Privacy Policy

A Guide To How We Protect Personal Information

EBMS values the trust you have placed in us and we will continue to be dedicated to maintaining your trust and confidence in our products and services. This notice describes the privacy practices of EBMS and our commitment to protecting the privacy and security of your personal and protected health information.

In order to effectively administer claims, provide superior quality customer service and other services on behalf of your group health plan, it is necessary for EBMS to receive and/or disclose personal and protected health information. EBMS may disclose to employers, plan administrators, health care providers, other group health plans, insurers, service providers and/or business associates. Such information may be made available through enrollment forms, medical claims, medical reports, coverage history and other sources and forms necessary to effectuate claim administration, treatment, payment and health care operations.

The information EBMS may receive and/or disclose may include your name, Social Security number, address, date of birth, telephone number, marital status, gender, dependent information, claim information and employment information. While this list is not exhaustive, it gives you an idea of the type of information we are referring to in this notice.

HIPAA Compliance

The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), in part, establishes new standards for healthcare privacy and security. Although EBMS is not directly subject to HIPAA privacy and security requirements, we do receive protected health information (“PHI”) from, and on behalf of, our customer that are subject to HIPAA. EBMS is committed to protecting the privacy and security of personal and protected health information in a manner that is consistent with our customer’s legal obligations. EBMS has developed a privacy and security compliance program for our personnel that takes into account HIPAA privacy and security standards and reasonable practices in the healthcare industry.

Our Security Procedures

EBMS understands that storing and transmitting data in a secure manner is essential. EBMS stores your personal and protected health information using industry standard physical, technical and administrative safeguards to secure data against foreseeable risks, such as unauthorized use, access, disclosure, destruction and modification. Certain information containing personal and protected health information that is displayed or received via Internet Web browser technology is transmitted in a secured environment using 128-bit SSL encryption.

Our commitment to you

  • We will safeguard, according to strict standards of security and confidentiality, any information shared with us. We will limit the collection and use of information to the minimum required to provide superior quality customer service.
  • We will permit only authorized employees, who are trained in the proper handling of personal information, to have access to that information. We use physical, electronic, procedural and computer access controls.
  • We will not share personal and protected health information for any purpose other than the administration and legal requirements of a group health plan.
  • We may provide to you, upon a written request and as required by law, a record of certain disclosures made by EBMS.
  • We will keep all personal and protected health information accurate to the best of our ability. You may write to EBMS requesting items of your personal information be changed if they are incorrect. EBMS will correct the inaccurate information if possible.

When We May Disclose Information

In order to effectively process claims, provide superior quality customer service and other services on behalf of our customers and their group health plan, it is necessary for EBMS to disclose your personal and protected health information. EBMS may make the following disclosures:

  • We may disclose personal and protected health information to third parties with or without your written authorization.
  • We may disclose personal and protected health information to business associates of your group health plan.
  • We may disclose personal and protected health information to service providers.
  • We may disclose personal and protected health information reasonably necessary to assist in detecting or preventing criminal activity, fraud, misrepresentation or nondisclosure in a health benefit or insurance transaction/function. We may disclose personal and protected health information to another person or entity in order to administer your group health plan or for purposes of allowing the other person or entity to administer a health benefit plan including, but not limited to, payment and health care operations.
  • We may disclose personal and protected health information to a medical care institution, a medical professional, or to an individual to whom the information pertains.
  • We may disclose personal and protected health information to an insurance regulatory authority, to an insurance commissioner, law enforcement or other governmental authority as required or permitted by law.
  • We may disclose personal and protected and health information to comply with any law or legal process to which we are subject, including a facially valid administrative or judicial order, search warrant, subpoena or lawful discovery request.
  • We may disclose personal and protected health information for the purpose of conducting an audit.
  • We may disclose personal and protected health information to a professional peer review organization for the purpose of reviewing the service or conduct of a medical care institution or a medical care professional.
  • We may disclose personal and protected health information to a person covered under a health benefit plan to provide information as to the status of a health benefit or insurance transaction/function.
  • We may disclose personal and protected health information to a person or entity engaged to provide services to enable EBMS to perform a service, health benefit or claim administration function.
  • We may disclose personal and protected health information to other non-affiliated third parties as permitted by law.
  • We may disclose, at a future time, personal and protected health information not presently disclosed, but only as permitted by law.

In certain circumstances EBMS may be required by law to obtain from you separate, written authorization in order to disclose personal and protected health information.

Revisions and Contact Information

EBMS reserves the right to modify this Privacy Policy. It may be revised from time to time as we add new features and services, as laws change, and as the healthcare industry and privacy and security practices evolve. We display a date in the bottom left corner of this Privacy Policy so that it will be easier for you to know if changes have been made. We hope this notice has been helpful in explaining our Privacy Policy. For additional information about EBMS commitment to privacy, please contact us at 1-800-777-3575 or at EBMS, Attention: Privacy Officer, P.O. Box 21367, Billings, MT 59104-1367.