be limited or eliminated to the minimum extent necessary so that these Terms of Use shall otherwise remain in full force and effect.

These Terms of Use constitute the entire agreement between Company and you pertaining to the subject matter hereof. In its sole discretion, Company may from time-to-time revise these Terms of Use by updating this posting. You should, therefore, periodically visit this page to review the current Terms of Use, so you are aware of any such revisions to which you are bound. Certain provisions of these Terms of Use may be superseded by expressly designated legal notices or terms located on particular pages within this Site.

In the event of any dispute or claim relating to the Site or these Terms of Use, you agree to resolution of such dispute in the state or federal courts located in Iowa, in accordance with Iowa law.

Terms and Conditions for SMS Text Message Notifications (Updated January 1, 2023)

• These terms and conditions apply to SMS text messages sent by MercyOne. These messages can be recurring (e.g. COVID-19 related notifications, health services and safety information etc.) or one-time (e.g. COVID-19 vaccine, visitor policy changes etc.).
• By signing up for the MercyOne text messaging service or texting a campaign opt-in keyword to the short code 43301, and by confirming your opt-in via text message reply, you expressly consent to receiving text messages from MercyOne at the mobile number you provide. Text messages can only be sent to mobile phones. You may opt-out of these communications at any time. To receive MercyOne text messages, you must be a resident of the United States and at least 18 years of age. By opting into MercyOne text messaging services, you agree only to send keyword responses, as prompted by MercyOne, to the indicated short code. You acknowledge that non-keyword responses will not be monitored.
• By opting into MercyOne text messaging services or campaigns, you consent to receive text messages to the mobile phone number you provided to MercyOne.
  • If you have any questions or need help, text  HELP to 43301 or email contactus@mercydesmoines.org. To discontinue receiving text messages from MeryOne, text STOP to 43301 . Msg&Data Rates May Apply.
  • For COVID-19: Text MERCYONE to 43301 to receive MERCYONE related updates & notifications including vaccine related information. Msg&Data Rates May Apply.
• MercyOne does not have a separate charge for this service; however, message and data rates may apply from your mobile carrier. Subject to the terms and conditions of your mobile carrier, you may receive text messages sent to your mobile phone. MercyOne does not warrant that your mobile carrier will enable your participation in this service.
• By providing your consent to participate in this program, you approve any charges from your mobile carrier relating to text messages to or from MercyOne. Charges for text messages may appear on your mobile phone bill or be deducted from your prepaid balance.
•  If at any time you forget what keywords are supported, just text “HELP” to the text message you received. After you send the SMS message “HELP” to us, we will respond with instructions on how to use our service as well as how to unsubscribe.
• MercyOne reserves the right to terminate this text service, in whole or in part, at any time without notice. The information in any message may be subject to certain time lags and/or delays. You are responsible for managing the types of texts you receive.
• By enrolling in this text messaging service subscription program, you consent that following such a request to unsubscribe, you will receive one (1) final message from MercyOne confirming that you have been inactivated in our system. Following such confirmation message, no additional text messages will be sent unless you re-activate your subscription.
• You must be 18 years old to be eligible to use the service. By opting-in to receive SMS from MercyOne by text you are representing that you are at least 18 years of age.
• MercyOne will not be liable for any delays in the receipt of any text messages. Delivery is subject to effective transmission from your network operator.
• Following United States Carriers that offer a messaging capability  will deliver the messages - AT&T, T-Mobile, Verizon Wireless, Sprint, Boost, Alltel, U.S. Cellular, Cellular One, MetroPCS, ACS/Alaska, Bluegrass Cellular, Cellular One of East Central Illinois, Centennial Wireless, Cox Communications, EKN/Appalachian Wireless, GCI, Illinois Valley Cellular, Immix/Keystone Wireless, Inland Cellular, Nex-Tech Wireless, Rural Cellular Corporation, Thumb Cellular, United Wireless, West Central (WCC), Cellcom, Cellsouth, Cricket, Cincinnati Bell and Virgin Mobile.
  *Carrier is not liable for delayed or undelivered messages.

Privacy notice

You can review MercyOne’ privacy notice here.

NOTICE OF PRIVACY PRACTICES 

Effective Date: April 14, 2003 
Revised: April 4, 2023 

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

MercyOne is required by the Health Insurance Portability and Accountability Act of 1996, and the Health Information Technology for Economic and Clinical Health Act (found in Title XIII of the American Recovery and Reinvestment Act of 2009) (collectively referred to as “HIPAA”), as amended from time to time, to maintain the privacy of individually identifiable patient health information (this information is “protected health information” and is referred to herein as “PHI”). We are also required to provide patients with a Notice of Privacy Practices regarding PHI. We will only use or disclose your PHI as permitted or required by applicable state law. This Notice applies to your PHI in our possession including the medical records generated by us. 

MercyOne understands that your health information is highly personal, and we are committed to safeguarding your privacy. Please read this Notice of Privacy Practices thoroughly. It describes how we will use and disclose your PHI.

This Notice applies to the delivery of health care by MercyOne and its medical staff in the main hospital, outpatient departments, clinics, and other MercyOne entities. This Notice also applies to the utilization review and quality assessment activities of MercyOne as a member of MercyOne a Catholic health care system with facilities throughout Iowa.

