Effective Date: May 1, 2026 · Operated by Manavjeet Sidhu, MD, A Professional Corporation
THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
NoteForWork.com, operated by Manavjeet Sidhu, MD, A Professional Corporation (referred to as "we," "us," or "our practice"), is committed to protecting the privacy of your Protected Health Information (PHI). This Notice explains your rights and our obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the HITECH Act.
PHI is information that identifies you and relates to your past, present, or future physical or mental health or condition, the provision of healthcare to you, or the past, present, or future payment for the provision of healthcare.
Treatment: We use your PHI to provide telehealth services. This includes sharing information with the reviewing physician to evaluate your intake form and issue documentation.
Payment: We may use and disclose your PHI to process payment for services, including sharing information with our payment processor (Stripe, Inc.) as necessary to complete your transaction.
Healthcare Operations: We may use your PHI for internal quality assurance, compliance, training, and operational purposes. This information is used only as necessary to maintain the quality and safety of our services.
As Required by Law: We will disclose your PHI when required to do so by federal, state, or local law.
Public Health Activities: We may disclose your PHI to public health authorities for activities such as disease surveillance, reporting, and public health investigations as required by law.
Business Associates: We share PHI with vendors and service providers (called Business Associates) who assist us in operating our platform, including our technology platform provider and cloud infrastructure provider. All Business Associates are required to sign a Business Associate Agreement (BAA) and are bound to protect your PHI under HIPAA.
Other Uses and Disclosures Requiring Your Authorization: For any use or disclosure of your PHI not described in this Notice, we will obtain your written authorization. You may revoke any authorization in writing at any time.
Right to Access: You have the right to inspect and obtain a copy of your PHI that we maintain. To request access, contact us at ceo@noteforwork.com. We will respond within 30 days.
Right to Amend: You have the right to request that we amend PHI you believe is incorrect or incomplete. We may deny your request in certain circumstances.
Right to an Accounting of Disclosures: You have the right to request a list of disclosures we have made of your PHI, other than disclosures for treatment, payment, or healthcare operations.
Right to Request Restrictions: You have the right to request restrictions on how we use or disclose your PHI. We are not required to agree to your request, but if we do, we will comply with it.
Right to Request Confidential Communications: You have the right to request that we communicate with you by alternative means or at alternative locations.
Right to a Paper Copy of This Notice: You have the right to obtain a paper copy of this Notice at any time by contacting us.
Right to File a Complaint: If you believe your privacy rights have been violated, you may file a complaint with us or with the U.S. Department of Health and Human Services Office for Civil Rights at www.hhs.gov/ocr/privacy. We will not retaliate against you for filing a complaint.
To exercise any of the rights described above, contact us at:
NoteForWork.com Privacy Officer
Email: ceo@noteforwork.com
Operated by: Manavjeet Sidhu, MD, A Professional Corporation
We maintain administrative, technical, and physical safeguards to protect your PHI. Our platform is built on HIPAA-eligible cloud infrastructure and all data is encrypted in transit and at rest. Access to PHI is limited to authorized personnel and our contracted Business Associates.
We retain PHI in accordance with applicable California and federal law. Medical records are generally retained for a minimum of 10 years from the date of service for adult patients.
We reserve the right to change the terms of this Notice and make the new Notice effective for all PHI we maintain. If we make a material change to this Notice, we will post the updated Notice on our website. The effective date will be updated accordingly.
NoteForWork.com · ceo@noteforwork.com · Effective May 1, 2026