(725) 287-7791
Donate|Patient Portal|Staff Login

Privacy Policy

Your privacy is our priority. Learn how we protect your information.

Last Updated: January 2026

Helix BioMedical is committed to protecting the privacy and security of your personal and health information. As a 508(c)(1)(a) faith-based healthcare organization, we understand the sacred trust you place in us when sharing your medical information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with HIPAA, state healthcare privacy laws, and our faith-based principles.

1. Overview and Scope

1.1 Who We Are

Legal Entity: Helix BioMedical, a 508(c)(1)(a) faith-based healthcare organization
Services: Mobile healthcare, diagnostic testing, telehealth, bioresonance therapy, and community health services
Jurisdiction: Operating under Wyoming law and federal healthcare regulations

1.2 Information Covered

  • Protected Health Information (PHI) under HIPAA
  • Personal identification information
  • Financial and billing information
  • Electronic communications and portal data
  • Mobile mission and community outreach records

Faith-Based Commitment: As a ministry organization, we hold ourselves to the highest ethical standards in protecting your privacy, viewing this responsibility as both a legal obligation and a sacred trust.

2. Information We Collect

2.1 Health Information

  • Medical history and current health conditions
  • Diagnostic test results and laboratory findings
  • Treatment plans and clinical notes
  • Prescription and medication information
  • Bioresonance therapy session data
  • Telehealth consultation records
  • Immunization and vaccination records

2.2 Personal Information

  • Full legal name and date of birth
  • Social Security Number (for billing purposes only)
  • Contact information (address, phone, email)
  • Emergency contact information
  • Insurance and coverage details
  • Government-issued identification

2.3 Technical Information

  • IP address and device identifiers
  • Browser type and operating system
  • Portal access logs and session data
  • Telehealth connection quality metrics

3. How We Use Your Information

3.1 Treatment Purposes

  • Providing medical diagnosis and treatment
  • Coordinating care between providers
  • Managing prescriptions and medications
  • Conducting follow-up care and monitoring
  • Delivering telehealth consultations

3.2 Healthcare Operations

  • Quality assessment and improvement
  • Staff training and competency evaluation
  • Accreditation and licensing compliance
  • Business management and planning
  • Community health program development

3.3 Payment Processing

  • Insurance verification and claims processing
  • Patient billing and collections
  • Financial assistance program eligibility
  • Sliding scale fee determination

4. HIPAA Compliance

Helix BioMedical fully complies with the Health Insurance Portability and Accountability Act (HIPAA) of 1996, including the Privacy Rule, Security Rule, and Breach Notification Rule.

4.1 Your HIPAA Rights

Right to Access

Obtain copies of your medical records

Right to Amend

Request corrections to your health information

Right to Accounting

Receive list of disclosures made

Right to Restrict

Request limits on how we use your information

Right to Confidential Communications

Request communication through specific means

Right to Notice

Receive copy of our privacy practices

4.2 Minimum Necessary Standard

We only access, use, or disclose the minimum amount of protected health information necessary to accomplish the intended purpose. Staff access to PHI is role-based and regularly audited.

5. Data Security Measures

5.1 Technical Safeguards

  • Encryption: AES-256 encryption for data at rest and in transit
  • Access Controls: Multi-factor authentication and role-based access
  • Audit Trails: Complete logging of all PHI access and modifications
  • Firewalls: Enterprise-grade network security and intrusion detection
  • Backup: Encrypted backups with geographic redundancy

5.2 Administrative Safeguards

  • Designated Privacy Officer and Security Officer
  • Annual HIPAA training for all workforce members
  • Business Associate Agreements with all vendors
  • Regular risk assessments and security audits
  • Incident response and breach notification procedures

5.3 Physical Safeguards

  • Secure facility access with badge and biometric controls
  • Workstation security policies
  • Device and media controls
  • Secure disposal of PHI-containing materials

6. Information Sharing

6.1 Permitted Disclosures (Without Authorization)

  • Treatment, payment, and healthcare operations
  • Public health activities and reporting
  • Health oversight agency activities
  • Judicial and administrative proceedings
  • Law enforcement purposes (limited)
  • Deceased individual information to family
  • Organ and tissue donation
  • Research (with appropriate safeguards)
  • To prevent serious threat to health or safety
  • Workers' compensation as required by law

6.2 Disclosures Requiring Authorization

  • Marketing purposes
  • Sale of protected health information
  • Psychotherapy notes
  • Most uses not described in this notice

We Never: Sell your health information. Share PHI for marketing without your written authorization. Disclose information beyond what is legally permitted.

7. Your Privacy Rights

Access Your Records

Request copies of your medical records within 30 days. Fees may apply for copying.

Request Amendments

Ask us to correct information you believe is incorrect or incomplete.

Request Restrictions

Ask us to limit how we use or share your information.

Confidential Communications

Request that we contact you in a specific way or at a specific location.

Accounting of Disclosures

Obtain a list of certain disclosures we have made of your information.

8. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA). Note: HIPAA-covered health information is generally exempt from CCPA, but we honor these rights for non-health data.

  • Right to Know: Request disclosure of personal information collected
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of sale of personal information (we do not sell)
  • Right to Non-Discrimination: Equal service regardless of exercising rights

9. Children's Privacy

We provide healthcare services to minors with appropriate parental/guardian consent. For minors, parents or legal guardians may exercise privacy rights on behalf of the child, except where state law grants minors independent rights to healthcare privacy.

We comply with all state laws regarding minor consent for specific types of healthcare, including reproductive health, mental health, and substance abuse treatment where applicable.

10. Changes to This Policy

We reserve the right to modify this Privacy Policy at any time. Material changes will be communicated through:

  • Posting the revised policy on our website
  • Email notification to registered patients
  • Notice in our healthcare facilities
  • Patient portal announcements

Changes take effect immediately upon posting unless otherwise specified. Continued use of our services constitutes acceptance of the updated policy.

11. Contact Us

For questions about this Privacy Policy, to exercise your privacy rights, or to file a complaint, please contact:

Privacy Officer

Email: [email protected]
Phone: (725) 287-7791

HIPAA Complaints

U.S. Department of Health and Human Services
Office for Civil Rights
hhs.gov/ocr/privacy

Mailing Address:
Helix BioMedical - Privacy Department
2400 S Jones Blvd
Las Vegas, NV 89146

View HIPAA Notice of Privacy Practices →