This Notice describes how medical information about you may be used and disclosed by NutraLogics, Inc. (“Company”) in its capacity as a Business Associate to the Company’s clients, including physicians, trainers and other persons who provide you with care (each an “Affiliate”), and also tells you how you can get access to this information. Please review this Notice carefully.

What is your medical information?  All the health care related information the Affiliate and the Company have in your file, including your medical history, current condition, diagnosis, treatment plan, examination notes, test results, and prescriptions.

Why are you getting this Notice?  The Company is in the business of nutritional supplement fulfillment and acts as a Business Associate to the Affiliate in performing certain administrative and support functions and providing certain inventory, fulfillment, patient relations, information and financial services for the Affiliate which require access to your medical record.  As a Business Associate, the Company must comply with the HIPAA Privacy Rule that requires Company to protect the confidentiality of your medical information.  The Privacy Rule also gives you certain rights with respect to your medical information.  This Notice explains both our obligations and your rights under the Privacy Rule.

Your rights:  Although your physical medical file belongs to the Company and/or the Affiliate, the information in your file belongs to you.  You therefore have the right to:

  • Request that the Affiliate and the Company restrict the use or disclosure of your medical information for treatment, payment and health care operations.  Please note that neither the Affiliate nor the Company has to agree to the requested restrictions but if it either one does agree, they must abide by the restrictions.  Please also note that the Company is not a medical services provider and does not provide any kind of medical advice or treatment to anyone.  The Company is providing this Notice strictly in its role as a Business Associate to the Affiliate.
  • Request that the Affiliate and the Company use an alternative means to communicate with you on a confidential basis about your medical information.  You may also request that we send such communications to you at an alternative location.
  • Inspect and copy your medical information for as long as the Affiliate and/or the Company maintain your medical record.  Under certain specific circumstances, the Affiliate and/or the Company may deny your request but this denial is, in most cases, reviewable.  Please also note that there is some medical information that you do not have a right to access, including psychotherapy notes and information prepared in anticipation of civil, criminal or administrative proceedings.
  • Request in writing that the Company send you a copy of your medical record.  The Company I allowed to charge a reasonable amount for any paper copy provided and will respond to the request within 30 days.
  • Request in writing that the Affiliate and the Company amend you medical information or record, unless the record is already accurate and complete or neither your physician nor the Company creates the information you wish to amend.  The Company will act on your written request within 60 days after receiving it and either make the amendment or provide you with a written denial.
  • Except for certain disclosures, request an accounting of disclosures of your medical information by both the Affiliate and the Company.
  • Receive a paper copy of this Notice.

Company’s obligations: We are required to do the following:

  • Maintain the privacy of your medical information and provide you with this Notice.
  • Abide by the terms of this Notice.
  • Notify you if we cannot agree to a use or disclosure restriction you request.
  • Accommodate your reasonable request to communicate with you via alternative means or at an alternative location.

Please note that the Company reserves the right to change its privacy practices and apply the changes to your medical information.  If we do change our privacy practices, we will email you a revised Notice to the email address you have provided to us.

Uses and disclosures: These are some examples of the uses and disclosures of your medical information that the Company will make:

  • Fulfillment services:  The Company fulfills orders for nutritional supplements submitted to it by its Affiliates for their patients and maintains a comprehensive electronic health record (“EHR”) system which the Affiliate uses to submit your supplement prescriptions and orders.  The Company will use the information in your medical record on the EHR to pick, pack and ship your supplements and to fill any Auto Orders in the system.
  • Payment:  The Company will handle the billing for any supplements the Affiliate prescribes for you and will collect any amount due from you and make sure that payment is transmitted to the appropriate party.  All billing information, including any back-up sent with the bill will identify you and may include information about the types of products shipped to you.
  • Business Associates:  The Company may use outside consultants, including financial, IT and legal consultants, who may, in connection with providing services to the Company, have need to access your order information.  The Company may disclose your information to these outside consultants for the purpose of enabling them to provide the requested services to the Company.  Before Company discloses any of your medical information to such outside consultants, we will require the contractor to sign a Business Associate Agreement in which the consultant agrees to protect the confidentiality of your medical information.
  • We may disclose your medical information as required by law, including to the Centers for Medicare and Medicaid Services or other regulatory agency; in response to an order of court or administrative tribunal and as required by a valid subpoena; for law enforcement purposes; for public health purposes; to governmental authorities, including social service or protective service agencies, if we believe you have been the victim of abuse, neglect or domestic violence; to a health oversight agency for oversight activities authorized by law; to avert a serious threat to health or safety; in connection with specialized government functions including military or veteran’s activities, national security and intelligence activities and national security or intelligence activities; or during a medical emergency as necessary to protect your welfare.
  • The Company will make any other uses and/or disclosures of your medical information that are not related to treatment, payment or health care operations only with your prior written authorization.  If the Company wishes to use your medical information for any such other purpose (for example, marketing), we will first request that you sign an Authorization.  You are not required to sign the Authorization and if you do, you may revoke that Authorization at any time.
  • We will contact you to provide Auto Order reminders but will do so only at the e-mail address you provide to us for that purpose.

Complaints: If you think your privacy rights have been violated, you may complain to the Company’s Privacy Officer and/or to the federal Office of Civil Rights.  In order to file a complaint with Company, please speak with the Company’s Privacy Officer, Allison Roy (see below), and she will complete a written complaint form with you and follow up on your complaint.  The Company will not retaliate against you for filing a complaint.

Contact:  If you have any questions or complaints regarding your medical information or anything contained in this Notice, please contact the Privacy Officer, Allison Roy at 561-972-9553.

Effective date:  This Notice is effective as of September 17, 2013 until revised or revoked.