Logo
Patient Portal
Book Appointment

HIPAA Notice

This Notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully.

Rooted Health Co. (“Rooted Health,” “we,” “our,” or “us”) is required by law to maintain the privacy of your Protected Health Information (PHI) and to provide you with this Notice of our legal duties and privacy practices under the Health Insurance Portability and Accountability Act (HIPAA).

1. Our Legal Duty

We are required by law to:

  • Maintain the privacy and security of your Protected Health Information (PHI)

  • Provide you with this Notice of our legal duties and privacy practices

  • Follow the terms of the Notice currently in effect

  • Notify you if a breach of unsecured PHI as required by law

2. How We May Use and Disclose Your Health Information

We may use or disclose your PHI  without your written authorization for the following purposes:

A. Treatment

We may use and share your health information to provide, coordinate, or manage your healthcare.


Example: Reviewing your medical history, ordering labs, or coordinating care with another provier.

B. Payment

We may use your information to bill and receive payment for services provided.


Example: Processing membership fees or visit payments.

C. Healthcare Operations

We may use your information for practice operations, including:

  • Quality improvement
  • Administrative activities
  • Staff training
  • Compliance and auditing
D. As Required by Law

We may disclose your information when required by federal, state,  or local law.

E. Public Health & Safety

We may disclose your information to:

  • To prevent or control disease

  • To report abuse, neglect, or domestic violence

  • To prevent serious threats to health or safety

F. Health Oversight Activities

We may disclose your information to health oversight agencies for audits, investigations, inspections, licensure, or other oversight activities.

G. Business Associates

We may share information with  third-party aervice providers(such as telehealth platforms, payment processors, or electronic medical record systems) that perform services on our behalf.

These parties are required to safeguard your information and comply with HIPAA through Business Associate Agreements (BAAs).

Minimum Necessary Standard

We will make reasonable efforts to limit the use and disclosure of your information to the minimum necessary to accomplish the intended purpose, except when required for treatment or as otherwise permitted by law. 

3. Uses Requiring Your Written Authorization

We will obtain your written authorization before:

  • Using or disclosing psychotherapy notes (if applicable)

  • Using your information for marketing purposes

  • Selling your health information

You may revoke your authorization at any time in writing. Revocation will not apply to actions already taken.

4. Your Rights Regarding Your Health Information

You have the following rights:

A. Right to Access

You have the right to inspect and request a copy of your health records.

We may charge a reasonable, cost-based fee for copies. 

B. Right to Amend

If you believe information in your record is incorrect or incomplete, you may request an amendment.

We may deny your request in certain circumstances but will provide a written explanation.

C. Right to Request Restrictions

You may request limitations on how we use or disclose your PHI.

We are not required to agree to all requests, but will comply when requested by law.

D. Right to Confidential Communications

You may request that we contact you in a specific way (e.g., only by email or at a specific phone number). We will accommodate reasonable requests. 

E. Right to an Accounting of Disclosures

You may request a list of certain disclosures we have made of your PHI, as permitted by law. 

F. Right to a Paper Copy of This Notice

You may request a paper copy of this Notice at any time.

5. Telehealth Privacy

For telehealth services:

  • We use secure, HIPAA-compliant platforms.

  • You are responsible for ensuring privacy in your physical environment

  • Electronic communication carries inherent security risks despite safeguards

6. Breach Notification

If a breach of your unsecured PHI occurs, we will notify you in accordance with applicable federal and state laws. 

7. Changes to This Notice

We reserve the right to change this Notice at any time. The updated version will be posted on our website with a revised effective date.

8. Questions or Complaints

If you believe your privacy rights have been violated, you may file a complaint with:

Rooted Health Co.
Telehealth Services – Alabama, Florida, Georgia
Email: info@rootedhealthco.com
Phone: (334) 246-1206

You may also file a complaint with the U.S. Department of Health and Human Services (HHS). We will not retaliate against you for filing a complaint.

U.S Department of Health & Human Services

Office of Civil Rights (OCR)

https://www.hhs.gov/ocr

9. Contact Information

For questions regarding this Notice or your health information, contact:

Rooted Health Co.
Telehealth Services – Alabama, Florida, Georgia
Email: Info@rootedhealthcompany.com
Phone: (334) 246-1206