FDFAC Privacy Policies

Effective Date: January 2021

This privacy notice discloses the privacy practices for (FDFAC.COM). This privacy notice applies solely to information collected by this web site. It will notify you of the following:

  1. What personally identifiable information is collected from you through the web site and how it is used and with whom it may be shared.
  2. What choices are available to you regarding the use of your data.
  3. The security procedures in place to protect the misuse of your information.
  4. How you can correct any inaccuracies in the information.

Information Collection, Use and Sharing

We are the sole owners of the information collected on this site. We only have access to collect information that you voluntarily give us such as; name, address, phone and billing information via fax or other direct contact from you. We will not sell or rent this information to anyone.

We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g. to facilitate insurance billing or those circumstances noted in this policy.

Cookies & Analytics

We may also use Google Analytics and other service providers to collect and process analytics information on our Services. For more information about Google Analytics, please visit https://www.google.com/policies/privacy/partners/. You can opt out of Google’s collection and processing of data generated by your use of the Site by going to https://tools.google.com/dlpage/gaoptout.


We do not email current or potential patients in order to be fully compliant with HIPAA laws. We do email or sercurely transfer to third parties with billing information which includes billing and your insurance carrier. When this occurs, files are encrypted with only key personnel having access.

Wherever we collect sensitive information (such as New Patient Registration), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a closed lock icon at the bottom of your web browser, or looking for "https" at the beginning of the address of the web page.

While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.

As a condition of employment at Financial District Foot & Ankle Center, we screen candidates that includes extensive background checks, criminal history and identity verification for those who may have access to sensitive information.

HIPAA - Health Information Privacy

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires us to ask each of our patients to acknowledge receipt of our Notice of Privacy Practices. The Notice is published on this page. You acknowledge receipt of this notice by accepting terms and conditions by submitting FDFAC New Patient Registration.

FDFAC Responsibilities

Under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), FDFAC must take steps to protect the privacy of your "Protected Health Information" (PHI.) PHI includes information that we have created or received regarding your health or payment for your health. It includes both your medical records and personal information such as your name, social security number, address, and phone number.

Under federal law, we are required to:

  • Protect the privacy of your PHI. All of our employees and physicians are required to maintain the confidentiality of PHI and receive appropriate privacy training
  • Provide you with this Notice of Privacy Practices explaining our duties and practices regarding your PHI
  • Follow the practices and procedures set forth in the Notice

Uses and Disclosures of Your Protected Health Information That Do Not Require Your Authorization

FDFAC uses and discloses PHI in a number of ways connected to your treatment, payment for your care, and our health care operations. Some examples of how we may use or disclose your PHI without your authorization are listed below:

  • To our physicians, nurses, and others involved in your health care or preventive health care.
  • To our different departments to coordinate such activities as prescriptions, lab work, surgery centers and radilogy reports.
  • To other health care providers treating you who are not on our staff such as dentists, emergency room staff, and specialists. For example, if you are being treated for an injured knee we may share your PHI among your primary physician, the knee specialist, and your physical therapist so they can provide proper care.
  • To administer your health benefits policy or contract.
  • To bill you for health care we provide.
  • To pay others who provided care or assiatance for your care.
  • To other organizations and providers for payment activities unless disclosure is prohibited by law.
  • To administer and support our business activities or those of other health care organizations (as allowed by law) including providers and plans. For example, we may use your PHI to review and improve the care you receive, to provide training, and to help decide what rates to charge.
  • To other individuals (such as consultants and attorneys) and organizations that help us with our business activities. (Note: If we share your PHI with other organizations for this purpose, they must agree to protect your privacy.)

We may use or disclose your Protected Health Information without your authorization for legal and/or governmental purposes in the following circumstances:

Required by Law

When we are required to do so by state and federal law, including workers' compensation laws.

Public health and safety

To an authorized public health authority or individual to:

  • Protect public health and safety.
  • Prevent or control disease, injury, or disability.
  • Report vital statistics such as births or deaths.
  • Investigate or track problems with prescription drugs and medical devices. (Food and Drug Administration.)
  • Abuse or neglect - To government entities authorized to receive reports regarding abuse, neglect, or domestic violence.
  • Oversight agencies - To health oversight agencies for certain activities such as audits, examinations,
    investigations, inspections, and licensures.
  • Legal proceedings - In the course of any legal proceeding in response to an order of a court or administrative agency and, in certain cases, in response to a subpoena, discovery request, or other lawful process.
  • Law enforcement - To law enforcement officials in limited circumstances for law enforcement purposes. For example disclosures may be made to identify or locate a suspect, witness, or missing person; to report a crime; or to provide information concerning victims of crimes.
  • Military activity and national security - To the military and to authorized federal officials for national security and intelligence purposes or in connection with providing protective services to the President of the United States.

