Privacy Policy

Last Updated: April 29, 2026

Primary Medical Services is committed to protecting your privacy and ensuring you have a positive experience on our website and when using our services.

Contents

Information We Collect

Protected Health Information (PHI)

When you use our services or visit our office, we collect Protected Health Information (PHI) including:

  • Medical history and diagnoses
  • Treatment records and prescriptions
  • Laboratory and imaging results
  • Vital signs and health measurements
  • Insurance information
  • Billing and payment information
  • Emergency contact information
  • Demographic information

Website Information

When you visit our website, we automatically collect:

  • IP address and device information
  • Browser type and operating system
  • Pages visited and time spent on the site
  • Referring URL and links clicked
  • Search queries

Contact Form Information

If you contact us through our website forms, we collect the name, email, phone number, and message content you provide.

How We Use Your Information

We use your information for the following purposes:

  • Treatment: To provide you with medical care, including diagnosis, treatment planning, and medication management
  • Payment: To process insurance claims, billing, and payment transactions
  • Healthcare Operations: To manage appointments, maintain medical records, and ensure continuity of care
  • Communication: To contact you about appointments, test results, prescription refills, and important health information
  • Website Improvements: To analyze how our website is used and improve user experience
  • Legal Compliance: To comply with state and federal healthcare laws and regulations
  • Patient Education: To send health information and wellness resources relevant to your care
  • Fraud Prevention: To protect against fraudulent activity and unauthorized access

We do not sell your personal health information to third parties for marketing purposes.

HIPAA Compliance

Primary Medical Services complies with all requirements of the Health Insurance Portability and Accountability Act (HIPAA) and its implementing Privacy, Security, and Breach Notification Rules. Our practice is committed to:

  • Privacy: Protecting your PHI from unauthorized use and disclosure
  • Security: Implementing safeguards to protect your information from loss, theft, or misuse
  • Notification: Informing you in the event of any breach of unsecured PHI
  • Patient Rights: Providing you with rights regarding access, amendment, and accounting of disclosures of your PHI
  • Minimum Necessary: Using and disclosing only the minimum amount of PHI necessary to accomplish the intended purpose
  • Business Associate Agreements: Requiring all vendors and third parties who access your PHI to sign Business Associate Agreements (BAAs)

HIPAA Authorization: We will not use or disclose your PHI for purposes other than treatment, payment, healthcare operations, or as required by law without first obtaining your written authorization.

Your Patient Rights

Under HIPAA, you have the following rights regarding your Protected Health Information:

Right to Access

You have the right to inspect, review, and obtain a copy of your medical records. We will provide this within 30 days of your request and may charge a reasonable copying and postage fee.

Right to Amendment

You have the right to request amendments to your medical records if you believe information is inaccurate or incomplete. We will review your request and respond within 60 days.

Right to Accounting of Disclosures

You have the right to receive an accounting of disclosures showing who we have shared your information with, when it was shared, and for what purpose. One free accounting per year is provided.

Right to Request Restrictions

You have the right to request restrictions on how we use or disclose your PHI. We will consider your request but are not obligated to agree to all restrictions.

Right to Confidential Communication

You have the right to request that we communicate with you about your health information by alternative methods or locations (e.g., email instead of phone, or at a work address instead of home).

Right to Breach Notification

You have the right to be notified immediately if there is a breach of your unsecured PHI that could compromise your privacy or security.

Right to Receive a Paper Copy

You have the right to receive a paper copy of this privacy notice at any time, even if you have agreed to receive it electronically.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your experience. Cookies are small text files stored on your device that help us:

  • Remember your preferences
  • Understand how you use our website
  • Improve website functionality
  • Enhance security

Types of Cookies

  • Essential Cookies: Required for website functionality
  • Analytics Cookies: Help us understand website usage
  • Preference Cookies: Remember your choices and settings

Managing Cookies

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect website functionality. Note that cookies used on our website do not contain PHI.

Third-Party Services

We work with third-party service providers to deliver our services. All third-party providers who access PHI have signed Business Associate Agreements (BAAs) committing them to HIPAA compliance.

Athenahealth Patient Portal

We use Athenahealth, a HIPAA-certified patient portal service, to allow you to securely:

  • Schedule appointments
  • View lab results and test reports
  • Request prescription refills
  • Message your care team
  • Manage your health information

Athenahealth maintains separate privacy and security policies. Your data is encrypted in transit and at rest. For more information about Athenahealth's privacy practices, please visit their website or contact our office.

Google reCAPTCHA

We use Google reCAPTCHA to protect our website from bots and automated abuse. reCAPTCHA analyzes user behavior to determine if you are human. Google's privacy policy governs the data collected by reCAPTCHA. No PHI is shared with Google reCAPTCHA.

Google Analytics

We use Google Analytics to understand how visitors use our website, including which pages are visited, how long visitors spend on pages, and how visitors arrive at our site. Google Analytics uses cookies and does not capture PHI. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on. For information about Google's privacy practices, please visit their privacy policy.

Data Security

We implement comprehensive safeguards to protect your information from unauthorized access, alteration, disclosure, or destruction. Our security measures include:

Technical Safeguards

  • Encryption of data in transit and at rest using industry-standard protocols (TLS/SSL)
  • Secure user authentication and access controls
  • Firewalls and intrusion detection systems
  • Regular security updates and patches
  • Secure backup procedures

Administrative Safeguards

  • Employee privacy and security training
  • Policies and procedures for information access and use
  • Risk assessments and vulnerability testing
  • Incident response and breach notification procedures
  • Business Associate Agreements with all vendors

Physical Safeguards

  • Secure facility access controls
  • Locked storage for paper records
  • Secure document destruction procedures
  • Video surveillance and alarm systems

No Guarantee: While we implement reasonable security measures, no system is completely secure. We cannot guarantee absolute security of your information. If you have concerns about a potential security breach, please contact us immediately at (352) 789-5047.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this policy and posting the revised policy on our website. Your continued use of our services constitutes your acceptance of the updated privacy policy.

Contact Us

If you have questions about this privacy policy, wish to exercise your patient rights, or have concerns about how we handle your information, please contact us:

Primary Medical Services
1500 SE Magnolia Ext., Suite 204
Ocala, FL 34471

Phone: (352) 789-5047

Email: info@primarydr.net

Office Hours:
Monday: 8:00 AM – 7:00 PM
Tuesday–Wednesday: 8:00 AM – 5:00 PM
Thursday: 8:00 AM – 7:00 PM
Friday: 8:00 AM – 12:00 PM
Saturday–Sunday: Closed

HIPAA Complaints

If you believe your privacy rights have been violated, you have the right to file a complaint with Primary Medical Services and with the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR).

HHS Office for Civil Rights (OCR):
U.S. Department of Health and Human Services
Office for Civil Rights
https://www.hhs.gov/hipaa/filing-a-complaint/index.html
Phone: 1-800-368-1019

You will not be retaliated against for filing a complaint or exercising your privacy rights.

Privacy Notice Acknowledgment

By accessing our website or using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our privacy practices, please do not use our services.