Effective Date: 05-01-2025

This Privacy Policy describes how TBC Solutions Pvt Ltd (“we,” “us,” or “our”) collects, uses, discloses, and protects the personal information, including Protected Health Information (PHI), we handle on behalf of the healthcare providers and organizations we serve (“Clients”). We are committed to protecting the privacy and security of this sensitive information in accordance with applicable laws and regulations, including the Health Insurance Portability and Accountability Act of 19 accountability Act of 1996 (HIPAA) and its implementing regulations.

Information We Collect

As a medical billing company, we collect and process information necessary to perform billing and related services for our clients. This information may include:

Protected Health Information (PHI):

This includes demographic information (name, address, date of birth), medical record information (diagnosis codes, procedure codes, treatment dates), insurance information (policy numbers, group numbers, insurance company details), and billing and payment information (account balances, payment history). This information is received from our clients or their patients.

Other Personal Information:

This may include contact information for Client staff or other individuals involved in the billing process.

How We Use Information

We use the information we collect solely for the purpose of providing medical billing and related services to our clients. This includes:

Submitting claims to insurance companies and government payers.

Processing payments and managing patient accounts.

Following up on denied or rejected claims.

Generating billing statements and reports for Clients and patients.

Communicating with insurance companies, patients, and Clients regarding billing matters.

Performing audits and compliance reviews.

Other activities necessary to perform our contractual obligations to our clients.

We use and disclose PHI only as permitted or required by our Business Associate Agreements with our Clients and by applicable law, including HIPAA.

How We Protect Information

We implement reasonable and appropriate physical, technical, and administrative safeguards to protect the confidentiality, integrity, and availability of the information we handle, particularly PHI. These safeguards include:

Physical Safeguards:
Securing our facilities and equipment.

Technical Safeguards: Using encryption, access controls, audit logs, and secure networks.

Administrative Safeguards: Implementing policies and procedures, training staff on privacy and security, and conducting risk assessments.

We regularly review and update our security measures to adapt to new threats and technologies.

Disclosure of Information

We disclose information, including PHI, only as necessary to perform our services for our Clients and as permitted or required by law. This may include disclosures to:

Insurance Companies and Payers: To submit claims and receive payment.

Healthcare Providers (Our Clients): To report on billing status and provide necessary information for patient care and business operations.

Patients: To provide billing statements and respond to inquiries.

Business Associates: To third-party vendors who perform services on our behalf and who have signed Business Associate Agreements with us agreeing to protect the privacy and security of PHI.

Government Agencies: As required by law (e.g., for audits, investigations, or public health purposes).

Legal Proceedings: In response to a court order, subpoena, or other legal process, as permitted by law.

We do not sell or rent personal information, including PHI, to third parties.

Patient Rights

Patients whose PHI we handle on behalf of our clients have certain rights under HIPAA regarding their PHI. These rights are exercised through the patient’s healthcare provider (our Client). If a patient wishes to exercise their rights (e.g., access their records, request an amendment, request an accounting of disclosures), they should contact their healthcare provider directly. We will cooperate with our clients to fulfill these requests as required by law.

Data Retention

We retain information, including PHI, for as long as necessary to fulfill the purposes for which it was collected, to comply with legal and regulatory requirements (including HIPAA record retention requirements), and to meet our contractual obligations to our clients.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the revised Privacy Policy on our website or provide it to our clients. The effective date at the top of the policy will indicate when the latest changes took effect.

Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

TBC Solutions Pvt Ltd            

24624 Interstate 45 North, Suite 125 Spring, TX 77386

(888) 603 0228

mwaleed@arthritiskneepain.com

Disclaimer: This is a sample privacy policy and may not be suitable for your specific needs. You should consult with legal counsel to draft a privacy policy that is appropriate for your business and comply with all applicable laws and regulations.