Privacy Policy

Med-X Medical Management Services, LLC respects your privacy and security. We do not sell, trade, or otherwise share your personal information, such as name, email address, physical address, phone numbers, buying history, etc. without your permission.

At any time you may contact Med-X with any privacy questions or concerns you may have. You also may ask at any time to see the personal data you have given us and request correction or deletion. We strive to protect the security of your personal data by use of appropriate measures and processes.

Med-X and our Network partners fully comply with all HIPAA requirements and respect your right to privacy. All medical and financial information is stored in a HIPAA compliant matter and fully protected.

In 1996, Congress passed the Health Insurance Portability and Accountability Act, commonly referred to as HIPAA, detailing new regulations for protecting the confidentiality of patient healthcare information. These regulations significantly impact how Med-X conducts patient transportation operations, requiring both Med-X and our clients to carefully examine how each of us manages healthcare information and patient records. In short, HIPAA requires us to:

  1. Protect the confidentiality of patient healthcare information. The “protected health information” (PHI) of patients must be identified and remain confidential from the point it is recorded by an EMS client, transferred to Med-X for billing purposes, used by Med-X to file insurance claims or mail invoices and stored by Med-X and/or an EMS client for record keeping purposes.
  2. Not disclose PHI unless permitted to do so. Med-X and our clients can only use PHI and related healthcare information for the purposes of filing insurance claims, mailing invoices and conducting legitimate business operations related to financial transactions, record keeping and the administration of a transportation system. All other uses of PHI must be approved by the patient prior to the release of such information.
  3. Allow patients to view and amend PHI if requested. Clients must establish a record keeping system that allows patients to view and (in some cases) amend their PHI. Amending the PHI of a patient is permitted under certain circumstances, but can be denied in others. In all cases, the patient has a right to view their PHI along with a record of other parties who had access to such information.
  4. Report disclosures of PHI, if they occur. Med-X and our clients must report inadvertent or purposeful disclosures of PHI to the patient, if they occur. Such disclosures may involve civil or criminal penalties.
  5. Provide accountability for PHI practices. Both Med-X and our clients must provide accountability for business practices, record keeping and information management related to the use or storage of PHI to the Federal Department of Health and Human Services (HHS), if requested.

To meet these requirements, Med-X and our clients must enter into a “Business Associate Agreement,” outlining the responsibilities of each organization with respect to HIPAA. This agreement defines the role of each organization:

  • Clients retain responsibility for managing patient records. Because clients are considered “healthcare organizations,” they retain responsibility for the management of patient records and the protection of PHI. This includes “notification of privacy practices” (NPP) to patients, obtaining an “acknowledgement of receipt” of NPP signed by patients when practical, maintaining the original patient record in a secure storage facility and meeting the procedural requirements of HIPAA with regard to patient inquiries concerning PHI.
  • Med-X and our clients share responsibility for secure patient record transfer. Clients provide Med-X with copies of patient care reports (PCRs) in paper or electronic format to be used for billing purposes. Both organizations share responsibility in developing a secure method for transferring such information. Med-X shall recommend a HIPAA compliant transfer method for both paper and electronic PCRs as part of each EMS client billing contract.
  • Med-X becomes responsible for PHI management related to transportation functions. After receiving PCR information, Med-X files insurance claims and mails invoices. Our firm assumes responsibility for the management of PHI during billing operations and provides accountability to the EMS client for our business practices. Med-X will release PHI only for the purpose of treatment, payment or other circumstances required by HIPAA regulations. PHI is shared only with authorized Med-X employees, patient representatives and third party organizations involved in securing payment for EMS client services. Med-X does not disclose PHI unless authorized by the patient, the EMS client or directed by legal authority.

    • Med-X has instituted a HIPAA compliancy program for all client billing operations. This program is described by the Med-X HIPAA Compliancy Plan, available at each Med-X office. The program is administered by the Med-X HIPAA Privacy Officer.

    Interested In Our Services?

    Please fill out the form below and a service professional will be in touch quickly.

    Name (required)
    Email (required)
    Phone Number
    Home | Services | Provider Area | Login | Contact | Service Request | HIPPA | What's New | Resources

    Med-X Medical | PO Box 720 Matawan, NJ 07747 | Phone: 1-888-777-9022 | Fax: 1-888-777-4799 | International: 1-888-778-9332

    © 2012 Med-X Medical Management Services All Rights Reserved.