Treatspace is an award-winning, multi-faceted healthcare platform that enables high-performance referral management, powers online patient engagement, and facilitates clinical collaboration. Since it’s inception in 2012, Treatspace has been disrupting and improving critical healthcare processes that no longer work in a rapidly changing regulatory and reimbursement landscape.
Backed by a data-driven team and principal investors, their innovations in interoperability, analytic measurement, and transfer of clinical data continually succeeds in areas where existing Electronic Health Record (EHR) and other applications cannot. Most notably, Treatspace changes the way primary care, specialty care, and hospital-based systems collaborate in closed-loop referral management and care coordination.
Their unique selling and business model corrects erratic and poorly managed physician referral patterns and processes. Treatspace isn’t just an application, it’s a team of experts that work together to rally and build your managed network of the best performing specialist referral partners. Based in Pittsburgh PA, Treatspace has been recognized nationally for their unprecedented pursuit to eliminate paper referrals, integrate primary and specialty care, and change the future of referral relationships.
5877 Commerce Street, Suite 118
Pittsburgh, PA 15206
The Treatspace Team
Rick has been nationally recognized as a successful entrepreneur in healthcare, design, and technology. Beginning in 2002, his design firm specialized in healthcare and drove digital marketing efforts for numerous national medical brands. The Small Business Association named him Young Entrepreneur of the Year in 2006. His niche agency was consistently ranked amongst Pittsburgh’s top advertising and web design firms. In 2009, Rick launched Nerve Medical, a technology agency specializing in medical startups. Treatspace spun out of Nerve Medical in 2012 with Rick as its CEO.
Vice President Business Development
Caren joins Treatspace after experiencing years of success in the many facets of the healthcare industry including large healthcare systems, hospitals, pharmaceutical companies and providers. As a member of the senior management team for McKesson Automation Inc., she held Vice President positions in multiple areas and was the Executive Sponsor for Cross-Business unit innovation and sales within McKesson as a global company. As the Vice President of Product Management she was responsible for eight launches that increased revenue from $50 million to $200 million and as VP of Corporate Accounts she partnered with HCA Inc. (Hospital Corporation of America) and deployed systems in over 175 hospitals.
Lead Developer & Co-Founder
Inspired by his entrepreneurial father Vince Liu, Alex joined Treatspace in February 2012 while finishing his university degree. He is a brilliant web developer, self-taught in most major programming languages. He was a major contributor to Treatspace’s top-place finish at Startup Weekend Pittsburgh in 2012. Alex is also an expert hardware developer, working for Verilog and the MINT Project at the National Robotics Engineering Center. Alex earned his BS in Electrical and Computer Engineering from Carnegie Mellon University.
Jamie’s user-centered enthusiasm and passion for building innovative software makes her a perfect fit for the Treatspace team. Her software development knowledge and experience spans both the financial and healthcare industries. A Pittsburgh native, Jamie is passionate about creating software and being a pioneer in emerging health technologies. She is a graduate of the University of Pittsburgh with a Bachelors of Science in Computer Science and Bachelor of Arts in Japanese.
Ashley Latta joined the Treatspace team as a Project Manager in July 2014 and became the Manager of Customer Success in October 2015. Previously, she worked as a Consultant in the healthcare, insurance, and information technology sectors with project management experience in process re-engineering and information system implementation. Ashley received a Master of Science in Health Care Policy and Management from Carnegie Mellon University's Heinz College in May 2012.
Health Network Representative
Bob joined Treatspace in 2014 as the Health Network Representative. Bob has an extensive 15 year Sales and Management background, working in the Finance, Automotive, Broadcasting and Educational sectors before joining Healthcare with Treatspace. Bob attended both Penn State University and Indiana University of Pennsylvania before completing his diploma in Broadcast Communications from the Connecticut School of Broadcasting. Bob has been a Greater Pittsburgh Area resident all his life and still lives locally with his wife and four children. Bob is active in his community and is also an avid local sports fan.
Content Marketing Specialist
Christian landed at Treatspace in August 2015 after 5 years of B2B marketing experience at several other Pittsburgh startup companies. He's an inbound marketing professional that specializes in content creation, lead generation, and website strategy. Christian is a graduate of the University of Pittsburgh, College of Business Administration with a BSBA in Marketing. When he's not developing content for Treatspace, he's playing guitar, listening to vinyl, and obsessing over the next best place to eat.
Content Marketing Specialist
Megan Steinmetz joined Treatspace in May 2015 as a Business Management Intern. She continued to work part-time at Treatspace while she finished her Master's degree in Health Care Policy and Management at Carnegie Mellon University. In May 2016, Megan completed her Master's and joined Treatspace's team full-time as a Project Manager. Megan is excited to begin her career with Treatspace's innovative and creative team.
Naveen joined Treatspace in July 2016 as a Data Analytics Consultant after his Masters in Health Care Policy and Management from Carnegie Mellon University. He has over six years of international professional experience in managing cross-functional projects in health care, data analytics, product management and process improvement. He enjoys conceptualizing and implementing innovative actionable solutions to business problems by bringing people, process, and technology together. When he is not solving problems at work, he loves to volunteer, cook, watch movies and hang out with his friends.
We make history in health information technology (HIT) and so can you!
Treatspace constantly seeks curious, creative, and intelligent innovators.
We are especially interested in other technologists who are passionate about the medical industry and healthcare. Treatspace is committed to a culture of continuous learning, productive collegiality, and professional advancement. We pride ourselves in embracing diversity in all respects.
