Notice of Privacy Practices

1. Uses and Disclosures of PHI for Treatment, Payment, and Healthcare Operations

Without your authorization, we may use and disclose your PHI for the following purposes:

• Treatment — We use PHI to provide, coordinate, and manage your health care and related services. This includes processing claims for denial prevention, conducting benefits eligibility checks, coverage discovery, claim status inquiries, and ERA (Electronic Remittance Advice) management.
• Payment — We use PHI to process payment for services provided, including revenue cycle management and insurance claim processing.
• Healthcare Operations — We use PHI to conduct business operations necessary to support treatment and payment functions, including quality improvement, performance monitoring, compliance, customer service, and general business management.

2. Uses and Disclosures Requiring Your Authorization

Except as otherwise permitted or required by law, we will not use or disclose PHI without your written authorization. These uses and disclosures include:

• Marketing purposes
• Sale of PHI
• Uses or disclosures that are not otherwise permitted by this Notice

You may revoke your authorization at any time by providing written notice to our Privacy Officer. We will honor your revocation except to the extent we have already acted on the authorization.

3. Uses and Disclosures Without Your Authorization

We may use or disclose PHI without your authorization in the following circumstances:

• As Required by Law — We will disclose PHI when required by federal, state, or local law, court order, or legal process.
• Public Health Activities — We may disclose PHI to public health authorities for disease surveillance, prevention, investigation, and control purposes.
• Abuse, Neglect, or Domestic Violence — We may disclose PHI to relevant authorities if we reasonably believe you are a victim of abuse, neglect, or domestic violence.
• Health Oversight Activities — We may disclose PHI to health oversight agencies for audits, investigations, and inspections authorized by law.
• Judicial and Administrative Proceedings — We may disclose PHI in response to subpoenas, court orders, or other lawful process.
• Law Enforcement — We may disclose PHI to law enforcement officials for purposes of locating or identifying individuals, investigating crimes, or responding to emergencies.
• Decedent Information — We may disclose PHI of a deceased individual to funeral directors, coroners, and medical examiners.
• Research — We may disclose PHI for research purposes when approved by an Institutional Review Board and appropriate protections are in place.
• Serious Threat to Health or Safety — We may disclose PHI if we believe in good faith that disclosure is necessary to prevent or lessen a serious and imminent threat to health or safety.
• Workers Compensation — We may disclose PHI as authorized by workers compensation laws.
• Specialized Government Functions — We may disclose PHI to military personnel, veterans, or government agencies for their authorized purposes.

4. Your Privacy Rights

Under HIPAA, you have the following rights:

• Right to Inspect and Copy Your PHI — You have the right to inspect and receive a copy of your PHI. We may charge a reasonable fee for copying and mailing.
• Right to Amend Your PHI — You have the right to request amendment of inaccurate or incomplete PHI. We may deny your request if we determine the information is accurate.
• Right to Accounting of Disclosures — You have the right to receive an accounting of disclosures of your PHI. We will provide the information free of charge once per year.
• Right to Request Restrictions — You have the right to request restrictions on our use and disclosure of your PHI. We may not agree to all requests but will make reasonable efforts to honor those we agree to.
• Right to Request Confidential Communications — You have the right to request that we communicate with you about your PHI by alternative means or at alternative locations.
• Right to Receive Notice of Breach — You have the right to be notified without unreasonable delay if there is a breach of unsecured PHI.
• Right to Paper Copy of This Notice — You have the right to receive a paper copy of this Notice at any time.

5. Our Obligations

AidiN Health is required by law to:

• Maintain the privacy of your PHI
• Provide this Notice and notify you of our legal duties and privacy practices
• Abide by the terms of this Notice
• Notify you without unreasonable delay if a breach of unsecured PHI occurs

We are committed to maintaining appropriate administrative, physical, and technical safeguards to protect your PHI from unauthorized access, alteration, destruction, or use.

6. Business Associates

We may share your PHI with business associates who perform services on our behalf, such as hosting providers, data analysts, and legal advisors. Business associates are contractually bound by business associate agreements (BAAs) to maintain the privacy and security of your PHI in accordance with HIPAA regulations.

7. Complaints and Your Rights

If you believe your privacy rights have been violated, you may file a written complaint with AidiN Health or with the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services.

Complaints to AidiN Health:

Complaints to the Office for Civil Rights:

You will not be retaliated against for filing a complaint.

8. Changes to This Notice

AidiN Health reserves the right to change the terms of this Notice at any time. If we make significant changes, we will provide you with notice of the revised Notice through our website or by other appropriate means. Your continued use of our services after changes become effective constitutes your acceptance of the revised Notice.

9. Contact Information

Last Updated: February 6, 2026