Schedule Appointment
Login To Patient Portal
Schedule Appointment

Privacy Policy

Washington Pain & Spine Specialists (WaPASS)

Home / Privacy Policy

Introduction

At Washington Pain & Spine Specialists (WaPASS), we value your trust and are committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and safeguard your personal information when you interact with our clinic, whether in person, online, or through digital services. Our goal is to provide transparency and assure you that your personal health information is handled responsibly, securely, and in compliance with applicable laws, including the Health Insurance Portability and Accountability Act (HIPAA).

Information We Collect

WaPASS may collect the following types of information to provide medical care and administrative services:

  • Personal Information: Name, date of birth, phone number, email address, home address, emergency contact details.
  • Medical & Health Information: Medical history, diagnoses, treatments, medications, lab results, imaging, insurance details.
  • Billing & Payment Information: Insurance provider details, billing addresses, and payment card information where applicable.
  • Usage Data (Online Interactions): IP addresses, device/browser information, and activity on our patient portal or website.
  • Location Data: When accessing certain services that require geolocation (e.g., telehealth).

This information is collected directly from you, your healthcare providers, insurance providers, or through digital systems used by the clinic (such as patient portals, scheduling tools, or billing platforms).

How We Use Your Information

Your information is used solely for the purpose of delivering safe, efficient, and high-quality healthcare services. Specifically, WaPASS may use your information to:

  • Provide medical care, diagnosis, and treatment.
  • Schedule appointments and manage patient communications.
  • Process billing, insurance claims, and payments.
  • Maintain accurate medical records.
  • Respond to patient inquiries and provide support.
  • Improve clinic operations, services, and technology systems.
  • Comply with legal, regulatory, and reporting requirements.
  • Share educational or clinic-related updates, with your consent.

How We Share Your Information

WaPASS respects the confidentiality of your information and will only share it when necessary, as permitted or required by law. Information may be shared with:

  • Healthcare Providers & Staff: To coordinate and deliver your treatment.
  • Insurance Companies & Billing Partners: For claims processing and payment purposes.
  • Service Providers: Vendors who support our IT systems, patient portals, or secure communication tools (all bound by confidentiality agreements).
  • Legal & Regulatory Authorities: When required to comply with federal or state law, court orders, or government regulations.
  • Emergency Situations: To protect your health and safety or the safety of others.

We do not sell, trade, or rent your personal information to third parties for marketing purposes.

How We Protect Your Information

WaPASS uses a combination of administrative, technical, and physical safeguards to protect your data:

  • HIPAA-Compliant Systems: All patient data is stored and transmitted using secure, HIPAA-compliant platforms.
  • Encryption & Secure Servers: Sensitive information is encrypted during transmission and stored on protected servers.
  • Access Controls: Patient records are accessible only to authorized staff who require it for medical or administrative purposes.
    Regular Security Audits: Systems are monitored and reviewed to prevent unauthorized access or breaches.
  • Staff Training: All staff are trained regularly on privacy practices and HIPAA compliance.

SMS opt-in or phone numbers for the purpose of SMS are not shared with any third parties or affiliate companies for marketing purposes.

HIPAA Privacy Policy

Notice of Privacy Practices

THIS NOTICE DESCRIBES HOW INFORMATION ABOUT YOU MAY BE USED OR DISCLOSED AND HOW YOU CAN GET ACCESS TO INFORMATION. PLEASE REVIEW IT CAREFULLY.

The Health Insurance Portability & Accountability Act of 1996 (“HIPAA”) is a federal program that requires that all medical records and other individually identifiable health information used or disclosed by us in any form, whether electronically, on paper, or orally, to be kept properly confidential. This Act gives you, the patient, significant new rights to understand and control how your health information is used. HIPAA provides penalties for covered entities that misuse personal health information.

As required by HIPAA, Florida Orthopaedic Institute (FOI) has prepared this explanation of how we are required to maintain the privacy of your health information and how we may use and disclose your health information as necessary to carry out treatment, payment, or healthcare operations relating to the organized.

USES AND DISCLOSURES OF HEALTH INFORMATION 

FOI may use and disclose your protected health information for treatment, obtaining payment for treatment, and healthcare operations necessary to sustain our business. Treatment means providing, coordinating, or managing health care and related services by one or more health care providers. An example of this would be: A physical examination or assessment. Payment means such activities as obtaining reimbursement for services, confirmation coverage, billing or collection activities and utilization review. An example of this would be: We may provide information to your insurance company as needed to receive payment for services rendered to you. This may include, but is not limited to, diagnosis and treatment codes, treatment notes, and copies of documentation relevant to obtaining payment. Your insurance company, health plan, health insurance issuer or HMO with respect to a group health plan, may disclose protected health information to the sponsor of the plan.
Healthcare Operations includes the business aspects of running our practice, such as conducting quality assessment and improvement activities, auditing functions, cost-management analysis, and customer service. An example of this would be: We may use your personal information to contact you to remind you of an upcoming appointment, either by phone or by mail.
Some of the services we offer may be provided to you in a semi-private setting. For example, our Therapy Departments have an open-gym area that allow therapists and patients efficient access to equipment and modalities needed and shared by the department.
FOI may also use or disclose your protected health information without prior authorization for public health purposes, for auditing purposes, for research studies and for emergencies. We also provide information when required by law.
We may also create and distribute de-identified health information by removing all references to individually identifiable information.
In any other situation, FOI’s policy is to obtain your written authorization before disclosing your protected health information. If you provide us with a written authorization to release your information for any reason, you may later revoke that authorization to stop future disclosures at any time.
FOI may change its policy at any time. This amendment will affect all protected health information maintained by FOI. When changes are made, a new Notice of Patient Information Practices will be posted in the waiting room areas that will display the Effective Dates and any Revision Dates, and will be provided to you on your next visit. You may also request an updated copy of our current Notice of Patient Information Practices at any time.

PATIENT’S INDIVIDUAL RIGHTS

You have the following rights with respect to your protected health information, which you can exercise by presenting a written request to the Privacy Officer:
You have the right to review or obtain a copy of your protected health information at any time.
You have the right to request restrictions on certain uses and disclosures of protected health information, including those related to disclosure of family member, other relatives, close personal friends or any other person identified by you. We are, however, not required to agree to a requested restriction. If we do agree to a restriction, we must abide by it unless you agree in writing to remove it. You may also request in writing that we not use or disclose your protected health information for treatment, payment and administrative purposes except when specifically authorized by you, when required by law or in emergency circumstances. FOI will consider all such requests on a case-by-case basis, but the practice is not legally required to accept them.
You have the right to request that we amend your protected health information.
You also have the right to request a list of instances where we have disclosed your protected health information for reasons other than treatment, payment or other related administrative purposes.  You have the right to obtain a paper copy of this notice from us upon request.

Contact Us

If you have any questions or concerns about this Privacy Policy or how your information is handled, please contact:

Washington Pain & Spine Specialists (WaPASS) 

Join Our Newsletter

Receive all the latest updates about the new cutting age treatments options we offer at WaPASS.

We provide comprehensive pain management services for patients suffering with chronic pain.
Quick Links
Contact Info
Make Appointment
  • 8 AM - 5 PM , Monday - Friday
Call Us Today

Copyright 2025 WaPASS Pain and Spine Specialists, all rights reserved.

Terms and Conditions

HIPAA Privacy Policy

Schedule Appointment
WaPASS
Login To Patient Portal
Schedule Appointment