Treatspace is a quirky startup that is changing the face of healthcare. We are looking to design products and platforms that will challenge the status quo and empower physicians and patients.
We carefully consider all resumes for job openings. Please review our current opportunities to find a good fit for you. We also encourage you to visit our job board often for updates on new job openings.
Treatspace also offers winter, spring, summer, and fall internships in software development, design, and business development that provide an introduction to working for a fast-paced startup.
An internship at Treatspace involves a combination of general day-to-day tasks, involvement in developing key products and concepts, and opportunities to attend industry events in Pittsburgh that feature members of the tech and business communities.
Working at Treatspace is extremely challenging and highly rewarding. We invest time, money, and energy in training interns to be potential employees and seek smart, talented, and self-motivated people to join our roster.
[VIEW OUR OPEN OPPORTUNITIES]
The Treatspace Fellowship Program offers a one-of-a-kind opportunity for recent college graduates.
Our fellows participate in a unique year-long immersion process and obtain the skills and techniques necessary for success in the real world.
Fellows will use these skills and their creative talents to develop powerful, innovative, and revolutionary prototypes, technologies and systems for medical offices around the country.
With strong connections to the medical and software industries, the program is a springboard into future opportunities in medical multimedia, software, creative writing, and business fields.
As a Treatspace Fellow, you will:
Receive intensive training in Treatspace technology production processes
Join a creative and innovative team in content development, technology, or marketing
Participate in the growth and development of a dynamic young company in the heart of Pittsburgh, Pennsylvania
Becoming a Fellow
Providers and patients demand solutions to real-world problems in diverse areas in healthcare, from finance and statistics to mentoring, medical trials, new software tools, project management, business leadership, and many others. For this reason, Treatspace seeks out high-potential developers, designers, and writers, as well as exceptional business talent, to take part in the Treatspace Fellows Program for recent college graduates.
We recruit on college campuses, find exceptional students with high potential, and train them to become innovators. Fellows undertake an intensive orientation in the Treatspace development process and immediately begin honing their skills in their chosen department, such as content development, multimedia design, technology, or marketing.
Acceptance to this program is highly competitive. We seek talented individuals with:
Demonstrated creativity and academic excellence
Strong writing, design, and analytical abilities
A thirst for knowledge in a broad array of content areas ranging from cytology to social media
What Does it Take?
Qualifications vary by position, but generally speaking we seek talented individuals with demonstrated creativity, a passion for learning, strong analytical abilities, interest in training for a broad array of content areas ranging from cytology to social media, and “most importantly” a willingness to roll up their sleeves and make a difference in a collegial team environment. Candidates should be self-motivated and must want to work in a fast-paced, high-tech environment. For additional information please contact us at email@example.com.
Positions for the 2017 Treatspace Fellowship Program are available in:
Students interested in more than one of these fields have the option to select “rotational” on their applications. During the course of the 6-month period, a rotational Fellow spends time in all departments.
Content Fellows absorb everything they can about a diverse array of topics in medicine and then write instructional material for providers and patients.
Strong writing skills
Analytic and spatial abilities
Intellectual curiosity, creativity, flexibility
Ability to work in a fast-paced, collaborative, deadline-based environment
Excellent communication skills and professional demeanor
Proven record of academic achievement
Marketing Fellows are responsible for framing Treatspace’s image and value to clients through advertising, sales support, and public relations.
Strong writing ability
Excellent verbal and written communication skills
Demonstrated time-management and organization skills
Ability to think strategically to develop marketing plans
Proven record of academic achievement
Other beneficial qualifications:
Ability to quickly solve technical problems independently or in small teams
Ability to communicate effectively with other team members and with clients
Experience in Ajax, Ruby on Rails, Java or an equivalent development language
Proven record of academic achievement
How to Apply
Apply for our fellowship below by providing the following within one PDF (with multiple pages):
A one-page resume and cover letter that tells us why you are qualified for this position and tells us what your provider should change to make her or his practice website better (please be thorough and outline your ideas in a clean, scan-able format)
A paragraph detailing the best medical practice website you have seen in the last 12 months
A paragraph suggesting an innovative design concept that we should consider when working with our medical practices
A paragraph-length anecdote discussing your interest/passion for healthcare
Explain your reasons for wanting this fellowship and state your availability. Attach your unofficial transcript, portfolio/writing samples, and URL submissions (if applicable)
Send your PDF to firstname.lastname@example.org.
Imagine care coordination that is simple, dependable and efficient. By moving clinical relationships online with Treatspace, health care providers, practices, and hospitals are able to:
- Communicate clearly with patients
- Better manage the referral process
- Foster straight-forward connections with colleagues next door and around the globe
These systematic improvements to healthcare delivery save money, time, and lives while helping meet standards for:
- HIPAA compliance
- ACA-related incentive programs
- Patient-Centered Medical Home (PCMH) Recognition
- Accountable Care Organization (ACO) Accreditation
Treatspace offers three Software as a Service (SaaS)-based products designed to fully integrate with any electronic medical record (EMR) system:
Allows medical practices to initiate and send referrals quickly and reliably through a secure, closed-loop management system that works with patients and practices regardless of EMR and organizational boundaries.âÂÂ
Enables medical practices to develop digital communities that engage current patients and attract new ones.
Facilitates peer to peer collaboration in the medical community via secure, intuitive tools.
The healthcare community is facing an expanding patient population living longer lives, but also plagued with multiple health issues.