I. Permitted Use or Disclosure

A. Treatment: MercyOne will use and disclose your PHI to provide, coordinate, or manage your health care and related services to carry out treatment functions. The following are examples of how MercyOne will use and/or disclose your PHI:

i. To your attending physician, consulting physician(s), and other health care providers who have a legitimate need for such information in your care and continued treatment.

ii. To coordinate your treatment (e.g., appointment scheduling) with us and other health care providers such as name, address, employment, insurance carrier, etc.

iii. To contact you as a reminder that you have an appointment for treatment or medical care at our facilities.

iv. To provide you with information about treatment alternatives or other health-related benefits or services.

v. If you are an inmate of a correctional institution or under the custody of a law enforcement officer, MercyOne will disclose your PHI to the correctional institution or law enforcement official.

B. Payment: MercyOne will use and disclose PHI about you for payment purposes. The following are examples of how MercyOne will use and/or disclose your PHI:

i. To an insurance company, third party payer, third party administrator, health plan or other health care provider (or their duly authorized representatives) for payment purposes such as determining coverage, eligibility, pre-approval / authorization for treatment, billing, claims management, reimbursement audits, etc.

ii. To collection agencies and other subcontractors engaged in obtaining payment for care.

C. Health Care Operations: MercyOne will use and disclose your PHI for health care operations purposes. The following are examples of how MercyOne will use and/or disclose your PHI:

i. For case management, quality assurance, utilization, accounting, auditing, population based activities relating to improving health or reducing health care costs, education, accreditation, licensing and credentialing activities of MercyOne.

ii. To consultants, accountants, auditors, attorneys, transcription companies, information technology providers, etc.

D. Other Uses and Disclosures: As part of treatment, payment and health care operations, MercyOne may also use your PHI for the following purposes:

i. Fundraising Activities: MercyOne will use and may also disclose some of your PHI to a related foundation for certain fundraising activities. For example, MercyOne may disclose your demographic information, your treatment dates of service, treating physician information, department of service and outcomes information to the foundation who may ask you for a monetary donation. Any fundraising communication sent to you will let you know how you can exercise your right to opt-out of receiving similar communications in the future.

ii. Medical Research: MercyOne will use and disclose your PHI without your authorization to medical researchers who request it for approved medical research projects. Researchers are required to safeguard all PHI they receive.

iii. Information and Health Promotion Activities: MercyOne will use and disclose some of your PHI for certain health promotion activities. For example, your name and address will be used to send you general newsletter or specific information based on your own health concerns.

E. More Stringent State and Federal Laws: The State law of Iowa is more stringent than HIPAA in several areas. Certain federal laws also are more stringent than HIPAA. MercyOne will continue to abide by these more stringent state and federal laws.

i. More Stringent Federal Laws: The federal laws include applicable internet privacy laws, such as the Children’s Online Privacy Protection Act and the federal laws and regulations governing the confidentiality of health information regarding substance abuse treatment.

ii. More Stringent State Laws: State law is more stringent when the individual is entitled to greater access to records than under HIPAA. State law also is more restrictive when the records are more protected from disclosure by state law than under HIPAA. In cases where MercyOne provides treatment to a patient who resides in a neighboring state, MercyOne will abide by the more stringent applicable state law.

F. Health Information Exchange: MercyOne shares your health records electronically or otherwise with a state-designated Health Information exchange ("HIE") that exchanges health records with other HIEs unless other HIEs allow you to opt out of participating. MercyOne also uses data exchange technology (such as other HIEs, direct messaging services, and provider portals) with its Electronic Health Record ("EHR") to share your health records for continuity of care and treatment. HIEs and data exchange technology also enable the sharing of your health records to improve the quality of health care services provided to you (e.g., avoiding unnecessary duplicate testing). The shared health records will include, if applicable, sensitive diagnoses such as HIV/AIDS, sexually transmitted diseases, genetic information, mental health, and substance abuse, etc. HIEs and data exchange technology function as our business associate and, in acting on our behalf, they will transmit, maintain and store your PHI for treatment, payment and health care operation purposes. HIEs and data exchange technologies are required to implement administrative, physical and technical safeguards that reasonably and appropriately protect the confidentiality and integrity of your medical information. For more information please contact MercyOne Privacy Official at 641-428-7297

II. Permitted Use or Disclosure with an Opportunity for You to Agree or Object

A. Family/Friends: MercyOne will disclose PHI about you to a friend or family member who is involved in or paying for your medical care. You have a right to request that your PHI not be shared with some or all of your family or friends. In addition, MercyOne will disclose PHI about you to an agency assisting in disaster relief efforts so that your family can be notified about your condition, status, and location.

B. MercyOne –Directory: MercyOne may include certain information about you in a directory while you are a hospital patient at MercyOne. This information will include your name, location in MercyOne, your general condition (e.g., fair, stable, critical, etc.) and your religious affiliation. The directory information, except your religious affiliation, will be disclosed to people who ask for you by name. You have the right to request that your name not be included in MercyOne's directory. If you request to opt-out of the directory, we cannot inform visitors of your presence, location, or general condition.

C. Spiritual Care: Directory information, including your religious affiliation, will be given to a member of the clergy, even if they do not ask for you by name. Spiritual care providers are members of the health care team at MercyOne and may be consulted upon regarding your care. You have the right to request that your name not be given to any member of the clergy.

