Informed Consent – Hoopcare
Last revised: October 5, 2025
For any questions, email us at contact@hoopcare.com and we will get back to you as soon as possible.
.Effective Date: upon signup or subscription to HoopCare services.
This Business Associate Agreement (“BAA”) is entered into by and between HoopCare, Inc., a Delaware corporation (EIN 87-3739206), acting on its own behalf and on behalf of its affiliated medical entity HoopCare Medical of Florida, P.A. (EIN 88-4186394, NPI 1487365292) (together, the “Business Associate”), and the subscribing organization or healthcare professional (the “Covered Entity”).
By creating an account or subscribing to any HoopCare service, the Covered Entity agrees to this BAA.
This BAA satisfies the requirements of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH).
It governs HoopCare’s access to and use of Protected Health Information (“PHI”) while providing services such as HoopCare Pull MedRecord, HoopCare Preop Now, and related interoperability or documentation tools.
HoopCare may use and disclose PHI only as needed to perform the services you subscribe to, and only as permitted by HIPAA.
HoopCare may use PHI for internal operations (e.g., management, security, legal compliance) or to de-identify data under 45 C.F.R. §164.514.
HoopCare Medical of Florida P.A. may act as the verified medical entity enabling lawful retrieval of records through national or regional Health Information Exchanges (HIEs).
Users of HoopCare Pull MedRecord must be licensed U.S. healthcare professionals or staff working under a licensed provider.
Each request for patient records must be for a patient with an existing or bona fide treatment relationship.
Users are responsible for obtaining patient authorization when required by law.
HoopCare implements administrative, technical, and physical safeguards meeting HIPAA Security Rule standards.
All PHI is encrypted in transit and at rest.
Workforce members receive HIPAA privacy and security training appropriate to their role.
HoopCare will notify the Covered Entity of any Breach or unauthorized disclosure of PHI within five (5) business days of discovery, including the nature of the incident, affected records, and mitigation steps.
HoopCare will cooperate with the Covered Entity in any required notifications.
Any HoopCare subcontractor with access to PHI must sign written agreements imposing the same privacy and security obligations.
HoopCare will assist the Covered Entity in fulfilling patient rights under HIPAA, including access, amendment, and accounting of disclosures, within the timeframes required by law.
Upon termination of your subscription, HoopCare will return or securely destroy PHI.
If destruction is infeasible, HoopCare will continue to safeguard the PHI and use it only for purposes that make destruction infeasible.
HoopCare will make its privacy and security policies available to the Secretary of Health and Human Services upon request for compliance verification.
Precedence: If this BAA conflicts with other HoopCare terms, this BAA governs regarding PHI.
Amendments: HoopCare may update this BAA as required by law; continued use of services constitutes acceptance of any updates.
Governing Law: U.S. federal law and the laws of Delaware apply.
Contact for Privacy Inquiries:
HoopCare Inc. / HoopCare Medical of Florida P.A.
1460 Broadway, New York, NY 10036
Email: dpo@hoopcare.com
By subscribing to or using HoopCare services, you acknowledge and agree to this Business Associate Agreement on behalf of your NPI