- The costs of care are rising
- Physician shortages are resulting in larger workloads
- Care transitions are growing in complexity
As a result, the Treatspace product suite has the potential to make a massive impact on Health IT because it reliably and efficiently solves the care coordination problem created by this scenario.
In helping the healthcare community better manage complex cases and care transition, Treatspace is positioned to help end avoidable complications and readmissions, errors that are directly responsible for over $45 billion in unnecessary healthcare spending each year.
- March 25, 2012 – Treatspace takes top prize at Startup Weekend
- March 28, 2012 – Treatspace inducted into Project Olympus incubator at Carnegie Mellon University
- June 19, 2012 – First customer sale to Everett & Hurite Ophthalmic Association for our Patient Network product
- June 20, 2012 – Treatspace, Inc. founded as a Delaware Corporation
- June 28, 2012 – Treatspace awarded $25,000 in funding from Innovation Works, Inc. and joins the prestigious AlphaLab accelerator program
- December 31, 2014 – The Pittsburgh Life Sciences Greenhouse provides economic development funding to Treatspace
- January 27, 2014 – Innovation Works, Inc. provides economic development funding to Treatspace
- June 24, 2014 – The Urban Redevelopment Authority of Pittsburgh provided economic development funding to Treatspace
- July 13, 2014 – Treatspace won Running with the Bulls investment competition
- November 18, 2014 – Treatspace wins the Global Action Challenge and a $1 Million Innovation Investment Award
- December 15, 2014 – Treatspace graduates from Carnegie Mellon University’s Project Olympus accelerator and moves into its current office space
- February 9, 2015 – The Referral Network is launched with Genesis Medical Associates and over 50 specialty practices and 2 hospitals / IDNs
- April 20, 2015 – The Clinical Network product is launched. The Skull Base Congress begins using the product for global clinical collaboration
- June 16, 2015 – Treatspace won $10,000 in the UpPrize Social Innovation Challenge sponsored by the Forbes Funds and BNY Mellon
Last modified: March 23, 2015
There are many differerent ways Treatspace Services can be used. Further, we provide our Services to both healthcare professionals and patients of healthcare professionals. Treatspace users gain access to Treatspace Services based on their level of access governed by their subscription level. As you use our Services, we want you to be clear how we’re using information and the ways in which you can protect your privacy.
- What information we collect and why we collect it
- How we use that information
- The choices we offer, including how to access and update information
We’ve tried to keep it as simple as possible, but if you’re not familar with terms like cookies, IP addresses, pixel tags and browsers, then read about these key terms first. Your privacy matters to Treatspace and if you have any questions, please email email@example.com.
II. Information We Collect
We collect information to enable our platform to provide the Services offered to our subscribers and to understand how users are interacting with our Services so that we can continuously improve our platform.
We collect information in several ways:
Information you give us: For example, some of our Services require you to sign up for a Treatspace Account. When you do, we’ll ask for personal information, like your name, email and birthday in order to complete your account activation. We also offer products that work best with positive verification of your identity. These products currently require a government issued photo identification to confirm your identity. In the future, we may automate this further by using an automated identity verification service. For certain premium Services, we may offer the ability to pay for these Services using a credit card in which case we would collect additional information such as phone number, billing address and credit card data. IN ALL CASES, you are in control of the information you choose to provide Treatspace.
Information Provided to Us by Your Healthcare Provider:
Healthcare providers contract with Treatspace for referral management services and may choose to provide Treatspace with patient demographic data to facilitate referrals from one healthcare provider to another. Treatspace does not disclose your personal demographic or clinical data to any outside parties other than your healthcare providers – for the sole purpose to transitioning your care from one setting/provider to another. If you do not wish to have your referrals sent using Treatspace, you should notify your healthcare provider or contact Treatspace directly at firstname.lastname@example.org.
Information we get from your use of our services: We collect information about the products that you use and how you use them, like when you visit particular website pages, or when you interact with website content. This information includes:
Device information – We collect device-specific information (such as your hardware model, operating system version and unique device identifiers).
Log information – When you use our products or view content provided by Treatspace, we automatically collect and store certain information in server logs. This includes:
- details of how you used our service, such as your search queries
- Internet protocol address
- device event information such as crashes, system activity, hardware settings, browser type, browser language, the date and time of your request and referral URL
- cookies that may uniquely identify your browser or your Treatspace Account
Location information – When you use Treatspace services, we may collect and process information about your actual location. We use various technologies to determine location, including IP address.
Local storage – We may collect and store information (including personal information) locally on your device using mechanisms such as browser web storage (including HTML5) and application data caches.
Web Beacons – Treatspace uses Web beacons alone or in conjunction with cookies to compile information about customers’ and visitors’ usage of the websites and interaction with emails from Treatspace. Web beacons are clear electronic images that can recognize certain types of information on your computer, such as cookies, when you viewed a particular website tied to the Web beacon, and a description of a website tied to the Web beacon. Treatspace uses Web beacons to operate and improve the website and email communications.
III. How We Use Information We Collect
We use the information we collect from all of our Services to provide, maintain, protect and improve them, to develop new ones, and to protect Treatspace and our users.
We may use the name you provide across certain Services we offer that require a Treatspace Account. Examples include Kudos, Treatmail™, Taking Patients and Blogs (commenting feature).
As a healthcare provider, if you have a licensed Treatspace profile, we may display all of your submitted DoctorFacts™ to include your Profile name, Profile photo and other data available on your Curriculum Vitae (CV). You may choose to edit your Treatspace Profile at any time in order to add, remove or update your information.