D. Media Reports: MercyOne will release facility directory information to the media (excluding religious affiliation) if the media requests information about you using your name and after we have given you an opportunity to agree or object.

III. Use or Disclosure Requiring Your Authorization

A. Marketing: Subject to certain limited exceptions, your written authorization is required in cases where MercyOne receives any direct or indirect financial remuneration in exchange for making the communication to you which encourages you to purchase a product or service or for a disclosure to a third party who wants to market their products or services to you.

B. Research: MercyOne will obtain your written authorization to use or disclose your PHI for research purposes when required by HIPAA.

C. Psychotherapy Notes: Most uses and disclosures of psychotherapy notes require your written authorization.

D. Sale of PHI: Subject to certain limited exceptions, disclosures that constitute a sale of PHI require your written authorization.

E. Other Uses and Disclosures: Any other uses or disclosures of PHI that are not described in this Notice of Privacy Practices require your written authorization. Written authorizations will let you know why we are using your PHI. You have the right to revoke an authorization at any time.

IV. Use or Disclosure Permitted or Required by Public Policy or Law without your Authorization

A. Law Enforcement Purposes: MercyOne will disclose your PHI for law enforcement purposes as required by law, such as identifying a criminal suspect or a missing person, or providing information about a crime victim or criminal conduct.

B. Required by Law: MercyOne will disclose PHI about you when required by federal, state or local law. Examples include disclosures in response to a court order / subpoena, mandatory state reporting (e.g., gunshot wounds, victims of child abuse or neglect), or information necessary to comply with other laws such as workers’ compensation or similar laws. MercyOne will report drug diversion and information related to fraudulent prescription activity to law enforcement and regulatory agencies.

C. Public Health Oversight or Safety: MercyOne will use and disclose PHI to avert a serious threat to the health and safety of a person or the public. Examples include disclosures of PHI to state investigators regarding quality of care or to public health agencies regarding immunizations, communicable diseases, etc. MercyOne will use and disclose PHI for activities related to the quality, safety or effectiveness of FDA regulated products or activities, including collecting and reporting adverse events, tracking and facilitating in product recalls, etc.

D. Coroners, Medical Examiners, Funeral Directors: MercyOne will disclose your PHI to a coroner or medical examiner. For example, this will be necessary to identify a deceased person or to determine a cause of death. MercyOne may also disclose your medical information to funeral directors as necessary to carry out their duties.

E. Organ Procurement: MercyOne will disclose PHI to an organ procurement organization or entity for organ, eye or tissue donation purposes.

F. Specialized Government Functions: MercyOne will disclose your PHI regarding government functions such as military, national security and intelligence activities. MercyOne will use or disclose PHI to the Department of Veterans Affairs to determine whether you are eligible for certain benefits.

G. Immunizations: MercyOne will disclose proof of immunization to a school where the state or other similar law requires it prior to admitting a student.

V. Your Health Information Rights

You have the following individual rights concerning your PHI:

A. Right to Inspect and Copy: Subject to certain limited exceptions, you have the right to access your PHI and to inspect and copy your PHI as long as we maintain the data.

If MercyOne denies your request for access to your PHI, MercyOne will notify you in writing with the reason for the denial. For example, you do not have the right to psychotherapy notes or to inspect the information which is subject to law prohibiting access. You may have the right to have this decision reviewed.

You also have the right to request your PHI in electronic format in cases where MercyOne utilizes electronic health records. You may also access information via patient portal if made available by MercyOne.

You may be charged a reasonable copying fee in accordance with applicable federal or state law.

B. Right to Amend: You have the right to amend your PHI for as long as MercyOne maintains the data. You must make your request for amendment of your PHI in writing to MercyOne, including your reason to support the requested amendment.

However, MercyOne will deny your request for amendment if:

i. MercyOne did not create the information;

ii. The information is not part of the designated record set;

iii. The information would not be available for your inspection (due to its condition or nature); or

iv. The information is accurate and complete.

If MercyOne denies your request for changes in your PHI, MercyOne will notify you in writing with the reason for the denial. MercyOne will also inform you of your right to submit a written statement disagreeing with the denial. You may ask that MercyOne include your request for amendment and the denial any time that MercyOne subsequently discloses the information that you wanted changed. MercyOne may prepare a rebuttal to your statement of disagreement and will provide you with a copy of that rebuttal.

C. Right to an Accounting: You have a right to receive an accounting of the disclosures of your PHI that MercyOne has made, except for the following disclosures:

i. To carry out treatment, payment or health care operations;

ii. To you;

iii. To persons involved in your care;

iv. For national security or intelligence purposes; or

v. To correctional institutions or law enforcement officials.

You must make your request for an accounting of disclosures of your PHI in writing to MercyOne.

You must include the time period of the accounting, which may not be longer than 6 years. In any given 12-month period, MercyOne will provide you with an accounting of the disclosures of your PHI at no charge. Any additional requests for an accounting within that time period will be subject to a reasonable fee for preparing the accounting.

D. Right to Request Restrictions: You have the right to request restrictions on certain uses and disclosures of your PHI to carry out treatment, payment or health care operations functions or to prohibit such disclosure. However, MercyOne will consider your request but is not required to agree to the requested restrictions.

