Privacy Policy
Effective: 10/01/2024
Introduction
This Privacy Policy outlines how Trust Medical Transportation (TMT), located at 291 Emaron Drive, San Bruno, CA 94017, collects, uses, and protects personal information through its portal, in compliance with San Mateo County, California privacy laws, and HIPAA regulations.
Information Collection
We collect personal information for transportation booking, including:
- Patient's name, date of birth, phone number, and pickup/drop-off addresses
- Requester's name, phone number, and email address
- Patient's insurance ID and related details
- Doctor's name, NPI number, phone, and fax
- IP address
- Procedure code
Use of Information
We use collected information to:
- Schedule and manage transportation services
- Obtain insurance prior authorization
- Communicate with healthcare providers and case managers
- Comply with HIPAA requirements for patient data
Data Protection
We employ encryption and secure storage to protect personal information, with access restricted to authorized TMT personnel and data submitters (e.g., case managers). Our measures align with HIPAA's administrative, physical, and technical safeguards.
Third-Party Sharing
Information may be shared with insurance companies for authorization and healthcare providers for patient care, all adhering to HIPAA regulations. We do not sell or share data for marketing.
User Rights
Users may request access, correction, or deletion of their personal information, in accordance with HIPAA's privacy rule.
Policy Updates
We may update this policy to reflect regulatory or operational changes. Significant updates will be communicated via portal notifications.
Contact Information
For privacy concerns, contact us at: P.O. Box 2569, Daly City, CA 94017 Phone: (650) 799-9921 Website: www.trustmtrans.com
Retention Policy
We retain personal data only as long as necessary for services and legal compliance, securely deleting it per HIPAA requirements when no longer needed.
Children's Privacy
We do not knowingly collect data from children under 13. For minors, data collection complies with child protection and HIPAA laws, with immediate deletion if inadvertently collected.
Data Breach Protocol
In case of a data breach, we notify affected users within 72 hours and mitigate risks per HIPAA guidelines.
International Users
Our U.S.-based portal is governed by U.S. privacy laws, including HIPAA. International users' data may be stored and processed in the U.S.