Compliance

CCI is committed to the ongoing effort to review, to understand and abide by the FDCPA, HIPAA, and all applicable state regulations. Our clients can rest assured that CCI is committed to compliance with the spirit and intent of all laws, rules and regulations relating to the collection of their accounts. Our professional staff is available to answer questions you may have about our collection procedures and compliance with debt collection laws.

FDCPA Compliance Activities

"It is the purpose of [the FDCPA] to eliminate abusive debt collection practices by debt collectors, to insure that those debt collectors who refrain from using abusive debt collection practices are not competitively disadvantaged, and to promote consistent State action to protect consumers against debt collection abuses." Section 802(e) of the Fair Debt Collection Practices Act

On September 20, 1977, Congress enacted the Fair Debt Collection Practices Act (FDCPA) to protect debtors from abusive, deceptive and unfair collection practices. The law requires debt collectors to make certain disclosures in their communications with debtors; prohibits debt collectors from making false and misleading statements; and, under certain circumstances, to cease communicating with debtors. MD-COLLECT and its parent company, Computer Credit, Inc. (CCI), have always been vigilant in complying with federal and state laws and court decisions applicable to our debt collection services.

We are licensed and/or bonded as a collection agency in all states where we do business and a license and/or bond is required. Our commitment to compliance extends to all facets of the collection process, including the layout, wording, and mailing of our collection letters; responding to debtor inquiries; correspondence and debt validation requests; and submitting progress reports to clients. Our training programs keep our professional staff up to date on applicable legal principles.

Our clients can rest assured that MD-COLLECT, a service of CCI, is committed to compliance with the spirit and intent of all laws, rules and regulations relating to the collection of their accounts. Our professional staff is always available to answer questions you may have about our collection procedures and compliance with debt collection laws.

[Top]

HIPAA Compliance Activities

Each healthcare organization served by CCI is a "covered entity" as defined in the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and the Electronic Transaction, Security and Privacy Standards (the "Standards"). CCI is a "business associate," as defined by HIPAA and the Standards, who shall provide collection services to healthcare organizations in accordance with HIPAA and the Standards as follows:

CCI, as a business associate, may use Protected Health Information ("PHI") for the proper management and administration of its daily business activities. However, CCI shall not use nor disclose any PHI received from a client or obtained or developed in connection with fulfillment of our user agreement, other than as permitted by that contract or as required by law.
CCI shall maintain appropriate safeguards to prevent improper use or disclosure of PHI, but should improper use or disclosure occur and CCI becomes aware of such a violation, CCI shall report the occurrence to the client.
CCI agrees to make available any PHI in its records if an individual requests his or her PHI from the client. CCI will not be bound by this provision if the only information in its records is also in the records of the client. CCI further agrees to make such information available to individuals for the purpose of amending PHI. CCI will also make available to the client the necessary information to provide an accounting of disclosures in accordance with 45 C.F.R.164.528.
CCI shall make available any internal practices, books or records relating to the use of PHI to the Department of Health and Human Services for the purpose of determining the client's compliance with HIPAA and the Standards.
CCI is required to maintain records of its collection activities so that it can respond to debtor inquiries.

[Top]

For more information, please see the End User License Agreement (EULA).

Our Privacy Policy Notice

MD-COLLECT knows that you care how information about you is used and shared, and we appreciate your expectation that we will do so carefully and sensibly. This notice describes our privacy policy. By visiting the MD-COLLECT Web site (the "Site") or by otherwise interacting with MD-COLLECT, you agree to accept the practices described in this Privacy Notice.

What Information Does MD-COLLECT Collect?
We receive and store any information you enter on our Site or give us in any other way, such as via telephone, electronic mail or online form. For example, this information may be collected when you register your practice with MD-COLLECT or when you contact us for customer support.

The following information is gathered from applicants by MD-COLLECT:

Practice Information: MD-COLLECT requires all practices to provide information about the practice including the number of physicians, specialty, address, and phone numbers.
Physician Information: We require that one physician provide a facsimile of his or her applicable, valid medical license to reduce the likelihood of fraudulent and/or criminal usage of MD-COLLECT. For the protection of our clients, their patients, and our employees, we want to ensure that any individual using MD-COLLECT to submit accounts to CCI for collection truly represents a physician and/or physician practice.
The license is kept on file with MD-COLLECT / CCI as part of the client record.
User Information: Each user account for MD-COLLECT must supply name, address, phone number, e-mail address, password, and password reset security code. This information is used to contact the user regarding debt collection activities. This information may be changed in the Manage Profiles section of the Site.
Financial Information: The practice must provide a valid credit card information to pay for submitting accounts. This information includes credit card type, credit card number, name as it appears on the credit card, credit card expiration date, and billing address. Once debtor accounts are submitted, the credit card will be charged. Upon successful completion of the credit card transaction, debtor accounts will be processed. This information may be changed in the Manage Profiles section of the Site. You may also select to keep your credit card information on file. MD-COLLECT uses VeriSign for secure credit card transactions.
Remittance / Letter Profile: The practice may select to include optional preferences for data, such as office hours, on the letters sent to debtors. Users may not alter the body content of the letters sent to debtors by CCI/MD-COLLECT.

The above information may be viewed and managed by logging in and accessing Manage Profiles. For security, only the last four digits of the credit card number are displayed and passwords are not displayed.

The following information is gathered for each debtor during the debtor submission process:

Guarantor Information: The name, address, and language preference of the guarantor of the debt.
Patient Information: The name of the patient, if different than the guarantor
Debt Information: The amount, date of service, and service provider of the debt

As a collection agency, we strive to adhere to the requirements of the Fair Debt Collections Practices Act (FDCPA), the federal law that regulates debt collectors, and to applicable state laws.