E. Right to Request Restrictions to a Health Plan: You have the right to request a restriction on disclosure of your PHI to a health plan (for purposes of payment or health care operations) in cases where you paid out of pocket, in full, for the items received or services rendered.

F. Right to Confidential Communications: You have the right to receive confidential communications of your PHI by alternative means or at alternative locations. For example, you may request that MercyOne only contact you at work or by mail.

G. Right to Receive a Copy of this Notice: You have the right to receive a paper copy of this Notice of Privacy Practices, upon request.

VI. Breach of Unsecured PHI

If a breach of unsecured PHI affecting you occurs, MercyOne is required to notify you of the breach.

VII. Sharing and Joint Use of Your Health Information

In the course of providing care to you and in furtherance of MercyOne’s mission to improve the health of the community, MercyOne will share your PHI with other organizations as described below who have agreed to abide by the terms described below:

A. Medical Staff. The medical staff and MercyOne participate together in an organized health care arrangement to deliver health care to you at MercyOne. Both MercyOne and its medical staff have agreed to abide by the terms of this Notice with respect to PHI created or received as part of delivery of health care to you in MercyOne. Physicians and allied health care professionals are members of MercyOne’s medical staff will have access to and use your PHI for treatment, payment and health care operations purposes related to your care within MercyOne. The MercyOne will disclose your PHI to the medical staff for treatment, payment and health care operations.

B. Membership in MercyOne MercyOne and other members of MercyOne participate together in an organized health care arrangement for utilization review and quality assessment activities. As a part of MercyOne, a Catholic health care system, MercyOne and other hospitals, nursing homes, and health care providers in MercyOne share your PHI for utilization review and quality assessment activities of MercyOne, the parent company, and its members. Members of MercyOne also use your PHI for your treatment, payment to MercyOne and/or for the health care operations permitted by HIPAA with respect to our mutual patients. All members of MercyOne have agreed to abide by the terms of this Notice with respect to PHI created or received as part of utilization review and quality assessment activities. Members of MercyOne will abide by the terms of their own Notice of Privacy Practices in using your PHI for treatment, payment or health care operations.

Please go to the MercyOne website for a listing of member organizations at https://www.mercyone.org/. Or, alternatively, you can call MercyOne’s Privacy Official to request the same.

C. Business Associates. MercyOne will share your PHI with business associates and their Subcontractors contracted to perform business functions on MercyOne’s behalf, including MercyOne which performs certain business functions for MercyOne.

D. Your Health Care Providers and Care Coordinators. You receive care from MercyOne delivered in an integrated care setting, where patients are seen by several different providers and in several care settings as part of continuity of care and coordinated care delivery. MercyOne shares your PHI with other health care providers and care coordinators who work together to provide treatment, obtain payment and conduct health care operations. Your PHI is shared electronically in multiple ways with providers involved in the delivery of care and care coordination. Your PHI may be shared via a direct connection to the electronic health record system of other providers. Your PHI may be shared in a health information exchange or via technology that enables downstream providers and care coordinators to obtain your information. Your PHI may be shared via secure transmission to other providers' inboxes.

VIII. Changes to this Notice. MercyOne will abide by the terms of the Notice currently in effect. MercyOne reserves the right to make material changes to the terms of its Notice and to make the new Notice provisions effective for all PHI that it maintains. MercyOne will distribute / provide you with a revised Notice at your first visit following the revision of the Notice in cases where it makes a material change in the Notice. You can also ask MercyOne for a current copy of the Notice at any time. 

IX. Complaints. If you believe your privacy rights have been violated, you may file a complaint with MercyOne’s Privacy Official or with the Secretary of the Department of Health and Human Services. All complaints must be submitted in writing directly to MercyOne’s Privacy Official. MercyOne assures you that there will be no retaliation for filing a complaint. You will not be retaliated against for filing any complaint.

X. Privacy Official – Questions / Concerns / Additional Information. If you have any questions, concerns, or want further information regarding the issues covered by this Notice of Privacy Practice or seek additional information regarding MercyOne’s privacy policies and procedures, please contact MercyOne's Privacy Official at 641-428-7297.

AVISO DE PRÁCTICAS DE PRIVACIDAD

Fecha de vigencia: 14 de abril de 2003
Revisado: 4 de abril de 2023

ESTE AVISO DESCRIBE CÓMO SE PUEDE USAR Y DIVULGAR SU INFORMACIÓN DE SALUD Y CÓMO USTED PUEDE OBTENER ACCESO A ELLA. LÉALO DETENIDAMENTE.

La Ley de Portabilidad y Responsabilidad de Seguros de Salud de 1996 y la Ley de Tecnología de la Información de Salud para la Economía y la Salud Clínica (que se encuentra en el Título XIII de la Ley de Recuperación y Reinversión Estadounidense de 2009) (en conjunto se conocen como “HIPAA”), sujetas a enmiendas periódicas, exigen a MercyOne mantener la privacidad de la información de salud de los pacientes que se pueda identificar de manera individual (esta información es “información de salud protegida” y se refiere a ella en este documento como “PHI”). También estamos obligados a proporcionar a los pacientes un Aviso de prácticas de privacidad con respecto a la PHI. Solo usaremos o divulgaremos su PHI según lo permita o exija la ley estatal correspondiente. Este Aviso aplica a su PHI que tenemos en nuestro poder, incluidos los registros médicos que nosotros generamos.