When you contact Treatspace, we keep a record of your communication to help solve any issues you might be facing. We may use your email address to inform you about our services, such as letting you know about upcoming changes or improvements.
We use information collected from cookies and other technologies, like pixel tags, to improve your user experience and the overall quality of our services. We will not associate a cookie or anonymous identifier with sensitive categories, such as those based on race, religion, sexual orientation or health.
IV. Transparency and Account Settings
People have different privacy concerns. Our goal is to be clear about what information we collect, what information we share and how we communicate with you so that you can make meaningful choices about your privacy. For example, you can:
Visit your Treatspace “Settings” page to control how we communicate with you, if your account is linked with your Facebook or Google account and any of your personal information.
You can also opt out of any Treatspace Services at any time. All communications we send to you will contain an “Unsubscribe” link which you can click on at any time. This will take you to your Treatspace “settings” page where you can change your email settings. If you are not logged in to Treatspace, you will have to log in to make these changes.
If you want to permanently deactive your account, please send email to email@example.com with your request.
You may also set your browser to block all cookies, including cookies associated with our services, or to indicate when a cookie is being set by us. However, it’s important to remember that some of our services may not function properly if your cookies are disabled. For example, we may not remember your language preference.
V. Information You Share
Many of our services let you share information with others. Remember that when you share information publicly, it may be indexable by search engines, including Treatspace. Our platform services allow you to send a healthcare provider “Kudos” which requires your name and email address. If you do not wish to have your name indexed by a search engine, you should not give “Kudos” to a healthcare provider. Any Treatspace service which allows you to share information about your health will not be indexed by any search engine or made public by Treatspace. This information will be sent securly to your designated healthcare provider and will be encrypted during transit and when not being viewed by your chosen provider.
VI. Accessing and Updating Your Personal Information
Whenever you use our services, we aim to provide you with access to your personal information. If that information is wrong, we strive to give you ways to update it quickly or to delete it – unless we have to keep that information for legitimate business or legal purposes. When updating your personal information, we may ask you to verify your identity and/or email address before we can act on your request.
We may reject requests that are unreasonably repetitive, require disproportionate technical effort (for example, developing a new system or fundamentally changing an existing practice), risk the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup systems).
Where we can provide information access and correction, we will do so for free, except where it would require a disproportionate effort. We aim to maintain our services in a manner that protects information from accidental or malicious destruction. Because of this, after you delete information from our services, we may not immediately delete residual copies from our encrypted active servers and may not remove information from our encrypted backup systems.
VII. Information We Share
We do not share personal information with companies, organizations and individuals outside of Treatspace unless one of the following circumstances applies:
With your consent: We will share personal information with companies, organizations or individuals outside of Treatspace when we have your consent to do so. We require opt-in consent for the sharing of any sensitive personal information.
For Permitted or Required by Law Activities: There are situations where we may use and/or disclose your health information without first obtaining your written authorization for purposes other than for treatment or healthcare operations. Except for the specific situations where the law requires us to use and disclose information (such as reports of births to the health department or reports of abuse or neglect to social services), we have listed all these permitted uses and disclosures in this section.
For Public Health Activities: We may use or disclose health information to a public health authority that is authorized by law to collect or receive information in order to report, among other things, communicable diseases and child abuse, or the F.D.A to report medical device or product related events. In certain limited situations, we may also disclose health information to notify a person exposed to a communicable disease.
For Health Oversight Activities: We may disclose health information to a health oversight agency that includes, among others, an agency of the federal or state government that is authorized by law to monitor the healthcare system.
For Law Enforcement Activities: We may disclose limited health information in response to a law enforcement official’s request for information to identify or locate a victim, a suspect, a fugitive, a material witness or a missing person (including individuals who have died) or for reporting a crime that has occurred on our premises or that may have caused a need for emergency services.
For Judicial and Administrative Proceedings: We may disclose health information in response to a subpoena or order of a court or administrative tribunal.
To Coroners, Medical Examiners, and Funeral Directors: We may release health information to a coroner or medical examiner to identify a deceased person or to determine the cause of death.
For Purposes of Organ Donation: We may disclose health information to an organ procurement organization or other facility that participates in the procurement, banking or transplantation of organs or tissues.
For Purposes of Research: We may conduct and/or particiate in medical, social, psychological and other types of research. Most research projects are subject to a special approval process to evaluate the proposed research project and its use of health information before we use or disclose health information. In certain circumstances, however, we may disclose health information to people preparing to conduct a research project to help them determine whether a research project can be carried out or will be useful, so long as the health information they review does not leave our premises.
To Avoid Harm to a Person or for Public Safety: We may use and disclose health information if we believe that the disclosure is necessary to prevent or lessen a serious threat or harm to the public or the health or safety of another person.
For Specialized Government Functions: We may use and disclose health information of certain military individuals, for specific governmental security needs, or as needed by correctional institutions.
For Workers’ Compensation Purposes: We may disclose your health information to comply with the workers’ compensation laws or other similar programs.
For Appointment Reminders and to Inform You of Health Related Products or Services: We may use or disclose your health information to contact you for medical appointments or other scheduled services, or to provide you with information about treament alternatives or other health-related products and services.
All Other Uses and Disclosures Require Your Prior Written Authorization.
