In order to effectively support our customers, Siemens Healthcare Diagnostics occasionally encounters Protected Health Information (PHI) while troubleshooting and communicating product issues. It is our policy to protect any and all PHI under our control from improper use or disclosure.
Siemens Healthcare Diagnostics has implemented administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of the electronic PHI that is received, maintained, stored, or transmitted on behalf of our customers. In the unlikely event that a privacy breach occurs, there are procedures in place to rapidly notify our customers, meet regulatory reporting requirements, and resolve the issue efficiently.
In accordance with “Minimum Necessary” statutes, Siemens Healthcare Diagnostics personnel may not use or disclose PHI except for the purpose of performing their job functions and must comply with the regulations set forth by local, state, and federal laws. Only those employees in support roles with a "need to know" to perform their job responsibilities have access to customer data, which may include patient PHI. Their access to this data is controlled and monitored. The health information received or stored is kept secure to maintain its confidentiality and is securely destroyed or returned once it is no longer needed. There are policies and procedures in place to protect and safeguard the PHI that we receive and/or maintain, including workforce-sanction policies for those who violate these policies.
Relevant Siemens Healthcare Diagnostics employees receive regular training on how to handle PHI that emphasizes that the information is confidential and must be protected while doing their work.