Privacy Policy for Healthcare Systems of America (HSA)

Last Updated: [07/09/2026]

 

1. Introduction

HSA is committed to protecting the privacy, confidentiality, and security of personal information entrusted to the organization. This Privacy Policy establishes the principles and requirements governing the collection, use, processing, storage, disclosure, and protection of Personally Identifiable Information (PII), Protected Health Information (PHI), and other sensitive data handled by HSA.

The HSA Privacy Program is designed to promote transparency, accountability, and responsible data handling while ensuring compliance with applicable regulatory requirements and industry-recognized frameworks. HAS respects the privacy rights of individuals and supports applicable data subject rights and aligns its privacy and security practices with leading standards including NIST 800-53, the NIST Privacy Framework, the HIPAA Privacy Rule, California Consumer Privacy Act and the California Privacy Rights Act. Where applicable, HSA provides mechanisms that allow individuals to request access to, correction of, or deletion of their personal information, and implement processes to respond to such requests.

2. Information We Collect

HSA may collect and process personal information necessary to support healthcare services, operational functions, regulatory compliance, and organizational activities. Categories may include:
I. Personally Identifiable Information (PII)
II. Protected Health Information (PHI)
III. Contact and demographic information
IV. Employment and workforce-related information
V. System usage and audit log data
VI. Vendor and third-party information

HSA limits the collection of personal information to what is necessary to fulfill legitimate business, healthcare, and regulatory purposes in accordance with the principle of data minimization.


3. How We Use Information

HSA uses personal information only for authorized and lawful purposes that support organizational operations and healthcare delivery. These purposes may include:
– Providing healthcare services
– Supporting business and administrative operations
– Meeting legal and regulatory requirements
– Protecting systems, networks, and data
– Managing workforce and vendor relationships
– Conducting risk management and compliance activities

4. How We Share Information

HSA may share personal information only when necessary and authorized. Information sharing may occur with:
– Authorized workforce members such as affiliated hospitals and healthcare facilities
– Regulatory authorities or government agencies
– Third-party service providers and vendors
– Potential buyers in case of sale or merger (with appropriate safeguards)
– Partners under contractual agreements

All third parties that process personal information on behalf of HSA must adhere to contractual privacy and security requirements consistent with applicable regulatory obligations

5. Data Protection and Security

HSA implements administrative, technical, and physical safeguards to protect personal information from unauthorized access, disclosure, alteration, or destruction. These safeguards are aligned with recognized cybersecurity and privacy standards.

6. Data Retention

HSA retains personal information only for the duration necessary to fulfill business, healthcare, legal, or regulatory obligations. Data retention periods are defined in accordance with organizational policies and applicable laws. At the end of the retention period, personal information is securely deleted or destroyed.

7. Individual Privacy Rights

Where applicable, individuals have rights regarding their personal information, including the ability to:
– Request access to their information
– Request corrections to inaccurate data
– Request deletion of information
– Opt-out of marketing communications

Requests related to personal information will be handled in accordance with applicable privacy regulations and organizational procedures.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:
– Improve website functionality
– Analyze usage patterns
– Remember your preferences

You can control cookies through your browser settings

9. Policy Review and Updates

This policy is reviewed periodically and updated as necessary to reflect changes in legal requirements, regulatory guidance, business operations, and privacy best practices. The latest version will be posted on our website with the effective date.

Contact

For privacy-related questions, please contact:
Privacy Officer
Healthcare Systems of America
110 SE, Ste. 2310
Fort Lauderdale, FL 33301
Email: privacy@hsahospitals.com
Phone: (818) 666-0602