Privacy policy

Image

Effective Date: 8/8/25

At The Family Connection (“we,” “us,” or “our”), protecting your privacy and safeguarding your Protected Health Information (PHI) is not just a legal requirement — it’s part of our commitment to you. This policy explains:

  1. How we handle PHI in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
  2. How we handle general personal information collected through our website https://www.tfc.health/

1. Our Responsibilities Under HIPAA

We are a Covered Entity under HIPAA. This means:

  • We are legally required to maintain the privacy and security of your PHI.
  • We must give you this notice explaining our privacy practices.
  • We will not use or share your PHI except as described here, unless you authorize it in writing.

2. Information We Collect

A. Protected Health Information (PHI)

When you receive care from us, we may collect:

  • Personal identifiers – name, date of birth, address, phone number, email.
  • Health information – diagnosis, treatment history, therapy notes, medical records.
  • Payment and insurance information – billing records, insurance policy numbers, claims details.
B. Website & Non-PHI Information

When you visit our website, we may collect:

  • Usage data – IP address, browser type, pages visited, time spent.
  • Cookies – small files used to improve site functionality. We configure our tracking tools so they do not collect or share PHI.

3. How We Use and Share PHI

We may use and share your PHI without additional authorization for:

  • Treatment – coordinating or managing your care.
  • Payment – billing your insurance, processing payments.
  • Health care operations – internal quality improvement, staff training, and compliance activities.
  • As required by law – such as for public health reporting or legal proceedings.

Other uses or disclosures of your PHI (including most marketing or sale of information) will require your written HIPAA authorization. You may revoke this authorization at any time.

4. Your HIPAA Rights

You have the right to:

  • Access – receive a copy of your PHI.
  • Amend – request correction of inaccurate PHI.
  • Restrict – limit how we use or share your PHI.
  • Accounting of disclosures – see a list of who we have shared your PHI with.
  • Request confidential communications – have us contact you by a preferred method or location.
  • File a complaint – with us or with the U.S. Department of Health and Human Services Office for Civil Rights (OCR) without fear of retaliation.

To exercise your rights, contact us at:

Phone: 505-717-1155
Fax: 505-717-1473

5. Data Security

We maintain administrative, technical, and physical safeguards that meet or exceed HIPAA Security Rule requirements. Access to PHI is restricted to authorized personnel only.

If there is ever a breach of unsecured PHI, we will notify you without unreasonable delay as required by the HIPAA Breach Notification Rule.

6. Website Privacy (Non-PHI Data)

  • Cookies are used to enhance website performance and analyze trends.
  • You can adjust your browser settings to block or delete cookies.
  • Non-PHI data may be shared with trusted vendors who are contractually obligated to protect your information.

7. Changes to This Notice

We may update this notice from time to time. The revised notice will be posted on our website with a new effective date.

Contact Us

If you have questions about this notice, our privacy practices, or how your information is handled:

Phone: 505-717-1155
Fax: 505-717-1473