For situations not generally described in our Notice, we will ask for your written authorization before we use or disclose your health information. You may revoke that authorization, in writing, at any time to stop future disclosures of your information. Information previously disclosed, however, will not be requested to be returned nor will your revocation affect any action that we have already taken. In addition, if we collected the information in connection with a research study, we are permitted to use and disclose that information to the extent it is necessary to protect the integrity of the research study.
VIII. Information Security
We work hard to protect Treatspace and our users from unauthorized access to or unauthorized alteration, disclosure or destruction of information we hold. In particular:
We encrypt many of our services using SSL and at-rest encryption technology. We review our information collection, storage and processing practices, including physical security measures, to guard against unauthorized access to systems. We restrict access to personal information to Treatspace employees, contractors and agents who need to know that information in order to process it for us, and who are subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.
X. Compliance and Cooperation With Regulatory Authorities
XI. Information Regarding Children
Treatspace and its members agree to comply with the requirements of COPPA (Children’s Online Privacy Protection Act), which severely restricts what information can be collected from children under the age of 13. Children under the age of 13 in the United States are prohibited from using the site. The site is not directed at children and Treatspace does not knowingly collect any information from individuals under the age of 13. We will use that information only to respond directly to that child (or a parent or legal guardian) to inform him or her that he or she cannot use the services and subsequently we will delete that information from our own servers.
Last modified: March 23, 2015
Treatspace takes security seriously and uses best-in-practice industry standards, proprietary security, and encryption technologies to protect you. We also have policies and protocols in place to ensure the security of your data, our systems, and your service.
All users of the system have a login / password that limits access to only their specific user data or organizational-level data. All data submitted on the website is sent / received using Secure Socket Layer (SSL) technology to connect to the Treatspace servers. Specifically, upon submission of the form data, Transmit Layer Security (TLS) using an Advanced Encryption Standard (AES) connection is used to transmit the data to Treatspace servers. When the data arrives, the user sending the data is authenticated to ensure they are authorized to submit the data based on their login credentials which are granted by Treatspace when the account is established. All data at rest is encrypted. All access to data is logged. All data is backed-up and encrypted on a regular basis.
To protect any data you store on our servers, we also regularly monitor our system for possible vulnerabilities and attacks. However, we cannot ensure or warrant the security of any information that you transmit to us due to the internet not being 100% secure despite the physical, technical, or managerial safeguards that Treatspace has put into practice. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breaching of our security systems. It is your responsibility to protect the security of your login information. Please note that emails, instant messaging, and similar means of communication with other Members are not encrypted, and we strongly advise you not to communicate any confidential information through these means.
Treatspace works with industry groups to ensure that its products and services meet or exceed industry standards with respect to the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"). Treatspace’s services are specifically designed to include features that help our customers comply with HIPAA. Treatspace uses a relational database that employs a secure login process requiring a username and password. Treatspace programmers work with material which may occasionally contain ePHI. All aforementioned programmers go through a clearance process and are required to have unique usernames and passwords when working with the server. When a user adds or modifies data within the database, a record is made that includes which data were changed, the user ID, and the date and time the changes were made. This establishes an audit trail that can be examined by authorized system administrators.
HIPAA requires health care providers to enter into "business associate" contracts with certain businesses to which they disclose patient health information. These business associate contracts generally require the recipients of such information to use appropriate safeguards to protect the patient health information they receive. To perform certain service and support functions, Treatspace personnel may need access to patient health information maintained by its customers. As a result, Treatspace may be considered a "business associate" of customers to whom it provides such services.
Treatspace’s business associate agreement will assure its customers that the company will use patient information obtained from them to provide services and support only and will safeguard that information from misuse.
Privacy & Security Policy
To implement these business associate requirements and protect the confidentiality and integrity of the patient information it receives, Treatspace’s Privacy and Security Policy will:
Provide that the company obtain and use confidential patient health information obtained from its customers only as necessary to perform customer service and support functions;
Limit access to such information to those employees and agents who perform identified service and support functions;
Prohibit disclosure of patient health information received from customers to persons who are not employees or agents of the company in the absence of express approval from the legal department and, if appropriate, the customer and/or patient;
Require all employees and agents of the company to report uses and disclosures of patient information that are not permitted by Treatspace’s Privacy and Security Policy;
Provide that Treatspace investigate all reports that patient health information was used in a manner not permitted by its Privacy and Security Policy and will impose appropriate sanctions for conduct prohibited by the policy;
Establish that Treatspace employees who may come in contact with patient health information receive training regarding Treatspace's Privacy and Security Policy and the importance of protecting the privacy and security of patient health information; and
Provide for the storage and transmission of patient health information received from customers in a secure manner that protects the integrity, confidentiality and availability of the information.
For more detailed information about Treatspace’s policies and procedures, please feel free to contact firstname.lastname@example.org or call (657) 444-7221.
Treatspace Business Associate Agreement
BY ACCESSING OR REGISTERING WITH THE TREATSPACE PLATFORM, YOU AGREE TO BE BOUND BY THE TERMS AND CONDITIONS SET FORTH IN THIS BUSINESS ASSOCIATE AGREEMENT UNLESS A SEPARATE BUSINESS ASSOICIATE AGREEMENT HAS BEEN AGREED TO BETWEEN THE COVERED ENTITY AND TREATSPACE, INC.
The following terms used in this Agreement shall have the same meaning as those terms in the HIPAA Rules: Breach, Data Aggregation, Designated Record Set, Disclosure, Health Care Operations, Individual, Minimum Necessary, Notice of Privacy Practices, Protected Health Information, Required By Law, Secretary, Security Incident, Subcontractor, Unsecured Protected Health Information, and Use.
