Notice of HIPAA Privacy Practices

Last updated: April 2026

THIS NOTICE DESCRIBES HOW YOUR HEALTH INFORMATION MAY BE USED AND DISCLOSED BY DR. MELISSA DRAKE, MD, PC AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

Our Responsibilities

The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) requires us to protect the privacy of your Protected Health Information (“PHI”). PHI includes information we create or receive regarding your health or payment for your care — including your medical records, name, address, phone number, financial information, and other personal identifiers.

We are required by law to:

How We Use and Disclose Your Health Information

The following are ways we may use or disclose your PHI without your written authorization:

Treatment

We may use your PHI to provide, coordinate, and manage your medical care. For example, we may share information with physicians, nurses, specialists, and other providers involved in your care — including labs, imaging centers, or emergency providers — to ensure you receive appropriate treatment.

Payment

We may use or disclose your PHI to process membership fees, bill for services rendered, and handle payment-related activities. This may include sharing information with payment processors such as Stripe.

Healthcare Operations

We may use your PHI for internal operations including quality review, training, and improving the care we deliver. We may share PHI with consultants, attorneys, or business associates who assist us, provided they agree to protect your privacy.

Other Permitted Uses

We may also use or disclose your PHI without authorization in the following circumstances, as permitted or required by law:

Uses That Require Your Written Authorization

In all other situations, we will use or disclose your PHI only with your written authorization. This includes:

You may revoke a written authorization at any time, except where we have already acted in reliance on it.

Your Rights Regarding Your Health Information

You have the right to:

Electronic and Digital Communications

If you choose to communicate with us via email, text, or through our patient portal, you acknowledge that these channels may not be fully secure. By communicating with us electronically, you accept the associated privacy risks. If you prefer not to exchange PHI electronically, please notify us and we will accommodate alternative communication methods.

Changes to This Notice

We reserve the right to modify this Notice at any time. Any revised Notice will apply to all PHI we maintain. Changes will be posted to this page with an updated effective date. We encourage you to review this Notice periodically.

How to File a Complaint

If you believe your privacy rights have been violated, you may file a complaint with us directly or with the U.S. Department of Health and Human Services Office for Civil Rights:

We will not retaliate against you for filing a complaint.

Contact Us

For questions about this Notice or to request a copy, please contact us:
Dr. Melissa Drake, MD, PC — Privacy Officer
427 W Pueblo St, Suite B/C
Santa Barbara, CA 93105
hello@melissadrakeobgyn.com
805.265.0313