HIPPA Compliance Policy

HIPPA Compliance Policy

Sponaugle Wellness Institute 300 State St E #103 Oldsmar, FL 34677 +1 (727) 260-6303 Effective Date: 06/23/2023 Updated: 06/23/2023


Sponaugle Wellness Institute is committed to ensuring the privacy and security of protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and its applicable regulations. This policy outlines our commitment to HIPAA compliance and the measures we have implemented to protect PHI. Sponaugle Wellness Institute creates, receives, maintains, and in some instances discloses protected health information (PHI) in an electronic format. Though such electronic disclosures are in accordance with the Health Insurance Portability and Accountability Act, this posted notice is provided to satisfy the Florida and Safety Code (Notice and Authorization Required for Electronic Disclosure of Protected Health Information; Exceptions). To that end, Sponaugle Wellness Institute will secure a separate authorization from the patient or the patient’s legally authorized representative prior to electronically disclosing PHI for any reason other than treatment, payment, health care operations, or as otherwise authorized or required by law.

Scope of Policy

This policy applies to all employees, contractors, and business associates of Sponaugle Wellness Institute who have access to PHI in the course of their work.

Policy Statement

  1. HIPAA Compliance Responsibility: Sponaugle Wellness Institute acknowledges its responsibility to comply with HIPAA regulations and protect the confidentiality, integrity, and availability of PHI.
  2. Designated HIPAA Privacy and Security Officers: Sponaugle Wellness Institute has designated a HIPAA Privacy Officer and a HIPAA Security Officer who are responsible for overseeing the development, implementation, and maintenance of HIPAA compliance initiatives.
  3. Risk Assessment and Management: Sponaugle Wellness Institute conducts regular risk assessments to identify vulnerabilities and threats to the privacy and security of PHI. Appropriate safeguards are implemented to manage and mitigate identified risks.
  4. Privacy and Security Policies and Procedures: Sponaugle Wellness Institute maintains comprehensive policies and procedures that address the privacy and security requirements of HIPAA. These policies and procedures are regularly reviewed, updated, and communicated to all employees.
  5. Workforce Training and Education: Sponaugle Wellness Institute provides HIPAA training to all employees, contractors, and business associates who handle PHI. Training includes the importance of privacy and security, handling of PHI, reporting security incidents, and individual responsibilities.
  6. Physical Safeguards: Sponaugle Wellness Institute implements physical safeguards to restrict access to areas where PHI is stored. These safeguards include secure storage, access controls, and visitor policies.
  7. Technical Safeguards: Sponaugle Wellness Institute implements technical safeguards to protect electronic PHI (ePHI) from unauthorized access, disclosure, and alteration. These safeguards include access controls, encryption, firewalls, malware protection, and regular security updates.
  8. Administrative Safeguards: Sponaugle Wellness Institute establishes administrative safeguards to manage the HIPAA compliance program. This includes policies and procedures for incident response, business associate agreements, workforce sanctions, and ongoing monitoring and auditing.
  9. Business Associate Management: Sponaugle Wellness Institute enters into written agreements with business associates that require them to appropriately safeguard PHI and comply with HIPAA regulations.
  10. Breach Notification: Sponaugle Wellness Institute has established procedures for assessing and responding to security incidents involving PHI. In the event of a breach, affected individuals and regulatory authorities will be notified as required by law.
  11. Complaints and Reporting: Sponaugle Wellness Institute maintains a process for individuals to file complaints regarding potential HIPAA violations or concerns. All complaints are promptly investigated, and appropriate corrective actions are taken.

HIPPA Compliance Officer

For questions or concerns regarding HIPAA compliance or the protection of PHI, please send an email with Attention: HIPPA Compliance Officer to info@sponauglewellnessspa.com Sponaugle Wellness Institute 300 State St E #103 Oldsmar, FL 34677, United States Telephone: +1 (727) 260-6303 Email: info@sponauglewellnessspa.com
Scroll to Top
Skip to content