Effective Date: April 22, 2026
YOUR RIGHTS: This notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully.
Autism Diagnostics Lab is committed to protecting the privacy and security of your Protected Health Information (PHI). This Notice of Privacy Practices describes our legal obligations and your rights regarding your health information under the Health Insurance Portability and Accountability Act (HIPAA) and other applicable privacy laws.
We are required by law to:
Protected Health Information includes any individually identifiable health information we collect, create, receive, maintain, or transmit. This includes but is not limited to:
We may use and disclose your Protected Health Information for the following purposes without your written authorization:
For Treatment:
We may use and disclose your PHI to provide, coordinate, or manage your healthcare and related services. This includes:
For Payment:
We may use and disclose your PHI to obtain payment for services we provide, including:
For Healthcare Operations:
We may use and disclose your PHI for our business operations, including:
To Business Associates:
We may disclose your PHI to third-party service providers (Business Associates) who perform services on our behalf. These may include:
All Business Associates are required to sign Business Associate Agreements that obligate them to protect your PHI and use it only for the purposes we specify.
As Required by Law:
We will disclose your PHI when required to do so by federal, state, or local law, including:
For uses and disclosures beyond treatment, payment, and healthcare operations, we will obtain your written authorization. This includes:
You have the right to revoke any authorization in writing at any time, except to the extent we have already acted in reliance on your authorization.
Autism Diagnostics Lab implements comprehensive administrative, physical, and technical safeguards to protect your Protected Health Information:
Administrative Safeguards:
Physical Safeguards:
Technical Safeguards:
Before disclosing your PHI to any Business Associate, we require them to sign a HIPAA-compliant Business Associate Agreement (BAA) that:
In the unlikely event of a breach of your unsecured Protected Health Information, we will notify you in accordance with HIPAA Breach Notification requirements:
What Constitutes a Breach:
A breach is an unauthorized acquisition, access, use, or disclosure of PHI that compromises the security or privacy of the information. Not all incidents are reportable breaches, we conduct risk assessments to determine if notification is required.
Notification Timeline:
Breach Notification Contents:
Our breach notification will include:
Under HIPAA, you have the following rights regarding your Protected Health Information:
Right to Access Your Medical Records:
You have the right to inspect and obtain a copy of your PHI that we maintain, including:
To request access, submit a written request to our HIPAA Privacy Officer. We will respond within 30 days (with one 30-day extension if needed). We may charge a reasonable, cost-based fee for copying and mailing. In limited circumstances, we may deny access, and you may have the right to request a review of the denial.
Right to Amend Your Records:
If you believe your PHI is incorrect or incomplete, you may request an amendment. We will respond within 60 days. We may deny your request if:
If we deny your request, you have the right to submit a statement of disagreement that will be included with your records.
Right to an Accounting of Disclosures:
You have the right to request a list of certain disclosures we have made of your PHI. This does not include disclosures for treatment, payment, healthcare operations, or disclosures made with your authorization. We will provide one accounting per year free of charge; subsequent requests may incur a reasonable fee.
Right to Request Restrictions:
You have the right to request restrictions on how we use or disclose your PHI. We are not required to agree to your request except in one situation: if you pay out-of-pocket in full for a service, you can request that we not disclose information about that service to your health plan, and we must agree.
Right to Request Confidential Communications:
You have the right to request that we communicate with you in a specific way or at a specific location (e.g., by mail instead of phone, at work instead of home). We will accommodate reasonable requests.
Right to a Paper Copy of This Notice:
You have the right to a paper copy of this Notice at any time, even if you have agreed to receive it electronically.
Right to Be Notified of a Breach:
You have the right to be notified if there is a breach of your unsecured PHI.
HIPAA Privacy Officer
Autism Diagnostics Lab
3805 E Bell Rd. Ste. 4300
Phoenix, AZ 85032
Email: info@autismdiagnosticslab.com
Phone: Available on our Contact Us page
Website: https://autismdiagnosticslab.com/contact-us
If you believe your privacy rights have been violated, you have the right to file a complaint. You will not be retaliated against for filing a complaint.
File a Complaint with Us:
Submit a written complaint to our HIPAA Privacy Officer at the address above. Include:
File a Complaint with the U.S. Government:
You may file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights:
We reserve the right to change the terms of this Notice at any time. Changes will apply to all PHI we maintain. When we make material changes, we will:
The effective date of the current Notice is listed at the top of this page.
Some state laws provide additional privacy protections beyond HIPAA. Where state law is more stringent than HIPAA, we will comply with state law. If you have questions about state-specific privacy protections, please contact our Privacy Officer.
ACKNOWLEDGMENT: By using our services, you acknowledge that you have been provided with this Notice of Privacy Practices and have had the opportunity to review it. If you have any questions about this Notice or our privacy practices, please contact our HIPAA Privacy Officer.