Privacy Policy

Effective Date: January 01, 2026
Image

Introduction

Ibrahim Heart Clinic ("we," "our," or "the Clinic") is committed to protecting the privacy and security of your personal health information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and other applicable federal and state laws.

This Privacy Policy applies to all patients, prospective patients, and visitors to our facility and website.

1. Information We Collect

We collect and maintain various types of information to provide you with quality healthcare services, including:

Personal Information

  • Name, address, telephone number, email address, and date of birth
  • Social Security number
  • Insurance information and payment details
  • Emergency contact information

Protected Health Information (PHI)

  • Medical history, diagnoses, and treatment plans
  • Physician notes and records
  • Laboratory and diagnostic test results
  • Prescription and medication information
  • Billing and claims information
  • Any other health-related information created, received, or maintained by the Clinic

Website Information

When you visit our website, we may collect:

  • Browser type and version
  • Operating system
  • IP address
  • Pages visited and time spent on pages
  • Referring website addresses
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use your personal and health information for the following purposes:

Treatment

  • To provide, coordinate, and manage your healthcare and related services
  • To consult with other healthcare providers involved in your care
  • To refer you to specialists or other medical professionals

Payment

  • To obtain payment for services provided
  • To process insurance claims and verify coverage
  • To collect outstanding balances

Healthcare Operations

  • To improve the quality of care we provide
  • To conduct training and educational programs
  • To perform business planning and administrative functions
  • To comply with legal and regulatory requirements

Appointment Reminders and Communication

  • To send appointment reminders via text message, email, or phone call
  • To communicate test results and follow-up care instructions
  • To provide health tips, newsletters, and other healthcare-related communications (with your consent)

3. How We Share Your Information

We may share your information in the following circumstances:

With Your Consent

We will obtain your written authorization before using or disclosing your PHI for purposes other than treatment, payment, or healthcare operations, except as permitted or required by law.

Business Associates

We work with third-party service providers ("Business Associates") who perform services on our behalf, including:

  • Electronic health record (EHR) storage and management
  • Appointment scheduling and patient portal services
  • Billing and payment processing
  • Telehealth platform services
  • Medical transcription services
  • Laboratory and diagnostic imaging centers

All Business Associates are required to sign agreements ensuring they will appropriately safeguard your information in compliance with HIPAA regulations.

Other Healthcare Providers

We may share your information with other healthcare providers, specialists, hospitals, and facilities involved in your care or treatment.

As Required by Law

We may disclose your information when required by federal, state, or local law, including:

  • Public health activities and reporting
  • Reporting abuse, neglect, or domestic violence
  • Health oversight activities and audits
  • Judicial and administrative proceedings
  • Law enforcement purposes
  • Coroner or medical examiner functions
  • Organ and tissue donation
  • Research purposes (with appropriate approvals and safeguards)
  • To avert a serious threat to health or safety
  • Specialized government functions (military, national security, etc.)
  • Workers' compensation programs

4. Your Privacy Rights

Under HIPAA and applicable state laws, you have the following rights regarding your health information:

Right to Access

You have the right to inspect and obtain a copy of your medical records and other health information maintained by the Clinic.

Right to Request Amendment

You have the right to request that we amend your health information if you believe it is incorrect or incomplete.

Right to an Accounting of Disclosures

You have the right to receive a list of certain disclosures we have made of your health information.

Right to Request Restrictions

You have the right to request restrictions on how we use or disclose your health information for treatment, payment, or healthcare operations.

Right to Request Confidential Communications

You have the right to request that we communicate with you about your health information in a specific manner or at a specific location.

Right to a Paper Copy of This Notice

You have the right to receive a paper copy of this Privacy Policy at any time.

Right to Be Notified of a Breach

You have the right to be notified if there is a breach of your unsecured health information.

To exercise any of these rights, please contact our Privacy Officer using the contact information provided at the end of this policy. We may require your request in writing and may charge a reasonable fee for copying and mailing records.

