Document Restoration Services (DFD) protects all individually identifiable information in the normal course of providing services. Should Protected Health Information (PHI) be made available, or obtained by DFD, we do hereby assure our customers that we will:

• Comply with the rules and regulations concerning the privacy and security of PHI under the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
• Require the utilization of a Business Associate Addendum (BAA), in the event that confidential information will be disclosed. This addendum may be provided by DFD upon request.
• Not use or disclose any PHI except in the course of meeting our contractual obligations or as required by law.
• Ensure that agents or subcontractors working on our behalf agree to the same restrictions.
• Protect against any non-permitted use or disclosure of PHI using no less than a reasonable amount of care.
• Report any non-compliance of which we become aware.
• At the request and direction of the customer and if feasible, make available PHI in accordance within the requirements of HIPAA.
• Upon reasonable notice and during normal business hours, allow the Secretary of the United States Department of Health and Human Services the right to audit our records and practices related to the use and disclosure of PHI to ensure compliance.
• Upon termination of contract or upon request, if feasible, return or destroy all PHI received or created as a result of any contract and retain no copies.
• Have established that all employees with access to PHI receive training on our policies and procedures according to HIPAA mandates.