Attachment A
Notice of Privacy Practices

  1. This notice describes how medical information about our patients may be used and disclosed and how our patients or their legal representative(s) can get access to this information. Please review it carefully. The use of the words "you" and "your" in the remainder of this document refer to you and/or your child(ren) under the care of any physician or hospital or guardian who has requested our services.

  2. We have a legal duty to safeguard your Protected Health Information (PHI).

    1. We are legally required to protect the privacy of your health information against unauthorized access, use, or disclosure. We call this information protected health information (PHI), and it includes information that can be used to identify you that we have created or received about your past, present, or future health or condition, the provision of health care to you, or the payment for this health care. We must provide you with this notice about our privacy practices that explains how, when, and why we use and disclose your PHI. With some exceptions, we may not use or disclose any more of your PHI than necessary to accomplish the purpose of the use or disclosure. Eurofins NTD, LLC. limits employee access to PHI to only those employees that need access in the performance of their official duties. Employees who have access to PHI are trained to follow appropriate procedures regarding any disclosure of personal information. We are legally required to follow the privacy practices that are described in this notice.

    2. However, we reserve the right to change the terms of this notice and our privacy practices at any time. Any changes will apply to the PHI we already have. Before we make an important change to our policies, we will promptly change this notice and send a new notice to the health care providers we serve. You can also request a copy of this notice from the contact person listed in Section 6 below at any time and can view a copy of the notice on our Web Site located at http://www.NTDLabs.com.

  3. How we may use and disclose your protected health information.

    1. We use and disclose health information for many different reasons. For some of these uses or disclosures, we need your prior consent or specific authorization, and for others, we do not. The following categories describe different ways that we may use and disclose PHI. For each category of uses or disclosures we will explain what we mean and give some examples. Not every use and disclosure in a category will be listed. However, all of the ways we are permitted to use and disclose PHI will fall into one of the categories.

    2. Uses and Disclosures Relating to Treatment, Payment, or Health Care Operations.

      1. We may use and disclose your PHI for the following reasons:

        1. For treatment. We may disclose your PHI to assist you with medical treatment or services. Therefore, we may disclose PHI about you to physicians, nurses, technicians, and other health care personnel who provide you with health care services or who are involved in your care, such as pharmacists, dieticians, genetic counsellors, etc.

        2. For health care operations. We may disclose your PHI for health care operations. For example, we may use your PHI in order to evaluate the quality of health care services that you received. In order to decide whether or not new tests are effective, we may combine health information about many patients. We may disclose your PHI to medical students and other health care providers for review and teaching purposes. We may also provide your PHI to our accountants, attorneys, consultants, and others in order to make sure we are complying with the laws that affect us.

        3. Upon written request by the patient or the patient’s representative and with the proper verification of the patient and/or representative’s identity. For requests on behalf of a patient by an authorized representative, proof of the authorization is required, i.e., power of attorney, birth certificate (if unemancipated minor), delegation of authority, etc.

    3. Disclosures to family, friends, or others. We may provide your PHI, including your condition and status, to a family member, friend, or other person that you indicate is involved in your care or the payment for your health care, only after receiving appropriate patient and/or physician consent.

    4. Certain other uses and disclosures that do not require your authorization. We may use and disclose your PHI without your consent or authorization for the following reasons:

      1. Under certain circumstances, we may use and disclose your PHI for research purposes. For example, a research project may involve comparing the health and recovery of all patients who received one treatment methodology to those who received another for the same condition. In some cases, research will be conducted through a limited database of PHI that we maintain for research and quality improvement purposes that excludes patient names and other identifying information. All other research projects involving the use of PHI are subject to a special approval process. This process evaluates a proposed research project and its use of PHI, trying to balance the research needs with the patient’s need for privacy of their PHI. Before we use or disclose PHI for research without your consent, the project will have been approved through this research approval process. We may, however, disclose your PHI to people preparing to conduct a research project, for example, to help them look for patients with specific medical needs, so long as the medical information they review does not leave our control.

      2. We will disclose your PHI when required to do so by federal, state or local law.

      3. We may use and disclose your PHI when necessary to prevent a serious threat to your health and safety or the health and safety of the public or another person. Any such disclosure, however, would be to someone able to help prevent the threat.

      4. We may disclose PHI about you for public health activities. These activities generally include preventing or controlling disease, injury, or disability, or for reporting births and deaths.