5. How We Protect Your Information

We take the security of your personal and health information seriously and have implemented physical, technical, and administrative safeguards, including:

  • Secure Storage: All electronic health records are stored in HIPAA-compliant, secure, offsite portals with encryption and access controls
  • Access Controls: Limited access to PHI based on job roles and responsibilities
  • Employee Training: Regular training for all staff on HIPAA compliance and privacy practices
  • Security Measures: Firewalls, anti-virus software, and regular security assessments
  • Physical Security: Locked facilities, secure paper records storage, and controlled access to patient areas
  • Business Associate Agreements: Contracts with all third-party vendors requiring HIPAA compliance

6. Website Privacy and Cookies

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyze website usage. Cookies are small data files stored on your device that help us:

  • Remember your preferences
  • Understand how visitors use our website
  • Improve website functionality and user experience

Types of Cookies We Use

  • Essential Cookies: Necessary for the website to function properly
  • Analytics Cookies: Help us understand how visitors interact with our website
  • Functional Cookies: Enable enhanced functionality and personalization

Your Cookie Choices

Most web browsers automatically accept cookies, but you can modify your browser settings to decline cookies if you prefer. Please note that disabling cookies may affect your ability to use certain features of our website.

Third-Party Analytics

We may use third-party analytics services (such as Google Analytics) to collect information about website usage. These services may use cookies and similar technologies to collect information about your online activities over time and across different websites.

Do Not Track

Our website does not currently respond to "Do Not Track" signals from web browsers.

7. Marketing Communications

With your consent, we may send you:

  • Appointment reminders
  • Health and wellness information
  • Educational materials about cardiac health
  • Information about new services or treatments
  • Clinic newsletters and updates

You may opt out of marketing communications at any time by:

  • Following the unsubscribe instructions in any email
  • Replying "STOP" to text messages
  • Contacting our office directly

Please note that you cannot opt out of essential communications related to your treatment, appointment scheduling, or billing.

8. Patient Portal

If you use our patient portal, additional terms and privacy practices may apply. The patient portal allows you to:

  • Access your medical records
  • Request prescription refills
  • Communicate securely with your healthcare team
  • View test results
  • Schedule appointments

You are responsible for maintaining the confidentiality of your portal login credentials. Please notify us immediately if you believe your account has been compromised.

9. Telehealth Services

We may offer telehealth services through a secure, HIPAA-compliant third-party platform. When using telehealth services:

  • Your video and audio communications will be transmitted securely
  • Information shared during telehealth visits is subject to the same privacy protections as in-person visits
  • We recommend using a private location and secure internet connection for telehealth appointments

10. Minors and Protected Individuals

If you are a parent or legal guardian, you may have the right to access your minor child's health information. However, in certain circumstances, minors may have privacy rights that limit parental access under state law. We will discuss these situations with you as they arise.

11. Retention of Records

We retain your medical records and health information in accordance with federal and state laws, which generally require us to maintain records for a minimum period (typically 6-10 years after the last date of service, or longer for minors). After the required retention period, records are destroyed in a secure manner.

12. Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. Changes will be effective immediately upon posting to our website or distribution of the revised policy. The updated policy will apply to all information we maintain, including information created or received before the changes were made.

We will notify you of material changes by:

  • Posting the updated policy on our website
  • Making copies available at our office
  • Providing notice at your next visit

13. Complaints

If you believe your privacy rights have been violated, you have the right to file a complaint with:

Ibrahim Heart Clinic
Privacy Officer
5150 Belfort Rd. Bldg. 400
Jacksonville, FL 32256
Phone: (904) 580-4730
Email: info@ibrahimheart.com

U.S. Department of Health and Human Services
Office for Civil Rights
200 Independence Avenue, S.W.
Washington, D.C. 20201
Phone: 1-877-696-6775
Website: www.hhs.gov/ocr/privacy/hipaa/complaints/

We will not retaliate against you for filing a complaint.

14. Contact Information

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact:

Ibrahim Heart Clinic
Privacy Officer
5150 Belfort Rd. Bldg. 400
Jacksonville, FL 32256
Phone: (904) 580-4730
Email: info@ibrahimheart.com

Acknowledgment

By receiving services at Ibrahim Heart Clinic or using our website, you acknowledge that you have been provided with a copy of this Privacy Policy and have been given the opportunity to ask questions about our privacy practices.

Ibrahim Heart Clinic is committed to protecting your privacy and providing you with the highest quality of cardiac care.