Further, in accordance with HIPAA requirements, CCI enters into a Business Associate Agreement (BA Agreement) with each of its creditor-clients. The BA Agreement specifies the responsibilities of CCI and its creditor-clients to protect individual privacy and provide for the security and confidentiality of protected health information.

Internet Protocol Address
We collect and retain an IP address from all visitors to www.md-collect.com. We use your IP address to help diagnose problems with our server, to administer our Site and for purposes of traffic analysis within the Site, and to help prevent fraud. No personally identifiable information will be linked to such information.

Other Information
We collect and store certain types of information whenever you interact with us. For example, our servers track the type of Web browser you are using, and the page to which you link from MD-COLLECT. We collect this information to better develop a sense of what services our customers need, but not to track your individual usage patterns, except within the Site.

Business Transfers
As we continue to develop our business, we might sell or buy businesses or their assets. In such transactions, customer information generally is one of the transferred business assets. Also, if Computer Credit, Inc., MD-COLLECT, or all or substantially all of its assets were ever to be acquired, customer information will of course be one of the transferred assets.

Protection of MD-COLLECT and Others
We may release account and other personal information when we are required to do so by law, court order or other government, law enforcement, or regulatory agency, including the Federal Trade Commission; to enforce or apply our EULA or other agreements; or when we believe in good faith that disclosing this information is necessary or advisable, including, for example, to protect the rights, property, or safety of MD-COLLECT, our users, or others. This includes exchanging information with other companies and organizations for fraud protection and credit risk reduction.

Electronic Mail
MD-COLLECT may use your user information to contact you by electronic mail concerning our services. These communications are intended to inform you of important information regarding your account, or about general services provided by MD-COLLECT. MD-COLLECT may offer a way to suppress electronic mail concerning our services; however, in order to fulfill our service obligations to you, we will continue to send you emails regarding your account administration, as well as any necessary information, such as renewal instructions. MD-COLLECT will not sell or provide your email address to outside companies or associations for marketing purposes.

How Secure Is Information About My Practice?
We work to protect the security of your financial information during transmission by using Secure Sockets Layer (SSL) software, which encrypts the information you input on the Site. SSL is technology used on the Internet to secure web pages and transactions by means of public key cryptography. A digitally secure communications channel is established between the server and the client after which all data is encrypted. Message integrity is provided by the use of digital signatures, and trust in an individual or a website is ascertained by using digital certificates which are signed by a Certificate Authority acting as a "trusted third party". The encryption strength used in SSL is 40-bit and 128 bit. MD-COLLECT is secured by a 128 bit certificate.

Additionally, we reveal only the last four digits of your credit card numbers when confirming an order. You can further help to ensure your security by taking a few simple precautions. For instance, it is important to protect against unauthorized access to your MD-COLLECT username and password and to your computer. Be sure to log off when finished using a shared computer. We will take reasonable care to protect your personal information once it is transferred to us, but it is ultimately your responsibility to prevent the disclosure of your personal information outside of MD-COLLECT, as well as any disclosure on the MD-COLLECT Site which is due to your error.

CCI / MD-COLLECT will not sell or give any information, such as practice name, physician name, mailing address or phone number, to another company, vendor, or association for marketing purposes. We will only use this information to communicate with you about your account and/or changes to MD-COLLECT that would affect your service.

What Information Can I Access?
MD-COLLECT gives you the ability to access the contact and billing information of your practice, physicians, and user accounts for the limited purpose of viewing and, in certain cases, updating the information. To view or change this information, MD-COLLECT customers may login to Manage Profiles. Past customers may contact customer service for access to this information. When you update your information, we may keep a copy of the prior version for our records.

Sites Other Than MD-COLLECT
MD-COLLECT has no control over and is not responsible for the privacy policies or information gathering practices of other Web sites, including those to which we may link and those which may link to us. We strongly recommend that you review the privacy policies of every online service you use before submitting any personal information and direct any concerns to the site administrator of that site.

Individuals Including Children
MD-COLLECT does not knowingly collect information from or provide services to individuals, including children under the age of 13. MD-COLLECT is only provided to healthcare service providers including, but not limited to, hospitals, clinics, group practices, and individual private practices of physicians, Doctors or Medicine (MD), Doctors of Osteopathy (OD), Doctors of Dental Surgery (DDS), and Doctors of Dental Medicine (DMD). If you submit a minor’s account to MD-COLLECT, be sure to include the parent or guardian’s name as the guarantor on the account.

Conditions of Use, Notices, and Revisions
By choosing to visit MD-COLLECT, you agree that your visit and any dispute you may have regarding the protection of your privacy during such visit is subject to this Privacy Notice and our Disclaimer, including, but not limited to, the provisions regarding limitations on damages and the application of the law of the state of North Carolina. Please note that if you enter into other agreements with MD-COLLECT, such other agreements may supersede this policy. If you have any concerns about your privacy at MD-COLLECT, please click and we will attempt to resolve it.

Due to the constantly changing nature of our business, we reserve the right to change, update or modify this policy at any time at our sole discretion, and will post any new privacy policy here. Any such change, update or modification will be effective immediately upon posting on the MD-COLLECT Site. Use of information that we gather now will be subject to the Privacy Notice in effect at the time of use. By using or navigating around the Site or utilizing any of the services we provide here, you acknowledge that you have read and understand and agree to be bound by this Privacy Notice. If you do not agree to be so bound, do not remain on the Site. You are responsible for checking our Site frequently to keep apprised of recent changes.

[Top]