TranslateOS

Menu

Notice of Privacy Practices

Notice of Privacy Practices

Effective Date: January 21, 2026​

HIPAA notice of privacy practices

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED, AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

Bloom Insurance Agency, LLC. (“Bloom”, “we,” “us,” or “our”) takes the confidentiality of your health information very seriously. We are required by law to provide you with this Notice of Privacy Practices (“Notice”) and to follow the terms of this Notice while it is in effect. This Notice is provided to you pursuant to the Health Insurance Portability and Accountability Act and its implementing regulations (collectively, “HIPAA”) and explains how Bloom, acting as a business associate of covered entities, uses and discloses your health information subject to HIPAA (“PHI”) when providing our products and services (collectively, our “Services”). 

For information about our collection, use, and disclosure of personal information other than PHI, please click this Privacy Policy link.

Our Use and Disclosure of Your PHI

The following describes how we use and disclose your PHI in connection with our service delivery. Bloom processes your information only for the specific purposes outlined below. 

Service Delivery: We use your PHI to: 

  • Provide real-time interpretation services through AI-powered translation technology.
  • Monitor calls taken in the course of our call center services to ensure service quality and compliance.
  • Track and manage Medicare enrollments through our Ascend platform as required by CMS and for purposes related to treatment, payment, and healthcare operations.
  • Resolve grievances, Complaint Tracking Module (CTM) reports, member complaints, and client inquiries.

Legal and Regulatory Compliance: Consistent with HIPAA, we may use or disclose your PHI as required by law, including in response to court orders, subpoenas, legal process, or other lawful requests from law enforcement or other authorized entities. We only do this in accordance with applicable law and for purposes of treatment, payment, and healthcare operations. Use or disclosure will only occur after coordinating with the covered entity, where appropriate.

Limitations on Use and Disclosure: Bloom does not use your health information for purposes of training or improving our AI systems. We do not share your PHI with third parties except as required by law or as directed by the covered entity we serve. We act solely as a business associate of covered entities and do not use PHI for our own purposes.

Data Retention and Deletion

Your PHI is retained only as long as necessary to support interpretation services and fulfill our obligations to the covered entity we serve. All PHI we retain is secured and protected in compliance with HIPAA and HITRUST security standards. When retention is no longer required, the data is securely deleted using industry-standard processes.

Our Responsibilities with Respect to Your PHI

We are required by HIPAA to:

  • Maintain the privacy and security of your PHI as required by law, including the HIPAA Privacy and Security Rules (45 C.F.R. Parts 160 and 164).
  • Provide you with this Notice setting forth our legal duties and privacy practices regarding your PHI.
  • Abide by the terms of the version of this Notice currently in effect.
  • Notify the covered entity promptly if there is a breach that compromises the privacy or security of your PHI.

Please note that some states have laws that are stricter than HIPAA regarding your health information. If a state law applies to Us and is stricter or places limits on the ways We can use or share your PHI, we shall follow the state law. We shall not use or disclose your PHI if state law prohibits it.

Your HIPAA Rights with Respect to Your PHI

You have rights with respect to your PHI, including the right to inspect, copy, amend, and request an accounting of disclosures. You also have the right to request restrictions on how your PHI is used or disclosed, and to request confidential communications be sent in a specific way or location.

Because Bloom acts as a business associate, some rights related to inspecting, amending, or restricting access to your PHI must be directed to the covered entity from which the PHI originated. Please contact the covered entity directly to exercise these rights.

Changes to this Notice

We may update this Notice, and we reserve the right to do so at any time. If we change the terms of this Notice, the new terms will apply to all PHI that we maintain about you, including PHI created or received before such changes were made. We shall post the new Notice on our website and update the “Effective Date” at the top of this page. We shall provide you with a paper copy of this Notice upon request.

Complaints

If you believe that your privacy rights have been violated or that We have not followed our obligations under this Notice or HIPAA, you may file a complaint with Us or with the Secretary of Health and Human Services. We shall not retaliate against you for filing any such complaint.

To file a complaint with Bloom:
Email: [email protected]
Mail: ATTN: Privacy Officer, 617 N Madison Street, Unit 200, Bloomington, IN 47404

To file a complaint with the Secretary of Health and Human Services:
Phone: 877.696.6775
Mail: 200 Independence Avenue S.W., Washington, D.C. 20201
Website: www.hhs.gov/ocr/privacy/hipaa/complaints.

Reporting Security Incidents

Bloom is committed to maintaining the security and privacy of all information entrusted to us. If you are a vendor, customer, business partner, or other third party and become aware of a suspected or confirmed security incident, privacy breach, or vulnerability involving Bloom or its systems, please report it immediately to our Security team at [email protected]. When reporting, please include a description of the incident, the date and time it was discovered, any systems or data potentially affected, and your contact information for follow-up. All reports will be promptly investigated in accordance with our Incident Response procedures.

For More Information

To exercise any of your rights set forth in this Notice, or for more information about our privacy practices, contact the covered entity you are working with. For questions about Bloom’s privacy practices, you may also reach out to [email protected] or write to us at the address shown above.