      5. We may notify the appropriate government authorities if we believe a patient has been the victim of abuse, neglect, or domestic violence. We will only make such disclosures if you agree or when required or authorized by law.

      6. We may disclose your PHI to a health oversight agency for activities authorized by law. These oversight activities include, for example, audits, investigations, inspections, and licensure. These activities are necessary for the government to monitor the health care system, government programs, and compliance with civil rights laws.

      7. If you are involved in a lawsuit or a dispute, we may disclose PHI about you in response to a court or administrative order. We may also disclose your PHI in response to a subpoena, discovery request, or other lawful process by someone else involved in the dispute, but only if efforts have been made to tell you about the request or to obtain an order protecting the information requested.

      8. We may release your PHI if asked to do so by a law-enforcement official for the following reasons:
        1. In response to a court order, subpoena, warrant, summons or a similar process;

        2. To identify or locate a suspect, fugitive, material witness, or missing person;

        3. If it pertains to the victim of a crime if, under certain limited circumstances, we are unable to obtain the person's agreement;

        4. In emergency circumstances to report a crime; the location of the crime or victims; or the identity, description or location of the person who committed the crime.

      9. We may release PHI to a coroner or medical examiner. This may be necessary, for example, to identify a deceased person or determine the cause of death. We may also release PHI to funeral directors as necessary to carry out their duties.

      10. We may release your PHI to authorized federal officials for intelligence, counterintelligence, and other national security activities authorized by law.

    5. All other uses and disclosures require your prior written authorization. In any situation not described in Sections 3a-3d above, we will ask for your written authorization before using or disclosing any of your PHI. If you choose to sign an authorization to disclose your PHI, you can later revoke that authorization in writing to stop any future uses and disclosures but only to the extent that we haven't already taken any action relying on the authorization.

  4. You have the following rights with respect to your PHI:

    1. You have the right to ask that we limit how we use and disclose your PHI. We will consider your request, but are not legally required to accept it. If we accept your request, we will put any limits in writing and abide by them except in emergency situations. You may not limit the uses and disclosures that we are legally required or permitted to make without your authorization which are generally described in Section 3b above. To request restrictions, you must make your request in writing to the person listed in Section 6 below.

    2. You have the right to ask that we send information to you at an alternate address e.g., your work address rather than your home address or by alternate means, such as electronic mail (e-mail) instead of regular mail. Your request must be in writing and specify how or where you wish to be contacted. We will accommodate all reasonable requests.

    3. The right to review and get a copy of your PHI. Once you or a third party on your behalf provides us with a completed Request for Health Care Records and Authorization to Release Health Care Information Form, a copy of your identification, and documentation of the third party requester’s legal authority and relationship to you (if applicable) by faxing this documentation to (631)-425-0864,we will respond to you within 30 days after receiving your written request. You can find the Request for Health Care Records and Authorization to Release Health Care Information Form on our website at www.NTDLABS.com. Contact our Client Services Department for further information on how to obtain your PHI at 1-888-NTD-LABS (683-5227)

      In certain situations, we may deny your request. If we do, we will tell you, in writing, our reasons for the denial and explain your right to have the denial reviewed. It is Eurofins NTD, LLC. policy to send the results of your PHI request by U.S. Mail. Eurofins NTD, LLC. may also charge you, in accordance with state law, for copies and postage of the records in response to your request for PHI.

    4. The right to get a list of the disclosures we have made.

      1. You have the right to get a list of certain instances in which we have disclosed your PHI. The list will not include uses or disclosures to carry out treatment, payment, or health care operations or disclosures directly to or authorized by you. The list also won't include uses and disclosures that are incidental to a permitted use or disclosure, that are part of the limited data set we maintain for research and quality improvement purposes, that are made for national security purposes, to corrections or law enforcement personnel, or that were made before April 14, 2003.

      2. We will respond within 60 days of receiving your written request, unless we need additional time, up to 30 days more, to respond. The list we give you will include disclosures made during the time period you specify, provided, however, that the time period may not be longer than six (6) years and may not include dates before April 14, 2003.

        The list will indicate the date of the disclosure, to whom PHI was disclosed (including their address, if known), a description of the information disclosed, and the reason for the disclosure. We will provide the list to you at no charge, but if you make more than one request in the same twelve (12) month period, we may charge you for the costs of providing the additional list(s). We will notify you of the cost involved and you may choose to withdraw or modify your request at that time before any costs are incurred.

