Sunny Day Behavioral - HIPAA Notice of Privacy Practices

Effective Date: June 7th, 2025

THIS NOTICE DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

Sunny Day Behavioral ("SDB," "we," "our," or "us") is committed to protecting your health information in accordance with applicable laws, including the Health Insurance Portability and Accountability Act of 1996 ("HIPAA").

1. Our Legal Duties

We are required by law to:

Maintain the privacy and security of your Protected Health Information (PHI)

Provide you with this Notice of our legal duties and privacy practices

Abide by the terms of this Notice

Notify you promptly if a breach occurs that may have compromised the privacy or security of your information

2. Your Rights Regarding PHI

You have the right to:

Access: Request to view or obtain a copy of your PHI

Amend: Request corrections to your records if you believe they are incorrect or incomplete

Restrict: Request restrictions on certain uses or disclosures

Confidential Communications: Request communications through alternative means or locations

Accounting of Disclosures: Receive a list of disclosures made for purposes other than treatment, payment, or healthcare operations

Receive a Paper Copy: Ask for a paper copy of this Notice at any time

3. How We May Use & Disclose PHI Without Your Authorization

We may use or disclose your PHI for:

a. TreatmentTo provide, coordinate, or manage your health care and related services (e.g., therapists sharing information with supervisors).

b. PaymentTo bill and collect for services, submit claims to insurance, or determine eligibility.

c. Healthcare OperationsFor quality assessment, staff training, auditing, licensing, and compliance activities.

d. As Required by LawTo comply with legal mandates (e.g., child abuse reports, court orders, law enforcement subpoenas).

e. Public Health & SafetyTo prevent serious threats to health or safety, or for public health activities.

f. Business AssociatesTo vendors providing billing, data storage, or other administrative services under a signed Business Associate Agreement.

g. Government FunctionsFor military, national security, or correctional institution needs as required by law.

h. ResearchWith Institutional Review Board (IRB) approval or your written authorization.

4. Uses & Disclosures Requiring Your Written Authorization

We will obtain your written consent before:

Using PHI for marketing purposes

Selling your PHI

Sharing psychotherapy notes (unless permitted by HIPAA)

You may revoke your authorization in writing at any time, except where we have already relied on it.

5. Minors and Personal Representatives

Parents and legal guardians may access PHI of minors unless:

State law prohibits such access

A court has granted exclusive rights to another party

The minor is legally allowed to consent to care and does not want the information shared

6. Security Safeguards

We implement:

HIPAA-compliant electronic health record systems

Role-based access control

Encryption, firewalls, and secured communication channels

Continuous employee training on data protection

Active monitoring and mitigation protocols for digital threats

7. Complaints

If you believe your privacy rights have been violated, you may file a complaint:

With Sunny Day Behavioral's Privacy Officer

Or with the U.S. Department of Health and Human Services (HHS)

We will not retaliate against you for filing a complaint in good faith.

8. Ownership & Acknowledgement Agreement

By receiving services from Sunny Day Behavioral, you acknowledge and agree that:

You grant SDB irrevocable permission to use your data for operational, legal, quality assurance, and internal educational purposes

You waive any intellectual property rights over therapy-generated materials, including written, verbal, or recorded outputs

You relinquish your right to demand deletion of any data unless mandated by law

You accept that all clinical formats, treatment structures, and proprietary materials belong exclusively to SDB

9. Changes to This Notice

We may change this Notice at any time. The revised version will apply to all PHI we maintain and will be posted on our website at sunnydaybehavioral.com and made available upon request.

10. Contact Information

Sunny Day Behavioral, LLCAttn: HIPAA Privacy Officer1801 NE 123rd St, North Miami, FL 33181Email: [email protected]: (786) 602-9962

ACKNOWLEDGEMENT OF RECEIPTBy using our services, you acknowledge receipt of this HIPAA Notice of Privacy Practices and agree to its terms as a condition of participation in our programs.

© Sunny Day Behavioral LLC. All Rights Reserved.