Skip to content
LoopHealth

HIPAA Compliance

Loop Health is committed to protecting your Protected Health Information (PHI) in compliance with the Health Insurance Portability and Accountability Act (HIPAA).

Our Commitment

We implement comprehensive administrative, physical, and technical safeguards to protect your health information in accordance with HIPAA Privacy and Security Rules.

Technical Safeguards

  • End-to-end encryption for all PHI transmission
  • Encrypted data storage with industry-standard protocols
  • Multi-factor authentication for account access
  • Regular security audits and penetration testing
  • Automatic session timeouts and access controls

Administrative Safeguards

  • Designated Privacy and Security Officers
  • Regular staff training on HIPAA compliance
  • Business Associate Agreements with all vendors handling PHI
  • Incident response and breach notification procedures
  • Regular risk assessments and compliance audits

Physical Safeguards

  • Secure, SOC 2 certified data centers
  • Access controls and monitoring systems
  • Redundant backups and disaster recovery
  • Secure workstation and device policies

Your Rights Under HIPAA

You have the right to:

  • Access and obtain copies of your PHI
  • Request corrections to your PHI
  • Receive an accounting of PHI disclosures
  • Request restrictions on uses and disclosures
  • Request confidential communications
  • File a complaint if you believe your privacy rights have been violated

Permitted Uses and Disclosures

We may use and disclose your PHI for:

  • Treatment coordination with your healthcare providers
  • Payment processing and billing
  • Healthcare operations and quality improvement
  • As required by law or for public health purposes
  • With your written authorization for other purposes

Notice of Privacy Practices

Our complete Notice of Privacy Practices, as required by HIPAA, is available to all members through the dashboard and will be provided at enrollment.

Breach Notification

In the unlikely event of a breach of unsecured PHI, we will notify affected individuals within 60 days in accordance with HIPAA Breach Notification Rule requirements.

Contact Our Privacy Officer

For HIPAA-related questions, to exercise your rights, or to file a complaint:

Privacy Officer
Email: privacy@loop.health
Mail: Loop Health, ATTN: Privacy Officer

You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights.

Last updated: May 13, 2026

← Back to home