Your health information, protected by design.

Synergic Health Solutions and its affiliated physician practices are required by law to maintain the privacy of your protected health information (PHI), to provide you with this notice of our legal duties and privacy practices, and to abide by the terms of the notice currently in effect.

This notice applies to all records of your care generated through the platform — intake responses, laboratory results, consultation notes, prescriptions, and care-team communications — whether held by us or by the clinicians and partners who deliver your care.

Without further authorization from you, we may use and disclose PHI for three core purposes:

• Treatment — sharing your records with your treating physician, care team, pharmacy partners, and laboratories so they can coordinate and deliver your care.
• Payment — processing membership and therapy billing, and verifying charges.
• Healthcare operations — quality review, clinical-protocol oversight, compliance auditing, and training, conducted under access controls.

The law permits or requires certain disclosures without your authorization, including:

• When required by federal, state, or local law.
• For public health activities, such as adverse-event reporting to the FDA.
• To report suspected abuse, neglect, or domestic violence as required by law.
• For health oversight activities, such as audits and licensure investigations.
• In response to a valid court order, subpoena, or other lawful process.
• To prevent a serious and imminent threat to health or safety.

We will obtain your written authorization before using or disclosing PHI for:

• Marketing purposes.
• Any sale of your health information — which, as a matter of policy, we do not do.
• Most uses and disclosures of psychotherapy notes, where applicable.
• Any purpose not described in this notice.

You may revoke an authorization at any time, in writing, except to the extent we have already acted in reliance on it.

You have the right to:

• Inspect and receive a copy of your health records, in electronic or paper form, generally within 30 days of request.
• Request an amendment to records you believe are inaccurate or incomplete.
• Receive an accounting of certain disclosures we have made of your PHI.
• Request restrictions on how your PHI is used or disclosed — we will consider every request, though we are not required to agree to all of them.
• Request confidential communications by alternative means or at an alternative location.
• Receive a paper copy of this notice on request, even if you agreed to receive it electronically.

If a breach of unsecured PHI affects your information, we will notify you without unreasonable delay and no later than 60 days after discovery, as required by the HIPAA Breach Notification Rule. The notice will describe what happened, what information was involved, and the steps we are taking in response.

We reserve the right to change this notice and to make the revised notice effective for PHI we already hold as well as information we receive in the future. The current notice, with its effective date, is always available on this page and on request.

If you believe your privacy rights have been violated, you may file a complaint with our Privacy Officer using the contact details at the end of this notice, or with the Secretary of the U.S. Department of Health and Human Services, Office for Civil Rights.

You will never be penalized or retaliated against for filing a complaint.