HIPAA Compliance
Our commitment to protecting health information
Lumbee Advanced Medical Supply is committed to maintaining the privacy and security of protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA).
Our HIPAA Commitment
While medical supply distributors are typically not covered entities under HIPAA, we recognize that our healthcare partners must maintain HIPAA compliance. We have implemented policies and procedures to support our customers' compliance efforts.
Business Associate Agreements
When required, we will execute Business Associate Agreements (BAAs) with covered entities. Our BAAs include provisions for:
- Appropriate safeguards for PHI
- Limited use and disclosure of PHI
- Breach notification procedures
- Return or destruction of PHI upon termination
Administrative Safeguards
- Employee training on privacy and security
- Access controls and authorization procedures
- Regular security risk assessments
- Incident response procedures
- Workforce sanctions for violations
Physical Safeguards
- Facility access controls
- Workstation security policies
- Device and media controls
- Secure disposal procedures
Technical Safeguards
- Unique user identification
- Automatic logoff procedures
- Encryption of data in transit
- Audit controls and monitoring
Important Notice
This page provides general information about our HIPAA-related practices. It does not constitute legal advice. Healthcare organizations should consult with their legal counsel regarding specific HIPAA compliance requirements.
Questions About HIPAA?
If you have questions about our HIPAA compliance practices or need to execute a Business Associate Agreement, please contact:
HIPAA Compliance Officer
Email: hipaa@lam.supply
Phone: (910) 555-0123 ext. 3
Fax: (910) 555-0124