THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
BlinkLab Pty Ltd (“BlinkLab,” “we,” “our,” or “us”) is committed to protecting the privacy and security of Protected Health Information (“PHI”) in accordance with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), applicable state privacy laws, GDPR requirements where applicable, and BlinkLab’s internal policies.
Our Responsibilities
- Maintain the privacy and security of your PHI.
- Provide you with this Notice describing our legal duties and privacy practices.
- Follow the duties and privacy practices currently described in this Notice.
- Notify affected individuals following a breach of unsecured PHI when required by law.
- Limit uses and disclosures of PHI to the minimum necessary.
We May Use and Disclose Your PHI
- Treatment: Supporting diagnostic evaluations, clinical assessments, and coordination with healthcare providers or investigators.
- Payment: Billing, reimbursement, insurance verification, and healthcare financial operations.
- Healthcare Operations: Quality improvement, compliance monitoring, internal auditing, security administration, training, accreditation, and business management activities.
- Research Activities: Research disclosures approved by an Institutional Review Board (IRB), authorized by the participant, or otherwise permitted under HIPAA.
- Public Health and Safety Activities: Reporting adverse events, FDA reporting, communicable disease reporting, or abuse/neglect reporting as required by law.
- Health Oversight Activities: Government audits, investigations, inspections, and regulatory compliance activities.
- Business Associates: Disclosure to vendors or contractors performing services on our behalf under a valid Business Associate Agreement (BAA).
- As Required by Law: Court orders, subpoenas, law enforcement requests, and other legally required disclosures.
Uses and Disclosures Requiring Your Authorization
- Marketing activities not otherwise permitted under HIPAA.
- Sale of PHI.
- Certain disclosures involving psychotherapy notes where applicable.
- Other uses and disclosures not described in this Notice.
Your Rights Regarding Your PHI
- Right to Access: Request copies of your PHI.
- Right to Amend: Request corrections to inaccurate or incomplete PHI.
- Right to an Accounting of Disclosures: Receive a list of certain disclosures of your PHI.
- Right to Request Restrictions: Request restrictions on uses or disclosures of your PHI.
- Right to Confidential Communications: Request alternative methods or locations for communications.
- Right to Obtain a Copy of this Notice: Receive a paper or electronic copy of this Notice.
- Right to File a Complaint: File a complaint without retaliation if you believe your privacy rights have been violated.
Special Protections for Pediatric and Research Information
- BlinkLab’s technology is utilized in neurodevelopmental research and diagnostic support activities involving pediatric information.
- Parent or guardian authorization is required where applicable.
- IRB approvals and ethical review requirements are followed for clinical studies.
- Special handling procedures apply to biometric, neurological, audio and/or video recordings, and developmental data.
Our Safeguards
- Role-based access controls.
- Encryption and secure transmission technologies.
- Multi-factor authentication.
- Workforce HIPAA privacy and security training.
- Incident response and breach notification procedures.
Changes to This Notice
- BlinkLab reserves the right to change this Notice and make revised practices effective for all PHI maintained by BlinkLab. Updated notices will be posted on BlinkLab’s website and made available upon request.
Complaints and Contact Information
- If you believe your privacy rights have been violated, you may file a complaint with BlinkLab or with the U.S. Department of Health and Human Services, Office for Civil Rights.
- BlinkLab HIPAA Privacy Officer
- Email: compliance@blinklab.org
- Website: https://www.blinklab.org/privacy-notice
- Mailing Address: BlinkLab Limited, Level 4, 216 St Georges Terrace, Perth WA 6000, Australia
- You will not be retaliated against for filing a complaint.
Effective Date: July 14, 2026