We may also use or disclose your Protected Health Information without your authorization in the following miscellaneous circumstances:

  • Family and friends—To a member of your family, a relative, a close friend—or any other person you identify who is directly involved in your health care—when you are either not present or unable to make a health care decision for yourself and we determine that disclosure is in your best interest. For example, we may disclose PHI to a friend who brings you into an emergency room.
  • Facility directory information—Unless you object upon admission, we may use and disclose your name, the location at which you are receiving care, your general condition, and your religious affiliation in our facility directory. All of this information except religious affiliation will be disclosed to people who ask for you by name. Members of the clergy will be told your religious affiliation if they ask. This is to help your family, friends, and clergy visit you in the facility and generally know how you are doing.
  • Appointment reminders—To you, to remind you in writing or by phone/voicemail that you have a health care appointment with us. These reminders may be made by postcard, phone, or voicemail unless you specifically ask us to communicate with you through a different method as described later in this Notice.
  • Treatment alternatives and plan description—To communicate with you about treatment services, options, or alternatives, as well as health-related benefits or services that may be of interest to you, or to describe our health plan and providers to you.
  • De-identify information—To "de-identify" information by removing information from your PHI that could be used to identify you.
  • Coroners, funeral directors, and organ donation—To coroners, funeral directors, and organ donation organizations as authorized by law.
  • Disaster relief—To an authorized public or private entity for disaster relief purposes. For example, we might disclose your PHI to help notify family members of your location or general condition.
  • Threat to health or safety—To avoid a serious threat to the health or safety of yourself and others.
  • Correctional facilities—If you are an inmate in a correctional facility we may disclose your PHI to the correctional facility for certain purposes, such as providing health care to you or protecting your health and safety or that of others.

Uses and Disclosures of Your Protected Health Information That Require Us to Obtain Your Authorization.

Except in the situations listed in the sections above, we will use and disclose your PHI only with your written authorization.

In some situations, federal and state laws provide special protections for specific kinds of PHI and require authorization from you before we can disclose that specially protected PHI. In these situations, we will contact you for the necessary authorization. If you have questions about these laws, please contact the Privacy Officer at 415-956-2884.

Your Rights Regarding Your Protected Health Information

You have the right to:

  • Request restrictions by asking that we limit the way we use or disclose your PHI for treatment, payment, or health care operations. You may also ask that we limit the information we give to someone who is involved in your care, such as a family or friend. Please note that we are not required to agree to your request. If we do agree, we will honor your limits unless it is an emergency situation.
  • Ask that we communicate with you by another means. For example, if you want us to communicate with you at a different address we can usually accommodate that request. We may ask that you make your request to us in writing. We will agree to reasonable requests.
  • Request a copy of your PHI. We may ask you to make this request in writing and we may charge a reasonable fee for the cost of producing and mailing the copies. In certain situations we may deny your request and will tell you why we are denying it. In some cases you may have the right to ask for a review of our denial.
  • Ask usually to amend PHI about you that we use to make decisions about you. Your request for an amendment must be in writing and provide the reason for your request. In certain cases we may deny your request, in writing. You may respond by filing a written statement of disagreement with us and ask that the statement be included with your PHI.
  • Seek an accounting of certain disclosures by asking us for a list of the times we have disclosed your PHI. Your request must be in writing and give us the specific information we need in order to respond to your request. You may request disclosures made up to six years before your request. You may receive one list per year at no charge. If you request another list during the same year, we may charge you a reasonable fee. These lists will not include disclosures to other organizations that might pay for your care provided by FDFAC.
  • Request a paper copy of this Notice.

Changes to Privacy Practices

FDFAC may change the terms of this Notice at any time. The revised Notice would apply to all PHI that we maintain.


Doctors of Podiatric Medicine are licensed and regulated by the Medical Board of California.
(800) 633-2322

If you feel that we are not abiding by this privacy policy, you should contact us immediately.

Financial District Foot & Ankle Center
ATT: Privacy Officer
222 Front Street
6th Floor
San Francisco, CA 94111
1-415-956-2884 - phone
1-844-877-1864 - secure fax