Privacy Policy

At Care Suite Healthcare, we prioritize the privacy and security of our residents' personal information. This Privacy Policy outlines how we collect, use, store, and protect personal data in accordance with applicable privacy laws, including HIPAA and the California Consumer Privacy Act (CCPA), as well as our internal security policies. By using our services, you agree to the practices described in this policy.

1. Information We Collect

We collect personal, medical, and financial information from residents and their representatives to provide quality care. This information may include:
      -  Personal Information: Name, address, phone number, email, date of birth, Social Security number, emergency contact information, etc.
      -  Medical Information: Health history, diagnoses, medications, allergies, treatment plans, healthcare provider details, etc.
      -  Financial Information: Billing details, payment information, insurance details, etc.
      -  Usage Information: Information collected during interactions with our website, including IP address, browser type, and activity logs.
‍
2. How We Collect Information

We collect information in the following ways:
      -  Directly from residents or their legal representatives during the admission process.
      -  From healthcare providers, family members, or other authorized parties.
      -  Through our website or online services.
      -  Through third-party partners, such as insurance companies or referral programs.
‍
3. Use of Information

We use the information we collect to:
      -  Develop and maintain personalized care plans for each resident.
      -  Coordinate with healthcare providers to ensure comprehensive care.
      -  Communicate with family members and legal representatives regarding a resident's well-being.
      -  Process payments and handle billing.
      -  Maintain and improve our services, including conducting audits and evaluations.
      -  Comply with legal and regulatory requirements, including HIPAA standards.
‍
4. Disclosure of Information

We may disclose personal information to third parties only as necessary to fulfill the services we provide, including but not limited to:
      -  Healthcare Providers: Sharing health information with doctors, hospitals, pharmacists, and other medical professionals involved in a resident’s care.
      -  Insurance Providers: For billing and claims processing.
      -  Legal Representatives: Sharing information with authorized legal guardians or family members with permission.
      -  Third-Party Service Providers: Vendors that provide services on our behalf (e.g., payment processors, IT service providers). These parties are obligated to maintain confidentiality and use the information only for the purposes contracted.
      -  Regulatory and Law Enforcement Authorities: To comply with legal obligations, respond to legal processes, or protect the safety of residents, staff, and the public.

We do not sell or rent personal information to third parties for marketing purposes.

5. Resident Rights and Data Access

Residents and their legal representatives have the following rights regarding their personal information, in compliance with HIPAA and state privacy laws such as the California Consumer Privacy Act (CCPA):
      -  Right to Access: You have the right to request a copy of the personal and medical information we hold about you.
      -  Right to Rectification: You can request corrections to inaccurate or incomplete information.
      -  Right to Erasure: You may request that we delete your personal data under certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.
      -  Right to Restrict Processing: You have the right to request that we limit how we use your personal data.
      -  Right to Data Portability: You may request a copy of your personal information in a structured, commonly used format that can be transferred to another service provider.
      -  Right to Opt Out (for CCPA compliance): California residents have the right to opt out of the sale of their personal information.

To exercise these rights, please contact us at (612) 503-8080.

6. HIPAA Compliance

As a healthcare provider, Care Suite Healthcare is compliant with the Health Insurance Portability and Accountability Act (HIPAA), which governs the privacy and security of Protected Health Information (PHI). PHI includes any information that relates to a resident’s health status, provision of healthcare, or payment for healthcare that can be linked to an individual.HIPAA Rights include:
      -  Right to Request Restrictions: You may request restrictions on how your PHI is used or disclosed, though we are not always required to agree to these requests.
      -  Right to Confidential Communications: You can request that communications be sent to you in a specific way (e.g., via mail or phone).
      -  Right to Accounting of Disclosures: You may request an account of certain disclosures we have made of your PHI.
‍
7. Data Security

We take appropriate physical, technical, and administrative measures to safeguard personal information, including:Encryption:
      -  All personal and medical information stored electronically is encrypted.
      -  Access Control: Only authorized personnel have access to sensitive personal and medical information.
      -  Monitoring: We regularly monitor our systems for vulnerabilities and unauthorized access.
      -  Data Retention: Personal information is retained only as long as necessary to fulfill the purposes for which it was collected or as required by law.

Despite our efforts, no security system is completely impenetrable, and we cannot guarantee the absolute security of your data. In the event of a data breach, we will notify affected individuals and regulatory authorities as required by law.

8. Data Breach Notification

In the event of a data breach involving personal or medical information, we will take the following steps:
      -  Notify Affected Individuals: We will notify residents or their representatives as soon as possible about the breach, providing information on what data was affected and the steps we are taking to mitigate the impact.
      -  Notify Authorities: We will report the breach to regulatory bodies, including the Department of Health and Human Services (HHS) if the breach involves PHI, in accordance with HIPAA Breach Notification Rules.
      -  Remedial Action: We will investigate the breach, secure the compromised systems, and take measures to prevent future incidents.
‍
9. Data Retention and Disposal

We retain personal and medical data for as long as necessary to provide services or comply with legal obligations. Once information is no longer required, we will securely dispose of it using approved methods (e.g., data wiping, shredding).
‍
Retention Periods:
      -  Medical Information: Retained in accordance with state and federal medical record retention laws.
      -  Financial Information: Retained for auditing and tax purposes, generally for up to 7 years.
      -  Usage Information: Retained for system monitoring and improvement purposes, generally for up to 2 years.
‍
10. Cookies and Online Tracking

When you visit our website, we may use cookies or similar tracking technologies to enhance your browsing experience. Cookies are small data files stored on your device. You can control the use of cookies by adjusting your browser settings, though this may limit your ability to use certain features of our website.

Types of Cookies We Use:
      -  Essential Cookies: Necessary for the operation of our website.
      -  Analytical Cookies: Help us understand how visitors use our website, improving overall functionality.
 
You may opt out of third-party tracking by adjusting your browser settings or by visiting applicable opt-out pages.

11. Third-Party Links

Our website may contain links to third-party websites. Care Suite Healthcare is not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party websites before providing personal information.

12. Children’s Privacy

Care Suite Healthcare does not knowingly collect or solicit personal information from individuals under the age of 18. If we become aware that personal information from a child has been collected without verified parental consent, we will delete it as quickly as possible. If you believe that we have collected information from a minor, please contact us immediately.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. Any updates will be posted on our website, and significant changes will be communicated directly to residents or their legal representatives.

The "Last Updated" date at the top of this page reflects the most recent changes. Your continued use of our services after such updates signifies your acceptance of the new policy.

14. Legal Basis for Processing Personal Information

We process personal data under the following legal bases:
      -  Consent: When residents or their representatives provide informed consent for data collection and use.
      -  Contractual Necessity: To fulfill our obligations under the resident agreement.
      -  Legal Obligations: To comply with applicable laws, such as health and safety regulations.
      -  Legitimate Interests: For activities such as improving services, security monitoring, or responding to emergencies.
‍
15. Contact Information

If you have any questions or concerns about this Privacy Policy or wish to exercise your rights regarding personal information, please contact us:
‍
Care Suite Healthcare
Address: 7732 Regent Avenue N Brooklyn Park, MN 55443
Phone: (763) 291-5462
Email: info@caresuitehealthcare.com