MercyOne entiende que su información de salud es muy personal y estamos comprometidos a salvaguardar su privacidad. Lea detenidamente este Aviso de prácticas de privacidad. Este describe cómo usaremos y divulgaremos su PHI.

Este Aviso aplica a la prestación de atención médica por MercyOne y su personal médico en el hospital principal, departamentos ambulatorios, clínicas y otras entidades de MercyOne. Este Aviso también aplica a las actividades de revisión de la utilización y la evaluación de calidad de MercyOne como miembro de MercyOne, un sistema católico de atención médica con instalaciones en todo Iowa.

I. Uso o divulgación permitidos

A. Tratamiento: MercyOne utilizará y divulgará su PHI para proporcionar, coordinar o administrar su atención médica y servicios relacionados para llevar a cabo las funciones de tratamiento. Los siguientes son ejemplos de cómo MercyOne utilizará o divulgará su PHI:

i. A su médico tratante, médicos especialistas y otros proveedores de atención médica que tengan una necesidad legítima de ver esta información para su atención y tratamiento continuo.

ii. Para coordinar su tratamiento (por ejemplo, programación de citas) con nosotros y otros proveedores de atención médica, como su nombre, dirección, empleo, compañía de seguros, etc.

iii. Comunicarnos con usted para recordarle que tiene una cita para recibir tratamiento o atención médica en nuestras instalaciones.

iv. Para ofrecerle información sobre alternativas de tratamiento u otros beneficios o servicios relacionados con la salud.

v. Si es un recluso de una institución penitenciaria o está bajo la custodia de un agente del orden público, MercyOne divulgará su PHI a la institución penitenciaria o al agente del orden público.

B. Pago: MercyOne utilizará y divulgará su PHI para fines de pago. Los siguientes son ejemplos de cómo MercyOne utilizará o divulgará su PHI:

i. A una compañía de seguros, un tercero pagador, un tercero administrador, un plan de salud u otro proveedor de atención médica (o sus representantes debidamente autorizados) para fines de pago como determinar la cobertura, la elegibilidad, la aprobación/autorización previa para el tratamiento, la facturación, la gestión de reclamos, las auditorías de reembolso, etc.

ii. A las agencias de cobranza y otros subcontratistas contratados para obtener el pago por la atención recibida.

C. Operaciones de atención médica: MercyOne usará y divulgará su PHI para fines de operación de la atención médica. Los siguientes son ejemplos de cómo MercyOne utilizará o divulgará su PHI:

i. Para la gestión de casos, aseguramiento de la calidad, utilización, contabilidad, auditoría, actividades basadas en la población que se relacionen con mejorar la salud o reducir los costos de atención médica, educación, acreditación, concesión de licencias y actividades de acreditación de MercyOne.

ii. A consultores, contadores, auditores, abogados, empresas de transcripción, proveedores de tecnología de la información, etc.

D. Otros usos y divulgaciones: Como parte de las operaciones de tratamiento, pago y atención médica, MercyOne también puede utilizar su PHI para los siguientes fines:

i. Actividades para la recaudación de fondos: MercyOne utilizará y también podrá divulgar parte de su PHI a una fundación relacionada para ciertas actividades de recaudación de fondos. Por ejemplo, MercyOne puede divulgar sus datos demográficos, las fechas de servicio de su tratamiento, la información del médico tratante, el departamento del servicio y la información de los resultados a la fundación, quien puede solicitarle una donación monetaria. Cualquier comunicado sobre recaudación de fondos que se le envíe le informará cómo puede ejercer su derecho a excluirse voluntariamente de recibir comunicaciones similares en el futuro.

ii. Investigación médica: MercyOne usará y divulgará su PHI sin su autorización a investigadores médicos que la soliciten para proyectos de investigación médica aprobados. Los investigadores deben salvaguardar toda PHI que reciben.

iii. Actividades de información y promoción de salud: MercyOne utilizará y divulgará parte de su PHI para determinadas actividades de promoción de la salud. Por ejemplo, su nombre y dirección se utilizarán para enviarle un boletín informativo general o información específica con base en sus propias inquietudes de salud.

E. Leyes estatales y federales más estrictas: La ley estatal de Iowa es más estricta que la HIPAA en varias áreas. Ciertas leyes federales también son más estrictas que la HIPAA. MercyOne continuará cumpliendo con estas leyes estatales y federales más estrictas.

i. Leyes federales más estrictas: Las leyes federales incluyen las leyes de privacidad en Internet correspondientes, como la Ley de Protección de la Privacidad Infantil en Internet y las leyes y regulaciones federales que rigen la confidencialidad de la información de salud relacionada con el tratamiento por abuso de sustancias. 

ii. Leyes estatales más estrictas: La ley estatal es más estricta cuando la persona tiene derecho a un mayor acceso a los registros que de conformidad con la HIPAA. La ley estatal también es más restrictiva cuando la ley estatal ofrece mayor protección a los registros que la HIPAA. En los casos en que MercyOne proporcione un tratamiento a un paciente que reside en un estado vecino, MercyOne cumplirá con la ley estatal correspondiente que sea más estricta.