(a) Business Associate. “Business Associate” shall generally have the same meaning as the term “business associate” at 45 CFR 160.103, and in reference to the party to this agreement, shall mean Treatspace, Inc.
(b) Covered Entity. “Covered Entity” shall generally have the same meaning as the term “covered entity” at 45 CFR 160.103, and in reference to health care businesses which contract directly with Treatspace, Inc.
(c) HIPAA Rules. “HIPAA Rules” shall mean the Privacy, Security, Breach Notification, and Enforcement Rules at 45 CFR Part 160 and Part 164.
Obligations and Activities of Business Associate
Business Associate agrees to:
(a) Not use or disclose protected health information other than as permitted or required by the Agreement or as required by law;
(b) Use appropriate safeguards, and comply with Subpart C of 45 CFR Part 164 with respect to electronic protected health information, to prevent use or disclosure of protected health information other than as provided for by the Agreement;
(c) Report to covered entity any use or disclosure of protected health information not provided for by the Agreement of which it becomes aware, including breaches of unsecured protected health information as required at 45 CFR 164.410, and any security incident of which it becomes aware; the business entity will report any breach to covered entity within a 10 day period of time and mitigate any breaches from the business associate end and report them to the HHS Office for Civil Rights (OCR), and potentially the media, on behalf of the covered entity. Business associate is NOT liable for any breaches which may occur away from business associate premises. Breaches from covered entity must be handled by covered entity’s office/facilities.
(d) In accordance with 45 CFR 164.502(e)(1)(ii) and 164.308(b)(2), if applicable, ensure that any subcontractors that create, receive, maintain, or transmit protected health information on behalf of the business associate agree to the same restrictions, conditions, and requirements that apply to the business associate with respect to such information;
(e) Make available protected health information in a designated record set to the covered entity as necessary to satisfy covered entity’s obligations under 45 CFR 164.524; business associate will redirect all requests by individuals, for access to their specific protected health information, back to the covered entity within five (5) days and provide the individual’s requested protected health information to the covered entity within ten (10) days once identity is verified by the covered entity. Verification of the individual’s identity, who is requesting their protected health information, rests solely with the covered entity.
(f) Make any amendment(s) to protected health information in a designated record set as directed or agreed to by the covered entity pursuant to 45 CFR 164.526, or take other measures as necessary to satisfy covered entity’s obligations under 45 CFR 164.526;
(g) Maintain and make available the information required to provide an accounting of disclosures to the covered entity as necessary to satisfy covered entity’s obligations under 45 CFR 164.528;
(g.1) Within twenty (20) days of a request by covered entity, business associate shall provide covered entity with an accounting of all disclosures of protected health information, other than disclosures excepted from the Privacy Standards accounting requirement under 45 C.F.R. 164.528(a)(1)(i)-(ix), made by business associate or by a subsequent business associate in the previous six (6) years (but in no event prior to April 14, 2003) in order for covered entity to comply with its obligations under 45 C.F.R. 164.528 to provide Individuals with an accounting of disclosures of their protected health information.
(g.2) Such accounting shall include, with respect to each disclosure: the date of the disclosure; the name (and address, if known) of the entity or person receiving the Protected Health Information; a description of the protected health information disclosed; a statement of the purpose of the disclosure; and any other information the Secretary may require under 45 C.F.R. 164.528 (collectively, "Disclosure Information").
(g.3) For repetitive disclosures of protected health information that business associate makes for a single purpose to the same person or entity, business associate may record: (a) the disclosure information for the first of these repetitive disclosures; (b) the frequency, periodicity or number of these repetitive disclosures made during the accounting period; and the date of the last of these repetitive disclosures.
(g.4) Business associate shall notify covered entity within five (5) days of receiving a request from an individual for an accounting of disclosures of protected health information. Following receipt of such notice from business associate, covered entity shall handle such request from the individual.
(h) To the extent the business associate is to carry out one or more of covered entity's obligation(s) under Subpart E of 45 CFR Part 164, comply with the requirements of Subpart E that apply to the covered entity in the performance of such obligation(s); and
(i) Make its internal practices, books, and records available to the Secretary for purposes of determining compliance with the HIPAA Rules.
Permitted Uses and Disclosures by Business Associate
(a) Business associate may only use or disclose protected health information as necessary to perform the services set forth in signed sales agreements between covered entity and business associate. Business associate is authorized to use protected health information to de-identify the information in accordance with 45 CFR 164.514(a)-(c).
(b) Business associate may use or disclose protected health information as required by law.
(c) Business associate agrees to make uses and disclosures and requests for protected health information consistent with covered entity’s minimum necessary policies and procedures.
(d) Business associate may not use or disclose protected health information in a manner that would violate Subpart E of 45 CFR Part 164 if done by covered entity, except for the specific uses and disclosures set forth below.
(e) Business associate may use protected health information for the proper management and administration of the business associate or to carry out the legal responsibilities of the business associate.
(f) Business associate may disclose protected health information for the proper management and administration of business associate or to carry out the legal responsibilities of the business associate, provided the disclosures are required by law, or business associate obtains reasonable assurances from the person to whom the information is disclosed that the information will remain confidential and used or further disclosed only as required by law or for the purposes for which it was disclosed to the person, and the person notifies business associate of any instances of which it is aware in which the confidentiality of the information has been breached.
