HIPAA Compliance Policy
Ventegra has adopted a General HIPAA Compliance Policy in order to comply with the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health (“HITECH”) Act of 2009 (Title XIII of division A and Title IV of division B of the American Recovery and Reinvestment Act “ARRA”) and the HIPAA Omnibus Final Rule (Effective Date: March 26, 2013). We acknowledge that full compliance with the HIPAA Final Rule is required by or before September 23, 2013.
Ventegra hereby acknowledges our duty and responsibility to protect the privacy and security of Individually Identifiable Health Information (“IIHI”) generally, and Protected Health Information (“PHI”) as defined in the HIPAA Regulations, under the regulations implementing HIPAA, other federal and state laws protecting the confidentiality of personal information, and under principles of general and professional ethics. We also acknowledge our duty and responsibility to support and facilitate the timely and unimpeded flow of health information for lawful and appropriate purposes.
This policy governs general HIPAA Compliance for Ventegra. All personnel of Ventegra must comply with this policy. Demonstrated competence in the requirements of this policy is an important part of the responsibilities of every member of our workforce. Officers, employees, Business Associates, contractors, affected vendors, temporary workers, and volunteers must read, understand, and comply with this policy in full and at all times.
Effective Date: January 1, 2016
This privacy notice discloses the privacy practices for www.ventegra.com. This privacy notice applies solely to information collected by this website, except where stated otherwise. It will notify you of the following:
- What information we collect;
- With whom it is shared;
- How it can be corrected;
- How it is secured;
- How policy changes will be communicated; and
- How to address concerns over misuse of personal data.
Information Collection, Use, and Sharing
We are the sole owners of the information collected on this site. We only have access to/collect information that you voluntarily give us via email or other direct contact from you. We will not sell or rent this information to anyone.
We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g., to ship an order.
Your Access to and Control Over Information
You may opt out of any future contacts from us at any time. You can do the following at any time by contacting us via the email address or phone number provided on our website:
- See what data we have about you, if any.
- Change/correct any data we have about you.
- Have us delete any data we have about you.
- Express any concern you have about our use of your data.
We take precautions to protect your information. When you submit sensitive information via the website, your information is protected both online and offline.
Wherever we collect sensitive information (such as credit card data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a closed lock icon at the bottom of your web browser, or looking for "https" at the beginning of the address of the web page.
While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (e.g., billing or customer service) are granted access to personally identifiable information. The computers/servers on which we store personally identifiable information are kept in a secure environment.
Notification of Changes
Whenever material changes are made to this privacy notice updates will be reflected here on our website.
Other Provisions as Required by Law
Numerous other provisions and/or practices may be required as a result of laws, international treaties, or industry practices. It is up to you to determine what additional practices must be followed and/or what additional disclosures are required. Please take special notice of the California Online Privacy Protection Act (CalOPPA), which is frequently amended and now includes a disclosure requirement for “Do Not Track” signals.
Fraud, Waste & Abuse
Part of our efforts to improve the healthcare system, Ventegra is committed to detecting, preventing and correcting fraud, waste and abuse.
What are Fraud, Waste, and Abuse?
FRAUD is generally defined as knowingly and willfully executing, or attempting to execute, a scheme or artifice to defraud any health care benefit program or to obtain (by means of false or fraudulent pretenses representations, or promises) any of the money or property owned by, or under the custody or control of, any health care benefit program. (18 U.S.C. § 1347)
WASTE is overutilization of services or other practices that, directly or indirectly, result in unnecessary costs to the health care system, including the Medicare and Medicaid programs. It is not generally considered to be caused by criminally negligent actions, but by the misuse of resources.
ABUSE includes any action(s) that may, directly or indirectly, result in one or more of the following:
- Unnecessary costs to the health care system, including the Medicare and Medicaid programs
- Improper payment for services
- Payment for services that fail to meet professionally recognized standards of care
- Services that are medically unnecessary
Abuse involves payment for items or services when there is no legal entitlement to that payment.
How to Report Fraud, Waste, and Abuse
If you suspect fraud, waste, or abuse in the healthcare system, please report it. To report suspected fraud, waste, or abuse, you can contact Ventegra: