Last Updated: May 14, 2025
Health Quiz, owned and operated by BEPO LLC, is committed to maintaining the privacy and security of Protected Health Information (PHI) in full compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations.
As creators, owners, and hosts of quiz funnels for healthcare practitioners, we recognize our critical role in maintaining the confidentiality and security of sensitive health information. This HIPAA Compliance Statement outlines our commitment to protecting PHI and the measures we take to ensure compliance with HIPAA regulations.
As creators, owners, and hosts of quiz funnels for healthcare practitioners, we recognize our responsibility to protect sensitive health information. Health Quiz is designed with privacy and security as foundational principles, implementing comprehensive measures to maintain HIPAA compliance throughout our operations.
When providing services to healthcare practitioners who are Covered Entities under HIPAA, Health Quiz operates as a Business Associate. We enter into Business Associate Agreements (BAAs) with such healthcare practitioners as required by HIPAA.
As a Business Associate, we:
➤ Limit our use and disclosure of PHI to the purposes specified in our BAAs
➤ Implement appropriate safeguards to prevent unauthorized use or disclosure of PHI
➤ Report any unauthorized uses or disclosures of PHI
➤ Ensure our subcontractors agree to the same restrictions and conditions
➤ Make PHI available as required for individuals' rights to access, amend, and receive an accounting of disclosures
➤ Return or destroy PHI at the termination of our relationship when feasible
We implement robust technical safeguards including:
➤ Encryption of PHI at rest and in transit
➤ Unique user identification for tracking system activity
➤ Automatic logoff procedures
➤ Authentication protocols to verify users accessing PHI
➤ Secure transmission of electronic PHI
➤ Audit controls to record and examine activity
➤ Integrity controls to ensure PHI is not improperly altered or destroyed
➤ Network security measures including firewalls and intrusion detection
Our administrative safeguards include:
➤ Designated Privacy and Security Officers responsible for developing and implementing our policies and procedures
➤ Regular risk analyses and management procedures
➤ Workforce security measures including authorization and supervision
➤ Information access management controls
➤ Security awareness and training for staffSecurity incident procedures
➤ Contingency planning for emergencies
➤ Regular evaluations of security measures
We maintain physical safeguards including:
➤ Facility access controls
➤ Workstation use and security policies
➤ Device and media controls
In the unlikely event of a breach involving PHI, Health Quiz has procedures in place to:
➤ Identify and investigate potential breaches
➤ Assess the risk of harm to affected individuals
➤ Provide timely notification to affected healthcare practitioners
➤ Support healthcare practitioners in their obligations to notify affected individuals, the Department of Health and Human Services, and, when required, the media
All Health Quiz staff receive regular training on:
➤ HIPAA regulations and requirements
➤ Our security policies and procedures
➤ Identification and reporting of security incidents
➤ Best practices for maintaining confidentiality, integrity, and availability of PHI
We maintain an active compliance program that includes:
➤ Regular reviews of our policies and procedures
➤ Periodic security assessments
➤ Updates to safeguards in response to changes in technology and threats
➤ Documentation of compliance efforts
For questions or concerns regarding our HIPAA compliance:
BEPO LLC
30 N Gould Street, Sheridan, Wyoming
+1 (307) 414-8115
This HIPAA Compliance Statement demonstrates our commitment to protecting the privacy and security of health information. Healthcare practitioners can rely on Health Quiz to provide compliant solutions for their quiz funnel needs.