HIPAA Notice of Privacy Practices

This notice describes how medical information about you may be used and disclosed and how you can get access to this information.

Last Updated: January 6, 2025

HIPAA Compliance

Ajentik is committed to protecting your health information. This notice is effective as of January 6, 2025, and applies to all protected health information we maintain.

Overview

Ajentik, Inc. ("we," "us," or "our") is required by law to maintain the privacy of your protected health information (PHI) and to provide you with this Notice of Privacy Practices. We are committed to protecting the privacy and security of your health information.

This notice describes how we may use and disclose your PHI to carry out treatment, payment, or health care operations and for other purposes that are permitted or required by law. It also describes your rights regarding your health information and how you can exercise these rights.

Uses and Disclosures of Protected Health Information

Treatment, Payment, and Healthcare Operations

Treatment: We may use your PHI to facilitate healthcare treatment coordination between providers.
Payment: We may use and disclose PHI for billing and payment purposes with your authorization.
Healthcare Operations: We may use PHI for quality assessment and improvement activities.

Uses Requiring Authorization

Most uses and disclosures of PHI will require your written authorization, including:

Marketing purposes
Sale of PHI
Most sharing of psychotherapy notes
Other uses not described in this notice

Permitted Disclosures Without Authorization

We may disclose your PHI without authorization in these limited circumstances:

As required by law
For public health activities
To report abuse, neglect, or domestic violence
For health oversight activities
For judicial and administrative proceedings
For law enforcement purposes (limited circumstances)
To avert serious threat to health or safety
For specialized government functions
For workers' compensation

Your Rights Regarding Your Health Information

Right to Access

You have the right to inspect and receive copies of your PHI

You may request access to your health information that we maintain. We will provide access within 30 days of your request. In certain limited circumstances, we may deny access, and you have the right to have the denial reviewed.

Right to Amend

You have the right to request amendments to your PHI

If you believe that health information we have about you is incorrect or incomplete, you may request that we amend the information. You must provide a reason for the request.

Right to Accounting of Disclosures

You have the right to receive a list of certain disclosures of your PHI

You may request an accounting of disclosures of your health information made by us for up to six years prior to your request, except for disclosures made for treatment, payment, or healthcare operations.

Right to Request Restrictions

You have the right to request limitations on uses and disclosures

You may request restrictions on our use or disclosure of your PHI for treatment, payment, or healthcare operations. We are not required to agree to your request except in limited circumstances.

Right to Confidential Communications

You have the right to request alternative communication methods

You may request that we communicate with you about your health information in a certain way or at a certain location. We will accommodate reasonable requests.

Right to Breach Notification

You have the right to be notified of breaches

We will notify you if there is a breach of your unsecured PHI that compromises the security or privacy of your information.

Our Responsibilities

We are required by law to:

Maintain the privacy and security of your protected health information
Provide you with this notice of our legal duties and privacy practices
Notify you promptly if a breach occurs that may compromise your information
Follow the terms of the notice currently in effect
Not use or share your information other than as described here unless you tell us we can in writing
Honor your request to communicate with you in a specific way or at a specific location

Security Measures

Administrative Safeguards

• Security Officer designation
• Workforce training
• Access management
• Security incident procedures

Physical Safeguards

• Facility access controls
• Workstation security
• Device and media controls
• Equipment disposal procedures

Technical Safeguards

• Access controls
• Audit logs
• Integrity controls
• Transmission security

Contact Information

HIPAA Privacy Officer

For questions about this notice or to exercise your rights:

HIPAA Privacy Officer
Ajentik, Inc.
Curie, NUS Singapore Science Park
Singapore
Email: privacy@ajentik.com
Phone: +65 8892 8831

To file a complaint:

You may file a complaint with us or with the Secretary of the U.S. Department of Health and Human Services if you believe your privacy rights have been violated. We will not retaliate against you for filing a complaint.

Office for Civil Rights
U.S. Department of Health and Human Services
200 Independence Avenue, S.W.
Washington, D.C. 20201
Phone: 1-877-696-6775
Website: www.hhs.gov/ocr/privacy/hipaa/complaints

Changes to This Notice: We reserve the right to change this notice and make the revised notice effective for health information we already have about you as well as any information we receive in the future. We will post the current notice on our website with the effective date.

For more information about our data practices, please review our other compliance documents:

Questions? Contact our Data Protection Officer at dpo@ajentik.com