Privacy Policy

Effective Date: July 14, 2025


Overview & Compliance

Black Horse Health (“we,” “our,” “us”) is fully committed to protecting your privacy and safeguarding Protected Health Information (PHI) in compliance with HIPAA and additional relevant regulations. We host this policy prominently on our website as required by LegitScript standards (LegitScript).


Information We Collect

  • Personal Data:Name, birthdate, address, email, phone.
  • PHI:Medical history, treatments, prescriptions, insurance claims.
  • Technical Data:IP addresses, cookies, analytics (Google Analytics, Search Console, HubSpot).


Use of Information

  • Treatment & Care:To manage prescriptions, appointments, and care coordination.
  • Billing & Insurance:For claims processing and payment management.
  • Operations & Compliance:Internal audits, quality reviews, staff training, and HIPAA compliance.
  • Communications:Appointment reminders, treatment updates, and support.
  • Legal & Public Health:Compliance with subpoenas, health reporting, and other legal duties.


Disclosure of Information

We may share your information with:

  • Healthcare Providers: With whom you coordinate care (via HIPAA-compliant channels).
  • Insurance & Payers: For claims and enrollment.
  • Business Associates: Third-party services bound by HIPAA.
  • Public Agencies: When legally required (e.g., disease reporting, court orders).
  • You or Your Authorized Represent: Upon written request.
  • Emergency or Safety Disclosures “Black Horse Health may use or disclose your Protected Health Information (PHI) without your authorization if necessary to prevent or reduce a serious and imminent threat to your health or safety, or the health or safety of another person. This may include contacting emergency medical personnel, law enforcement, or other appropriate professionals if you are at risk of harming yourself or others, or if you experience a medical emergency requiring hospitalization.”

    “Black Horse Health may share limited and relevant PHI with a family member, close friend, or other person involved in your care or payment for your care, when such disclosure is in your best interest or as permitted by law. You may identify the individuals with whom we may communicate, and you may change or revoke these permissions at any time. In emergency situations where you are unable to consent, disclosures may be made based on professional judgment to ensure your safety and continuity of care.”

  • Family, Friends, or Caregivers Involved in Your Care “Black Horse Health may share limited and relevant PHI with a family member, close friend, or other person involved in your care or payment for your care, when such disclosure is in your best interest or as permitted by law. You may identify the individuals with whom we may communicate, and you may change or revoke these permissions at any time. In emergency situations where you are unable to consent, disclosures may be made based on professional judgment to ensure your safety and continuity of care.”


Security Protections

  • Use of Secure Socket Layer (SSL)for all web data transmission (LegitScript).
  • Administrative, physical, and technical safeguards (e.g., encryption, access controls, staff training).
  • Regular audits to ensure ongoing protection.

 

Your Rights

Under HIPAA, you have the rights to:

  • Access & Copies of PHI.
  • Amend inaccurate health information.
  • Restrict certain uses or disclosures.
  • Request Confidential Communications (e.g., alternate contact methods).
  • Receive Disclosure Accounting.
  • Revoke Authorization for future uses (where allowed by law).
  • Right to File a Complaint
    • “If you believe your privacy rights have been violated, you may file a complaint with Black Horse Health and/or with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR). You will not be retaliated against for filing a complaint.”
    • To file a complaint with Black Horse Health:
      Tony Chapman (Privacy Officer)
      Black Horse Health
      711 East 20th Street Houston, TX  77059]
    • To file a complaint with the U.S. Department of Health & Human Services, Office for Civil Rights:
      Office for Civil Rights
      S. Department of Health & Human Services
      200 Independence Avenue, S.W.
      Washington, D.C. 20201
      Website: https://www.hhs.gov/ocr/privacy/hipaa/complaints/
      Phone: 1-800-368-1019
      TDD: 1-800-537-7697
  • Right to Request Deletion or Removal of PHI
    • “You may submit a written request asking Black Horse Health to delete or remove certain Protected Health Information (PHI) from our records. Requests will be evaluated in accordance with applicable federal and state laws. Some health information cannot be deleted—for example, information required for treatment, payment, health care operations, legal compliance, or clinical documentation standards.”
    • If we are unable to delete the requested information, we will provide you with a written explanation. You have the right to request that a statement of disagreement be added to your record if you believe the information is incorrect or should no longer be maintained.”

External Links & Cookies

Our site may contain third-party links (e.g., analytics tools). These are outside our control.
Cookies are used for tracking/analytics and contain no PHI. You may disable cookies in your browser settings.


Policy Updates

We may update this policy to reflect legislative or operational changes. The new effective date will be updated. Continued use after updates indicates acceptance.


Certification & Monitoring

In compliance with LegitScript’s standards, we:

  • Clearly publish this policy on our website (LegitScriptLegitScript).
  • Adhere to HIPAA and applicable privacy laws for PHI (WebFX).
  • Process all sensitive data over SSL-secured systems.

 

Organization’s Legal Duties

“Black Horse Health is legally required to maintain the privacy and security of your Protected Health Information (PHI), to provide you with this Notice of Privacy Practices, and to abide by the terms described in this Notice. We must notify you in the event of a breach that compromises your PHI. We may update this Notice as permitted by law, and any revised version will be made available to you. Black Horse Health complies with HIPAA and all applicable federal and state privacy regulations and uses secure, encrypted systems and safeguards to protect the confidentiality of your information.”

 

Contact Us

The Privacy Officer is the designated point of contact for all privacy-related concerns, complaints, or requests to exercise your rights regarding your Protected Health Information (PHI). Please direct all such communications to:

Tony Chapman, Privacy Officer
Black Horse Health
711 East 20th Street
Houston, TX 77008
Phone: 713-337-0873
Email: tony@blackhorsehealth.com