Privacy Policy

Effective Date: Jan 15, 2025

At Reef Medical (“we,” “our,” or “us”), your privacy is of utmost importance. We are committed to protecting your personal information, including your health information, in compliance with the Health Insurance Portability and Accountability Act (HIPAA), Florida law, and other applicable privacy regulations. This Privacy Policy explains how we collect, use, protect, and disclose your information.

  1. Information We Collect

1.1 Personal Information

We collect personal information to provide and improve our services, which may include:

  • Identifying Information: Name, address, phone number, email, and date of birth.
  • Contact Preferences: Preferred methods of communication, such as phone, email, or text.

1.2 Health Information

We may collect and maintain the following Protected Health Information (PHI):

  • Medical history, diagnoses, and treatment plans.
  • Information required for medical marijuana evaluations and certifications.

1.3 Payment Information

For billing purposes, we collect:

  • Credit/debit card details.
  • Other payment methods as necessary.

1.4 Website and Online Interactions

When you interact with our website, we may collect:

  • Cookies and Similar Technologies: To enhance user experience and track website performance.
  • Log Data: IP addresses, browser types, pages visited, and timestamps.
  1. How We Use Your Information

We use your information to:

  1. Provide Healthcare Services: Conduct medical marijuana evaluations, consultations, and educational services.
  2. Facilitate Patient Card Applications: Assist with state-required medical marijuana certifications and renewals.
  3. Communicate with You: Send appointment reminders, treatment updates, and relevant notifications.
  4. Billing and Payments: Process payments and provide necessary documentation for your records.
  5. Compliance and Legal Requirements: Ensure compliance with HIPAA, Florida law, and other regulatory obligations.
  6. Improve Services: Analyze website and service usage for operational improvements.
  1. How We Share Your Information

We will not sell or share your information for marketing purposes without your explicit consent. However, we may share your information in the following circumstances:

3.1 Healthcare Providers

We may share your health information with licensed physicians and healthcare providers for continuity of care.

3.2 Compliance with Laws

We may disclose your information to comply with legal obligations, such as responding to court orders, subpoenas, or investigations by government agencies.

3.3 Business Operations

We may share your information with service providers who assist us with:

  • Billing and payment processing.
  • Secure storage and management of electronic health records.

3.4 Patient Authorization

We will obtain your explicit written consent before sharing your information for purposes not outlined in this policy.

  1. How We Protect Your Information

We implement industry-standard safeguards to protect your personal and health information, including:

  • Technical Safeguards: Encryption of electronic communications and secure data storage.
  • Administrative Safeguards: Regular staff training on HIPAA and privacy policies.
  • Physical Safeguards: Secure office environments and restricted access to sensitive information.

Despite these measures, no method of electronic transmission or storage is completely secure. In the event of a data breach, we will notify affected individuals in compliance with applicable laws.

  1. Your Rights Under HIPAA

Under HIPAA, you have the following rights regarding your PHI:

5.1 Right to Access

You may request access to your health information and obtain copies by submitting a written request.

5.2 Right to Amend

You can request corrections to your health information if you believe it is inaccurate or incomplete.

5.3 Right to Restrict Disclosure

You may request restrictions on how your health information is used or disclosed. While we will consider your request, we may not be able to accommodate all restrictions.

5.4 Right to Confidential Communications

You can request that we communicate with you via alternative methods or at alternative locations (e.g., email, phone, or a designated address).

5.5 Right to an Accounting of Disclosures

You may request a record of certain disclosures of your PHI made for purposes other than treatment, payment, or healthcare operations.

5.6 Right to File a Complaint

If you believe your privacy rights have been violated, you may file a complaint with:

  • Reef Medical Privacy Officer: reefmedicalinfo@gmail.com
  • U.S. Department of Health and Human Services (HHS). Filing a complaint will not affect the services you receive.
  1. Communication Preferences and Consent

By using our services, you consent to receiving communications about your care through:

  • Phone calls, text messages, and voicemail.
  • Email or written correspondence.
  • Secure telemedicine platforms.

You may modify or revoke your communication preferences by submitting a written request to reefmedicalinfo@gmail.com.

  1. Data Retention

We retain your medical records and personal information in accordance with Florida state laws and HIPAA requirements. When retention is no longer required, records will be securely destroyed.

  1. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. Updates will be effective immediately upon posting on our website or notifying you via your preferred communication method.

  1. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:

Reef Medical
1515 Herbert St, Suite 208
Port Orange, FL 32129
Phone: (386) 957-9300
Email: reefmedicalinfo@gmail.com