HIPAA Compliance Statement

​Under HIPAA Regulations, West Houston Internal Medicine Associates, LLC (KATY PRIMARY CARE) is subject to the following controls:

Administrative Safeguards (HIPAA 164.308).

KATY PRIMARY CARE has implemented policies to ensure appropriate assignment of data access permissions and proper movement and handling of that data. HIPAA training is an annual mandated event for all staff, as well as annual review of policy effectiveness during internal or 3rd party auditing of our Services.

Physical Safeguards (HIPAA 164.310).​

KATY PRIMARY CARE’s primary physical safeguard is to not retain sensitive data in any public or private KATY PRIMARY CARE location other than those assigned for database management and quality assurance activities. Specific workstation usage, disposal, reuse and security measures are in place. Access to KATY PRIMARY CARE facilities are all independently controlled via card access preventing walk-up intrusion. Annual audit of the facility security plan, disaster recovery plan, and contingency plans are in place.

Technical Safeguards (HIPAA 164.312).​

To further protect sensitive data, KATY PRIMARY CARE enforces unique software architecture that includes user identifications, various database audit logging, data integrity systems and verified backups, entity authentication programs, digital certificates, various levels of encryption and other custom architecture to further obscure sensitive data from threats, both in our office and on our website, KATYPRIMARYCARE.COM and other web based accounts.seriously.