F. Intercambio de información de salud: MercyOne comparte sus registros médicos de manera electrónica o de otro modo con un intercambio de información médica ("HIE") designado por el estado que intercambia registros médicos con otros HIE, a menos que los otros HIE le permitan excluirse voluntariamente de participar. MercyOne también utiliza tecnología de intercambio de datos (como otros HIE, servicios de mensajería directa y portales de proveedores) con su Registro Médico Electrónico ("EHR") a fin de compartir sus registros médicos para fines de continuar con la atención y el tratamiento. Los HIE y la tecnología de intercambio de datos también permiten compartir sus registros médicos para mejorar la calidad de los servicios de atención médica que se le proporcionan (por ejemplo, evitar pruebas duplicadas innecesarias). Los registros de salud compartidos incluirán, si corresponde, diagnósticos sensibles como VIH/SIDA, enfermedades de transmisión sexual, información genética, salud mental y abuso de sustancias, etc. Los HIE y la tecnología de intercambio de datos funcionan como nuestro aliado comercial y, al actuar en representación nuestra, transmitirán, mantendrán y guardarán su PHI para fines de tratamiento, pago y operación de la atención médica. A los HIE y las tecnologías de intercambio de datos se les exige implementar salvaguardas administrativas, físicas y técnicas que protejan de manera razonable y adecuada la confidencialidad e integridad de su información de salud. Para obtener más información, comuníquese con el Funcionario de Privacidad de MercyOne al 641-428- 7297.

II. Uso o divulgación permitidos con la oportunidad para que usted lo acepte o rechace

A. Amigos y familiares: MercyOne divulgará su PHI a un amigo o familiar que esté involucrado en su atención médica o que pague por ella. Usted tiene derecho a solicitar que su PHI no se comparta con algunos o todos sus familiares o amigos. Además, MercyOne divulgará su PHI a una agencia que ayuda en casos de desastres para que su familia pueda ser notificada sobre su situación, estado y ubicación.

B. Directorio de MercyOne: MercyOne puede incluir cierta información sobre usted en un directorio mientras sea paciente hospitalizado en MercyOne. Esta información incluirá su nombre, ubicación en MercyOne, su condición general (por ejemplo, regular, estable, crítica, etc.) y su afiliación religiosa. La información del directorio, excepto su afiliación religiosa, se divulgará a las personas que pregunten por usted por nombre. Tiene derecho a solicitar que su nombre no se incluya en el directorio de MercyOne. Si solicita excluirse del directorio, no podemos informar a los visitantes sobre su presencia, ubicación o condición general.

C. Atención espiritual: La información del directorio, incluida su afiliación religiosa, se proporcionará a un miembro del clero, incluso si no preguntan por usted por nombre. Los proveedores de atención espiritual son miembros del equipo de la atención médica de MercyOne y se les puede consultar sobre su atención. Usted tiene derecho a solicitar que su nombre no se proporcione a ningún miembro del clero.

D. Informes a los medios de comunicación: MercyOne divulgará la información del directorio de las instalaciones a los medios de comunicación (sin incluir la afiliación religiosa) si los medios solicitan información sobre usted usando su nombre y después de que le hayamos dado a usted la oportunidad de que acepte o rechace que se proporcione esta información.

III. Uso o divulgación que requiere su autorización

A. Mercadotecnia: Se requiere su autorización por escrito, sujeto a ciertas excepciones limitadas, en los casos en que MercyOne reciba cualquier remuneración financiera directa o indirecta a cambio de enviarle un comunicado que lo anime a comprar un producto o servicio o para la divulgación a un tercero que desee ofrecerle sus productos o servicios.

B. Investigación: MercyOne obtendrá su autorización por escrito para usar o divulgar su PHI con fines de investigación cuando lo requiera la HIPAA.

C. Notas de psicoterapia: La mayoría de los usos y las divulgaciones de las notas de psicoterapia requieren su autorización por escrito. 

D. Venta de PHI: Sujeto a ciertas excepciones limitadas, las divulgaciones que constituyen una venta de PHI requieren de su autorización por escrito. 

E. Otros usos y divulgaciones: Cualquier otro uso o divulgación de PHI que no se describa en este Aviso de prácticas de privacidad requiere de su autorización por escrito. Las autorizaciones por escrito le informarán para qué estamos utilizando su PHI. Usted tiene derecho a revocar una autorización en cualquier momento.

IV. Uso o divulgación permitido o requerido por una política pública o una ley sin su autorización

A. Fines del orden público: MercyOne divulgará su PHI para fines del orden público según lo exige la ley, como identificar a un sospechoso de un delito o una persona desaparecida o proporcionar información sobre la víctima de un delito o una conducta delictiva.

B. Requerido por la ley: MercyOne divulgará su PHI cuando así lo requiera la ley federal, estatal o local. Los ejemplos incluyen divulgaciones en respuesta a una orden judicial/citación, informes estatales obligatorios (por ejemplo, heridas de bala, víctimas de abuso o negligencia infantil) o información necesaria para cumplir con otras leyes, como la compensación laboral o leyes similares. MercyOne reportará el desvío de medicamentos y la información relacionada con recetas médicas fraudulentas a las agencias reguladoras y del orden público.

