HIPAA Privacy and Security

BFC handles all PHI (Personal Health Information) with the utmost sensitivity by following stringent HIPAA regulations.

• All personnel and on premise contractors that may come in visual site of PHI have been trained in how to properly handle this information and understand the importance of non-disclosure. Every employee must sign a confidentiality agreement annually.
• Employees must use a pass card to enter our building. A record of all entries and exits is recorded.
• BFC has developed Standard Operating Procedures for handling electronic data that may contain PHI information.
• Company and/or client specific work instructions are developed to ensure that client files and correspondences containing PHI are protected from misuse. Thorough quality checks are performed prior to release of materials.
• Secure FTP sites are in place to receive and transfer data that contains PHI.