HIPAA Compliance

Our commitment to protecting patient health information

As a medical billing and revenue cycle management partner to U.S. healthcare providers, Elevate Revenue Group ("ERG") handles protected health information (PHI) on behalf of our clients. We are committed to operating in alignment with the U.S. Health Insurance Portability and Accountability Act (HIPAA) and to protecting the confidentiality, integrity, and availability of the PHI entrusted to us.

Business Associate Agreements

ERG enters into a Business Associate Agreement (BAA) with each covered entity we serve, defining our responsibilities for safeguarding PHI in accordance with HIPAA's Privacy and Security Rules.

Safeguards we maintain

• Administrative: workforce HIPAA training, access controls based on least privilege, and documented policies and procedures.
• Physical & technical: secured workstations, encrypted transmission of data, access logging, and controlled systems — PHI is never stored on personal devices or removable media.
• Confidentiality: all team members are bound by strict confidentiality obligations; sharing or copying PHI outside approved systems is prohibited.

Breach response

We maintain procedures to detect, respond to, and report any suspected security incident or breach involving PHI, and to notify affected covered entities in accordance with HIPAA's breach-notification requirements.

This website

The ergmd.com website is informational and is not intended to receive PHI. Please do not submit patient information through our contact or application forms. See our Privacy Policy for how website submissions are handled.

Contact

For questions about our HIPAA practices or to request a BAA, email info@ergmd.com or call 332-239-5556.

"HIPAA compliant" describes our operational safeguards and is not a government certification (no such certification exists). This page is a general statement and should be reviewed by qualified compliance/legal counsel before being relied upon.