    5. The right to correct or update your PHI.

      1. If you believe that there is a mistake in your PHI or that a piece of important information is missing, you have the right to request that we correct the existing information or add the missing information. You must provide the request and your reason for the request in writing.

      2. We will respond to you within 60 days of receiving your request, unless we need additional time (up to 30 days more) to respond. We may deny your request in writing if the PHI is accurate and complete, was not created by us, is information that we are not required to provide access to, or is not part of our records.

      3. Any written denial will state the reasons for the denial and explain your right to file a written statement of disagreement with the denial. If you do not file one, you have the right to request that your request and our denial be attached to all future disclosures of your PHI. If we approve your request, we will make the change to your PHI, tell you that we have done it, and tell others that need to know about the change to your PHI.

  5. If you think that we may have violated your privacy rights, or disagree with a decision we made about access to your PHI, you may file a complaint with the person listed in Section 6 below. You also may send a written complaint to the Secretary of the Department of Health and Human Services. We will take no retaliatory action against you if you file a complaint about our privacy practices.

  6. If you have any questions about this notice or any complaints about our privacy practices, or would like to know how to file a complaint with the Secretary of the Department of Health and Human Services, you may contact our Privacy Officer by writing to:

Privacy Officer
Eurofins NTD, LLC.
80 Ruland Road, Suite 1
Melville, NY 11747
Telephone 1-888-NTD-LABS (683-5227)

Privacy Policy for Website Visitors

Eurofins NTD, LLC. respects your privacy. We want to make use of personal identification information that you provide to us for purposes of serving you better. "Personal identification information" is information that lets us identify you, such as your email address, name and address. Eurofins NTD, LLC. uses the personal identification information to selectively send you communications that may be of interest to you. Eurofins NTD, LLC. policy regarding use of your personal identification information supplied to us or collected via your experience at our online web site covers these areas:

  1. Notice and Disclosure
    This Privacy Policy is made available to you in order to make you aware of how Eurofins NTD, LLC. collects and uses personal identification information of visitors to Eurofins NTD, LLC. web site.
    In general, you can visit Eurofins NTD, LLC. on the Web without identifying yourself or revealing any personal information. Visitors who register at the site may volunteer information, such as your name, address and email address. If you establish a credit account with Eurofins NTD, LLC., we collect some additional information, including billing address, credit card number and credit card expiration date and tracking information from checks or money orders.
    Eurofins NTD, LLC. will make some personal identification information available to a limited number of Eurofins NTD, LLC. employees or business affiliates for the purpose of improving products and support.
    Eurofins NTD, LLC. will not give or sell personal identification information to third parties.

  2. Choice/Consent
    Registrants to Eurofins NTD, LLC. web site have the choice to opt out of having personal identification information provided in the registration process used for any purpose unrelated to the purpose for which the information was provided to us. Visitors may request to be removed from Eurofins NTD, LLC. information database. Visitors may choose not to receive informational email messages from Eurofins NTD, LLC.

  3. Data Accuracy and Updates
    The accuracy of your personal identification information is important to Eurofins NTD, LLC. Registered Eurofins NTD, LLC. web site users can update their personal identification information online or by writing an email message to the Eurofins NTD, LLC. web site administrator.

  4. Cookies
    A cookie is a small piece of information that tells a web site you have visited there before.
    Eurofins NTD, LLC. sends a small piece of information (the cookie) to your web browser. With your permission, the cookie is stored on your computer's hard drive, taking up less than 100 bytes of disk space. The cookie acts like an identity card every time you visit the Eurofins NTD, LLC. web site. Only Eurofins NTD, LLC. can read the cookie. Eurofins NTD, LLC. cannot read cookies set by other sites.
    Cookies save you time. If you have enabled Automatic Logins for your profile, you will not have to provide your name and password when visiting the parts of our site that use Eurofins NTD, LLC. registration.
    Cookies also allow Eurofins NTD, LLC. to customize the pages you visit based on previous pages that you've visited.
    Cookies help us help you. We learn what is important to our visitors. This allows us to focus our efforts on the information you need.
    Much of Eurofins NTD, LLC. can be accessed with cookies disabled. However your visit will be significantly enhanced if cookies are enabled. As time goes on, more and more pages on our site will have the capability to be personalized, which will depend on the existence of a Eurofins NTD, LLC. cookie.
    You can set your browser to notify you when you receive a cookie, giving you the chance to decide whether to accept it. Please see the "Help" menu for your browser.
    If you want to learn more about cookies, Cookie Central is an excellent resource.