Privacy Policy

Effective: 10/01/2024

Introduction

This Privacy Policy outlines how Trust Medical Transportation (TMT), located at 291 Emaron Drive, San Bruno, CA 94017, collects, uses, and protects personal information through its portal, in compliance with San Mateo County, California privacy laws, and HIPAA regulations.

Information Collection

We collect personal information for transportation booking, including:

  • Patient's name, date of birth, phone number, and pickup/drop-off addresses
  • Requester's name, phone number, and email address
  • Patient's insurance ID and related details
  • Doctor's name, NPI number, phone, and fax
  • IP address
  • Procedure code

Use of Information

We use collected information to:

  • Schedule and manage transportation services
  • Obtain insurance prior authorization
  • Communicate with healthcare providers and case managers
  • Comply with HIPAA requirements for patient data

Data Protection

We employ encryption and secure storage to protect personal information, with access restricted to authorized TMT personnel and data submitters (e.g., case managers). Our measures align with HIPAA's administrative, physical, and technical safeguards.

Third-Party Sharing

Information may be shared with insurance companies for authorization and healthcare providers for patient care, all adhering to HIPAA regulations. We do not sell or share data for marketing.

User Rights

Users may request access, correction, or deletion of their personal information, in accordance with HIPAA's privacy rule.

Policy Updates

We may update this policy to reflect regulatory or operational changes. Significant updates will be communicated via portal notifications.

Contact Information

For privacy concerns, contact us at: P.O. Box 2569, Daly City, CA 94017 Phone: (650) 799-9921 Website: www.trustmtrans.com

Retention Policy

We retain personal data only as long as necessary for services and legal compliance, securely deleting it per HIPAA requirements when no longer needed.

Children's Privacy

We do not knowingly collect data from children under 13. For minors, data collection complies with child protection and HIPAA laws, with immediate deletion if inadvertently collected.

Data Breach Protocol

In case of a data breach, we notify affected users within 72 hours and mitigate risks per HIPAA guidelines.

International Users

Our U.S.-based portal is governed by U.S. privacy laws, including HIPAA. International users' data may be stored and processed in the U.S.