GREYMATTERS HIPAA STATEMENT
The collection and disclosure of Health Information is regulated by Federal law under the HIPAA Privacy Rules. The Privacy Rule protects all "individually identifiable health information" held or transmitted by a Health Care provider or other “covered Entity” or its business associate, in any form or media, whether electronic, paper, or oral. The Privacy Rule calls this information "protected health information.
As part of the GREYMATTERS Service we collect very limited information solely for the purposes of improving the GREYMATTERS Service. We collect non-identifiable information related to use metrics.
Using Amazon Web Services cloud-based storage, GREYMATTERS will store any photos, text, and other information entered by You while using the application. The purpose of such storage is solely to allow You to retrieve your data and use the app upon logging into your account from an applicable device. GREYMATTERS WILL NOT SHARE PERSONAL DATA FOR ANY COMMERCIAL USE.
Under the HIPAA rules, GREYMATTERS is permitted, but not required, to use and disclose protected health information, without an individual’s authorization, for the following purposes or situations: (1) To the Individual (unless required for access or accounting of disclosures); (2) Treatment, Payment, and Health Care Operations; (3) Opportunity to Agree or Object; (4) Incident to an otherwise permitted use and disclosure; (5) Public Interest and Benefit Activities; and (6) Limited Data Set for the purposes of research, public health or health care operations.
In addition, under HIPAA rules GREYMATTERS may use and disclose protected health information for Your own treatment, payments, and health care operations activities. GREYMATTERS is permitted to disclose protected health information for the treatment activities of any health care provider, the payment activities of another covered entity and of any health care provider, or the health care operations of another covered entity involving either quality or competency assurance activities or fraud and abuse detection and compliance activities, if both treatment providers have or had a relationship with You and the protected health information pertains to that relationship.
GREYMATTERS strongly suggests that you use the Information Release Form provided by the party requesting any information if you need to send medical or personal information. GREYMATTERS will not provide such a release and cannot release any information even if you so request. You are responsible for all of the information you upload onto the device and the decision to share or release such information is Yours alone.
GREYMATTERS maintains reasonable safeguards to prevent intentional or unintentional use or disclosure of the limited information it does collect. GREYMATTERS exercises commercially reasonable measures to secure all information that it does collect.
In the alternative, You may file a complaint directly with the U. S. Office of Health and Human services at: https://ocrportal.hhs.gov/ocr/cp/