HIPAA Policy

MercyOne is committed to protecting the privacy of your health information and records.

We are required by the HIPAA law (Health Insurance Portability and Accountability Act of 1996) to maintain the privacy of individually identifiable patient information also known as “protected health information” or PHI.

PHI is information that includes things like your name, all geographical identifiers smaller than a state, dates related to an individual, phone numbers, fax numbers, emails, Social Security numbers, medical record numbers, health insurance beneficiary numbers, account numbers, license numbers, vehicle identifiers and license plates, device identifiers, serial numbers, web URLs, IP addresses, and biometric information like finger, retinal and voice prints, as well as photos or your face.

Each time you visit a MercyOne location, a record of your visit is made that contains information about you, your symptoms, examination and test results, diagnoses, treatment, and a plan for future care.

MercyOne employees will not disclose any of the information contained in your medical records to anyone other than those involved in your care including family caregivers unless you have given us advance written permission.

Visit your nearest MercyOne location to pick up an Authorization for Disclosure of Health Information form. Please complete the form and return it to the location you received it, or where instructed.

You will also received a “Notice of Privacy Practices” when you check into a MercyOne location.