C. Vigilancia o seguridad de la salud pública: MercyOne utilizará y divulgará PHI para evitar una amenaza grave a la salud y seguridad de una persona o del público. Los ejemplos incluyen divulgaciones de PHI a investigadores estatales con respecto a la calidad de la atención o a las agencias de salud pública con respecto a vacunas, enfermedades transmisibles, etc. MercyOne usará y divulgará PHI para actividades relacionadas con la calidad, seguridad o efectividad de productos o actividades regulados por la FDA, que incluye recolectar y reportar eventos adversos, rastrear y facilitar retiradas de productos del mercado, etc.

D. Médicos legistas, médicos forenses, directores funerarios: MercyOne divulgará su PHI a un médico legista o médico forense. Por ejemplo, esto será necesario para identificar a una persona fallecida o determinar la causa de muerte. MercyOne también puede divulgar su información de salud a directores funerarios según sea necesario para llevar a cabo sus deberes. 

E. Obtención de órganos: MercyOne divulgará su PHI a una organización o entidad de obtención de órganos para fines de donación de órganos, ojos o tejidos.

F. Funciones gubernamentales especializadas: MercyOne divulgará su PHI en relación con funciones gubernamentales como actividades militares, de seguridad nacional y de inteligencia. MercyOne utilizará o divulgará PHI al Departamento de Asuntos de Veteranos para determinar si usted es elegible a ciertos beneficios.

G. Vacunas: MercyOne divulgará certificados de vacunación a una escuela donde el estado u otra ley similar los requiera antes de admitir a un estudiante.

V. Derechos a su información de salud

Usted tiene los siguientes derechos individuales con respecto a su PHI:

A. Derecho a inspeccionar y copiar: Sujeto a ciertas excepciones limitadas, usted tiene derecho a acceder a su PHI y a inspeccionarla y copiarla siempre que nosotros mantengamos los datos.

Si MercyOne niega la solicitud de acceso a su PHI, MercyOne le notificará por escrito el motivo del rechazo. Por ejemplo, usted no tiene derecho a recibir las notas de psicoterapia ni a inspeccionar la información que está sujeta a una ley que prohíbe el acceso. Es posible que tenga derecho a que se analice esta decisión.

También tiene derecho a solicitar su PHI en formato electrónico en caso de que MercyOne utilice registros médicos electrónicos. También puede acceder a la información a través del portal del paciente si MercyOne lo tiene disponible.

Es posible que se le cobre una tarifa razonable por las copias de acuerdo con la ley federal o estatal correspondiente.

B. Derecho a solicitar modificaciones: Usted tiene derecho a modificar su PHI siempre que MercyOne mantenga los datos. Debe presentar su solicitud para modificar su PHI por escrito a MercyOne, que incluya el motivo para respaldar la modificación solicitada.

Sin embargo, MercyOne rechazará su solicitud de modificación si:

i. MercyOne no creó la información;

ii. La información no forma parte del conjunto de registros designado;

iii. La información no estaría disponible para su inspección (debido a su condición o índole); o

iv. La información es precisa y completa. 

Si MercyOne rechaza su solicitud para hacer cambios a su PHI, MercyOne le notificará por escrito el motivo del rechazo. MercyOne también le informará sobre su derecho a presentar una declaración por escrito de su desacuerdo con el rechazo. Puede solicitar que MercyOne incluya su solicitud de modificación y el rechazo cada vez en que, en lo sucesivo, MercyOne divulgue la información que usted deseaba modificar. MercyOne puede impugnar su declaración de desacuerdo y le proporcionará una copia de esa impugnación.

C. Derecho a informes: Usted tiene el derecho a recibir un informe de las divulgaciones de su PHI que MercyOne ha hecho, excepto en los siguientes casos de divulgación:

i. Para llevar a cabo tratamientos, pagos u operaciones de atención médica;

ii. A usted;

iii. A las personas involucradas en su atención;

iv. Para fines de seguridad nacional o de inteligencia; o

v. A instituciones penitenciarias o agentes del orden público. 

Debe presentar su solicitud por escrito del informe sobre las divulgaciones de su PHI a MercyOne.

Deberá incluir el periodo de tiempo del informe, el cual no podrá ser mayor a 6 años. En cualquier periodo de 12 meses, MercyOne le proporcionará un informe sobre las divulgaciones de su PHI sin costo alguno. Cualquier solicitud adicional de informes dentro de ese periodo estará sujeta a una tarifa razonable por la preparación del informe.

D. Derecho a solicitar restricciones: Usted tiene derecho a solicitar restricciones sobre ciertos usos y divulgaciones de su PHI para llevar a cabo el tratamiento, pago u operaciones de atención médica o prohibir dicha divulgación. No obstante, MercyOne considerará su solicitud, pero no está obligado a aceptar las restricciones solicitadas.

E. Derecho a solicitar restricciones a un plan de salud: Tiene derecho a solicitar que se restrinja la divulgación de su PHI a un plan de salud (para fines de pago u operaciones de atención médica) en los casos en que usted pagó de su bolsillo, en su totalidad, por los artículos recibidos o los servicios prestados.