(g) Business associate may provide data aggregation services relating to the health care operations of the covered entity.
Provisions for Covered Entity to Inform Business Associate of Privacy Practices and Restrictions
(a) Covered entity shall notify business associate of any limitation(s) in the notice of privacy practices of covered entity under 45 CFR 164.520, to the extent that such limitation may affect business associate’s use or disclosure of protected health information.
(b) Covered entity shall notify business associate of any changes in, or revocation of, the permission by an individual to use or disclose his or her protected health information, to the extent that such changes may affect business associate’s use or disclosure of protected health information.
(c) Covered entity shall notify business associate of any restriction on the use or disclosure of protected health information that covered entity has agreed to or is required to abide by under 45 CFR 164.522, to the extent that such restriction may affect business associate’s use or disclosure of protected health information.
Permissible Requests by Covered Entity
Covered entity shall not request business associate to use or disclose protected health information in any manner that would not be permissible under Subpart E of 45 CFR Part 164 if done by covered entity. Business associate reserves the right to use or disclose protected health information as legally allowable for provisions, including data aggregation or management and administration and legal responsibilities of the business associate.
Term and Termination
(a) Term. The Term of this Agreement shall be effective as of the date of your signed sales agreement with Treatspace, Inc., and shall terminate at the end of contract or on the date covered entity terminates for cause as authorized in paragraph (b) of this Section, whichever is sooner.
(b) Termination for Cause. Covered entity authorizes termination of this Agreement by business associate, if business associate determines covered entity has violated a material term of the Agreement and covered entity has not cured the breach or ended the violation within the time specified by business associate.
(c) Obligations of Business Associate Upon Termination. Upon termination of this Agreement for any reason, business associate, with respect to protected health information received from covered entity, or created, maintained, or received by business associate on behalf of covered entity, shall:
Retain only that protected health information which is necessary for business associate to continue its proper management and administration or to carry out its legal responsibilities;
Return to covered entity [or, if agreed to by covered entity, destroy] the remaining protected health information that the business associate still maintains in any non-archived and encrypted format;
Continue to use appropriate safeguards and comply with Subpart C of 45 CFR Part 164 with respect to electronic protected health information to prevent use or disclosure of the protected health information, other than as provided for in this Section, for as long as business associate retains the protected health information;
Not use or disclose the protected health information retained by business associate other than for the purposes for which such protected health information was retained and subject to the same conditions set out in paragraphs (e) and (f) above under “Permitted Uses and Disclosures By Business Associate” which applied prior to termination; and
Return to covered entity [or, if agreed to by covered entity, destroy] the protected health information retained by business associate when it is no longer needed by business associate for its proper management and administration or to carry out its legal responsibilities.
(d) Survival. The obligations of business associate under this Section shall survive the termination of this Agreement.
(a) Regulatory References. A reference in this Agreement to a section in the HIPAA Rules means the section as in effect or as amended.
(b) Third Party Rules. Treatspace will not be held responsible for communications between covered entities, third party business associates, and patients. It is up to each party which uses Treatspace to enforce all actions in compliance with HIPAA regulations, including the HIPAA Omnibus rules.
(c) Amendment. The Parties agree to take such action as is necessary to amend this Agreement from time to time as is necessary for compliance with the requirements of the HIPAA Rules and any other applicable law.
(d) Interpretation. Any ambiguity in this Agreement shall be interpreted to permit compliance with the HIPAA Rules.
Last modified: August 26, 2016
All Treatspace users agree to abide by the user policies set forth in the following User Agreement.
1. Copyright, Licenses and Idea Submissions.
The entire contents of the Site are protected by international copyright and trademark laws. The owner of the copyrights and trademarks are treatspace.com, its affiliates or other third party licensors. YOU MAY NOT MODIFY, COPY, REPRODUCE, REPUBLISH, UPLOAD, POST, TRANSMIT, OR DISTRIBUTE, IN ANY MANNER, THE MATERIAL ON THE SITE, INCLUDING TEXT, GRAPHICS, CODE AND/OR SOFTWARE. You may print and download portions of material from the different areas of the Site solely for your own non-commercial use provided that you agree not to change or delete any copyright or proprietary notices from the materials. You agree to grant to treatspace.com a non-exclusive, royalty-free, worldwide, perpetual license, with the right to sub-license, to reproduce, distribute, transmit, create derivative works of, publicly display and publicly perform any materials and other information (including, without limitation, ideas contained therein for new or improved products and services) you submit to any public areas of the Site (such as bulletin boards, forums and newsgroups) or by e-mail to treatspace.com by all means and in any media now known or hereafter developed. You also grant to treatspace.com the right to use your name in connection with the submitted materials and other information as well as in connection with all advertising, marketing and promotional material related thereto. You agree that you shall have no recourse against treatspace.com for any alleged or actual infringement or misappropriation of any proprietary right in your communications to treatspace.com.
Publications, products, content or services referenced herein or on the Site are the exclusive trademarks or servicemarks of treatspace.com. Other product and company names mentioned in the Site may be the trademarks of their respective owners.
