Our Privacy Policy

Privacy Statement – United Medical Imaging Healthcare, Inc.

1. Introduction

United Medical Imaging Healthcare, Inc. owns and operates multiple radiology/diagnostic medical imaging centers within Southern California. We are committed to safeguarding the privacy and protection of all personal and medical information entrusted to us. This policy outlines our practices regarding the collection, use, protection, and both authorized and unauthorized disclosure of personal and medical data collected with the sole intention of providing diagnostic radiology services performed within our network of radiology imaging centers.

From time to time, our organization may elect to modify, change, or update this Privacy Statement as new policies, laws or procedures are implemented. In the event such changes take place, those new changes can be found here and shall be indicated based upon the revised date located in this section of our website. In the event of major changes, our organization may opt to provide additional links or information pertaining to such changes.

2. Scope

This policy applies to all United Medical Imaging Healthcare, Inc. and its affiliated organizations including its radiology/diagnostic medical imaging center network, all employees, contractors, business associates, partners, patients, and third-party service providers.

3. Information Collection and Usage

• Diagnostic and Treatment Services: We receive and collect patient data which is solely intended to be utilized to appropriately arrange for your medical care and treatment related to the radiology/diagnostic medical imaging ordered by your physician so that we may accurately assess and diagnose any potential medical concerns and recommend suitable treatments.

• Patient Communication: We receive and collect Personal Information as information which may be used to contact you or communicate with you. Information such as your name, address, telephone number, e-mail address, characteristics, or other demographic data such as gender and date of birth and other relevant information that may be pertinent to the services you may receive from our organization. Additional types of Personal Information required to provide medical services includes disclosure of certain information that are typically considered “sensitive” by certain State or Federal applicable laws, such as, State or Federal government-issued identifiers such as social security, driver’s license, or State or Federally funded medical insurance cards, racial or ethnic origin. Lastly, in addition to arrange your initial appointment, we may also contact you for appointment reminders, follow-ups, and provide information about treatment alternatives or other health-related benefits.

• Administrative Purposes: As part of our standard business processes, we utilize Personal data provided and collected to perform standard billing functions, auditing procedures, claims management, and other administrative services essential to our business operations.

• Quality Control: Your information helps us in the continual improvement of our services, assessing care quality, and patient outcomes.

4. Protection of Information

• Physical Safeguards: Our facilities are equipped with secure storage spaces for physical records, ensuring they remain inaccessible to unauthorized personnel.

• Digital Safeguards: We employ encryption and advanced cybersecurity measures to protect data stored digitally. Regular security audits and updates are part of our routine to address potential vulnerabilities.

• Employee Training: All our staff undergo rigorous training on maintaining data confidentiality, ensuring they understand the importance and methods of protecting patient information.

5. Disclosure to Third Parties

• Healthcare Providers: We share relevant information with doctors, nurses, and other health professionals involved in your care to ensure you receive comprehensive and coordinated care. The results of your exam will be shared with the physician which ordered the exam including any additional Primary Care and Specialist that you authorize to receive a copy of such treatment information. You may also indicate other individuals you wish to receive access to your information by completing related documentation and providing a copy of your personal identification at any of our service locations. If you would like to make changes or remove anyone from gaining access to your information or medical records, you may inform of us that by visiting any of our locations and updating the related documentation.

• Insurance Companies and Elected and Assigned Medical Groups: We may share certain information with the medical group which you may elect and assign, if applicable to managed health care and/or with your insurance providers for claims processing, verification, and to determine the coverage of specific treatments.

• Legal Obligations: If mandated by law, such as for public health requirements or in compliance with court orders, we might have to disclose specific patient information.

• No Third-party Marketing: We assure our patients that we do not sell, rent, or lease patient information to third-party marketers.

6. Your Choices and Rights

• Accessing Your Data: You have the right to request access to your medical records and personal data stored by us. This allows you to receive a copy of the information and verify that we are processing it lawfully.

• Correction of Information: If you identify inaccuracies in your data, you have the right to ask for those records to be updated or corrected. We strive to maintain accurate and up-to-date information, and your help in this is invaluable.

• Data Portability: In certain situations, you can request the transfer of your data to another service provider or directly to you in a commonly used and machine-readable format.

• Restriction and Objection: You can ask us to restrict the processing of your data under specific circumstances, such as if you contest the accuracy of the data or if you have objected to processing based on our legitimate interests.

• Withdraw Consent: Where we rely on consent to process your data, you can withdraw this consent at any time. However, this will not affect any processing that has already taken place.

7. Information Security and Measures

• Technical Measures: Our digital infrastructure employs advanced encryption techniques, intrusion detection systems, and regular vulnerability assessments to ensure data is protected from any potential threats.

• Physical Security: Apart from secure storage spaces, we have security personnel and surveillance systems in place at our facilities to prevent unauthorized physical access.

• Data Breach Protocols: We have established procedures to deal with any suspected data breach. In the event of such a breach, we will notify you and any applicable regulator where we are legally required to do so.

• Employee Protocols: Employees access data on a need-to-know basis. Every employee signs a confidentiality agreement and undergoes training on information security and privacy practices.

8. Storage and Retention

We retain medical records in accordance with legal and regulatory guidelines. After the retention period, all data is securely destroyed or de-identified.

9. Third-party Service Providers

We may employ third-party service providers for tasks like data storage and analysis. All such providers are bound by strict confidentiality agreements, up to and including non-disclosure agreements, and are obligated to uphold the same standards of data protection as United Medical Imaging Healthcare, Inc.

10. Updates to this Policy

11. Contact

For any queries or concerns about this policy or your data, please contact our Privacy Officer at privacy@umih.com.