F. Derecho a comunicados confidenciales: Usted tiene derecho a recibir comunicados confidenciales de su PHI por medios alternativos o en lugares alternativos. Por ejemplo, puede solicitar que MercyOne solo se comunique con usted en el trabajo o por correo.

G. Derecho a recibir una copia de este aviso: Usted tiene derecho a recibir una copia impresa, al solicitarlo, de este Aviso de prácticas de privacidad.

VI. Violación de PHI no segura

Si se viola su PHI no segura y esto le afecta, MercyOne debe notificarle sobre dicha violación.

VII. Intercambio y uso conjunto de su información de salud

En el transcurso de proporcionarle atención y en cumplimiento de la misión de MercyOne de mejorar la salud de la comunidad, MercyOne compartirá su PHI con otras organizaciones, como se describe más adelante, que han aceptado cumplir con los términos que se describen a continuación:

A. Personal médico. El personal médico y MercyOne participan juntos en un acuerdo de atención médica organizada para proporcionarle atención médica en MercyOne. Tanto MercyOne como su personal médico han acordado cumplir con los términos de este Aviso con respecto a la PHI creada o recibida como parte de la atención médica que usted reciba en MercyOne. Los médicos y profesionales de atención médica aliados que son miembros del personal médico de MercyOne tendrán acceso y utilizarán su PHI para fines del tratamiento, pago y operaciones de atención médica relacionados con su cuidado dentro de MercyOne. MercyOne divulgará su PHI al personal médico para el tratamiento, pago y operaciones de atención médica.

B. Membresía en MercyOne MercyOne y otros miembros de MercyOne participan juntos en un acuerdo de atención médica organizada para las actividades de revisión de la utilización y de evaluación de calidad. Como parte de MercyOne, un sistema católico de atención médica, MercyOne y otros hospitales, residencias para ancianos y proveedores de atención médica en MercyOne comparten su PHI para las actividades de revisión de la utilización y de evaluación de calidad de MercyOne, la empresa matriz y sus miembros. Los miembros de MercyOne también utilizan su PHI para su tratamiento, pago a MercyOne o para las operaciones de atención médica permitidas por la HIPAA con respecto a nuestros pacientes mutuos. Todos los miembros de MercyOne han aceptado cumplir con los términos de este Aviso con respecto a la PHI creada o recibida como parte de las actividades de revisión de la utilización y de evaluación de calidad. Los miembros de MercyOne cumplirán con los términos de su propio Aviso de prácticas de privacidad al usar su PHI para el tratamiento, pago u operaciones de atención médica.

Visite el sitio web de MercyOne para obtener una lista de las organizaciones miembros en https://www.mercyone.org/. O también puede llamar al Funcionario de Privacidad de MercyOne para solicitar esta lista.

C. Colaboradores comerciales. MercyOne compartirá su PHI con colaboradores comerciales y sus subcontratistas contratados para llevar a cabo operaciones comerciales en nombre de MercyOne, incluido MercyOne, que lleva a cabo ciertas funciones comerciales para MercyOne. 

D. Sus proveedores de atención médica y coordinadores de atención. Usted recibe atención de MercyOne que se ofrece en un entorno de atención integrada, donde los pacientes son atendidos por varios proveedores diferentes y en varios entornos de atención como parte de la continuidad de la atención y la prestación de atención coordinada. MercyOne comparte su PHI con otros proveedores de atención médica y coordinadores de atención que trabajan juntos para proporcionar tratamiento, obtener pagos y llevar a cabo operaciones de atención médica. Su PHI se comparte de manera electrónica de varias maneras con los proveedores involucrados en la prestación de atención y la coordinación de la atención. Su PHI puede compartirse a través de una conexión directa al sistema de registros médicos electrónicos de otros proveedores. Su PHI puede compartirse en un intercambio de información de salud o mediante tecnología que permite a los proveedores y coordinadores de atención secundarios obtener su información. Su PHI puede compartirse mediante una transmisión segura a las bandejas de entrada de otros proveedores.

VIII. Cambios a este aviso. MercyOne cumplirá con los términos del Aviso que está vigente actualmente. MercyOne se reserva el derecho de hacer cambios importantes a los términos de su Aviso y que nuevas disposiciones del Aviso entren en vigor para toda la PHI que mantiene. MercyOne distribuirá o le proporcionará un Aviso modificado en su primera visita después de la revisión del Aviso en los casos en que haga un cambio importante al Aviso. También puede pedirle a MercyOne una copia actualizada del Aviso en cualquier momento.

IX. Quejas. Si cree que se han violado sus derechos de privacidad, puede presentar una queja ante el Funcionario de Privacidad de MercyOne o ante el Secretario del Departamento de Salud y Servicios Humanos. Todas las quejas deben presentarse por escrito directamente al Funcionario de Privacidad de MercyOne. MercyOne le asegura que no habrá represalias por presentar una queja. No sufrirá represalias en su contra por presentar alguna queja.

X. Funcionario de privacidad: preguntas/inquietudes/información adicional. Si tiene alguna pregunta, inquietud o desea obtener más información sobre los temas que cubre este Aviso de prácticas de privacidad o busca información adicional sobre las políticas y los procedimientos de privacidad de MercyOne, comuníquese con el Funcionario de Privacidad de MercyOne al 641-428-7297.