2. Use of the Site.
You understand that, except for information, products or services clearly identified as being supplied by treatspace.com, treatspace.com does not operate, control or endorse any information, products or services on the Internet in any way. Except for treatspace.com- identified information, products or services, all information, products and services offered through the Site or on the Internet generally are offered by third parties, that are not affiliated with treatspace.com. You also understand that treatspace.com cannot and does not guarantee or warrant that files available for downloading through the Site will be free of infection or viruses, worms, Trojan horses or other code that manifest contaminating or destructive properties. You are responsible for implementing sufficient procedures and checkpoints to satisfy your particular requirements for accuracy of data input and output, and for maintaining a means external to the Site for the reconstruction of any lost data.YOU ASSUME TOTAL RESPONSIBILITY AND RISK FOR YOUR USE OF THE SITE AND THE INTERNET. treatspace.com PROVIDES THE SITE AND RELATED INFORMATION “AS IS” AND DOES NOT MAKE ANY EXPRESS OR IMPLIED WARRANTIES, REPRESENTATIONS OR ENDORSEMENTS WHATSOEVER (INCLUDING WITHOUT LIMITATION WARRANTIES OF TITLE OR NONINFRINGEMENT, OR THE IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE) WITH REGARD TO THE SERVICE, ANY MERCHANDISE INFORMATION OR SERVICE PROVIDED THROUGH THE SERVICE OR ON THE INTERNET GENERALLY, AND treatspace.com SHALL NOT BE LIABLE FOR ANY COST OR DAMAGE ARISING EITHER DIRECTLY OR INDIRECTLY FROM ANY SUCH TRANSACTION. IT IS SOLELY YOUR RESPONSIBILITY TO EVALUATE THE ACCURACY, COMPLETENESS AND USEFULNESS OF ALL OPINIONS, ADVICE, SERVICES, MERCHANDISE AND OTHER INFORMATION PROVIDED THROUGH THE SERVICE OR ON THE INTERNET GENERALLY. treatspace.com DOES NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED OR ERROR-FREE OR THAT DEFECTS IN THE SERVICE WILL BE CORRECTED.
YOU UNDERSTAND FURTHER THAT THE PURE NATURE OF THE INTERNET CONTAINS UNEDITED MATERIALS SOME OF WHICH ARE SEXUALLY EXPLICIT OR MAY BE OFFENSIVE TO YOU. YOUR ACCESS TO SUCH MATERIALS IS AT YOUR RISK. treatspace.com HAS NO CONTROL OVER AND ACCEPTS NO RESPONSIBILITY WHATSOEVER FOR SUCH MATERIALS.
LIMITATION OF LIABILITY
IN NO EVENT WILL treatspace.com BE LIABLE FOR (I) ANY INCIDENTAL, CONSEQUENTIAL, OR INDIRECT DAMAGES (INCLUDING, BUT NOT LIMITED TO, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION, LOSS OF PROGRAMS OR INFORMATION, AND THE LIKE) ARISING OUT OF THE USE OF OR INABILITY TO USE THE SERVICE, OR ANY INFORMATION, OR TRANSACTIONS PROVIDED ON THE SERVICE, OR DOWNLOADED FROM THE SERVICE, OR ANY DELAY OF SUCH INFORMATION OR SERVICE. EVEN IF treatspace.com OR ITS AUTHORIZED REPRESENTATIVES HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES, OR (II) ANY CLAIM ATTRIBUTABLE TO ERRORS, OMISSIONS, OR OTHER INACCURACIES IN THE SERVICE AND/OR MATERIALS OR INFORMATION DOWNLOADED THROUGH THE SERVICE. BECAUSE SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, THE ABOVE LIMITATION MAY NOT APPLY TO YOU. IN SUCH STATES, treatspace.com LIABILITY IS LIMITED TO THE GREATEST EXTENT PERMITTED BY LAW.treatspace.com makes no representations whatsoever about any other web site which you may access through this one or which may link to this Site. When you access a non-treatspace.com web site, please understand that it is independent from treatspace.com, and that treatspace.com has no control over the content on that web site. In addition, a link to a treatspace.com web site does not mean that treatspace.com endorses or accepts any responsibility for the content, or the use, of such web site.
You agree to indemnify, defend and hold harmless treatspace.com, its officers, directors, employees, agents, licensors, suppliers and any third party information providers to the Service from and against all losses, expenses, damages and costs, including reasonable attorneys’ fees, resulting from any violation of this Agreement (including negligent or wrongful conduct) by you or any other person accessing the Service.
4. Third Party Rights
The provisions of paragraphs 2 (Use of the Service), and 3 (Indemnification) are for the benefit of treatspace.com and its officers, directors, employees, agents, licensors, suppliers, and any third party information providers to the Service. Each of these individuals or entities shall have the right to assert and enforce those provisions directly against you on its own behalf.
The provisions of paragraphs 1 (Copyright, Licenses and Idea Submissions), 2 (Use of the Service), 3 (Indemnification), 4 (Third Party Rights) and 6 (Miscellaneous) shall survive any termination of this Agreement.
This Agreement shall all be governed and construed in accordance with the laws of The United States of America applicable to agreements made and to be performed in The United States of America. You agree that any legal action or proceeding between treatspace.com and you for any purpose concerning this Agreement or the parties’ obligations hereunder shall be brought exclusively in a federal or state court of competent jurisdiction sitting in The United States of America . Any cause of action or claim you may have with respect to the Service must be commenced within one (1) year after the claim or cause of action arises or such claim or cause of action is barred. treatspace.com’s failure to insist upon or enforce strict performance of any provision of this Agreement shall not be construed as a waiver of any provision or right. Neither the course of conduct between the parties nor trade practice shall act to modify any provision of this Agreement. treatspace.com may assign its rights and duties under this Agreement to any party at any time without notice to you.
Any rights not expressly granted herein are reserved.