Information Technology

Confidentiality & Data Protection

We designed our company confidentiality policy to explain how we expect our employees to treat confidential information. Employees will unavoidably receive and handle personal and private information about patients, clients, and our company. We want to make sure that this information is well-protected. This policy affects all employees and contractors.

We must protect this information for two reasons. It may

• Be legally binding (e.g., sensitive patient data and information)

• Constitute the backbone of our business, giving us a competitive advantage (e.g., business processes.)

Confidential information includes, but is not limited to:

• Private patient information and data

• Lists of referral sources

• Patient / client lists (existing and prospective)

• Documents and processes explicitly marked as confidential

• Marketing strategies and other undisclosed strategies

• Usernames and passwords

What employees should do:

• Lock or secure confidential information at all times

• Shred confidential documents when they’re no longer needed

• Make sure they only view confidential information on secure devices

• Only disclose information to other employees when it is necessary and authorized

• Keep confidential documents inside our company’s premises unless it is absolutely necessary to move them

What employees should not do:

• Use confidential information for any personal benefit or profit

• Disclose confidential information to anyone outside of our company

• Replicate confidential documents and files and store them on insecure devices

When employees stop working for our company, they’re obliged to return any confidential files and delete them from their personal devices.