Upper Peninsula Health Plan (UPHP) is required by the Centers for Medicare and Medicaid Services (CMS) to provide you electronic access to your health information. This is done through a patient access application programming interface (API). As a UPHP member, this only includes information we collect about you, such as:
- Medical and pharmacy claims
- Clinical data, such as care plans, care teams, and health barriers, for example
It does not include things such as your health history, medicals records, etc., that would be collected through your provider(s).
Through the application, you will also have access to:
- Your list of covered drugs (formulary)
- Provider and pharmacy directory
UPHP does not host this information through an app of our own. You may access this information through a third party app of your choice, such as one you could download on your mobile device, tablet, or computer.
Things to consider when selecting a third party app include:
- What data will this app collect? Will this app collect non-health data from my device, such as my location?
- Will my data be stored in an anonymous format?
- How will this app use my data?
- Will this app disclose or sell my data to third parties?
- Can I limit this app’s use and disclosure of my data?
- What security measures does this app use to protect my data?
- Does this app have a process for collecting and responding to user complaints?
- If I no longer want to use this app, or if I no longer want this app to have access to my health information, how do I end the app’s access to my data?
- What is the app’s policy for deleting my data once I terminate access? Do I have to do more than just delete the app from my device?
For more information about mobile app privacy and security, visit the Federal Trade Commission website.
If you believe your data in an app may have been breached or an app has misused your data, you can file a complaint with the Office for Civil Rights (OCR) or Federal Trade Commission (FTC) at:
- To learn more about filing a complaint with OCR under HIPAA, visit: https://www.hhs.gov/hipaa/filing-a-complaint/index.html
- Individuals can file a complaint with OCR using the OCR complaint portal: https://ocrportal.hhs.gov/ocr/smartscreen/main.jsf
Individuals can file a complaint with the FTC using the FTC complaint: https://www.ftccomplaintassistant.gov/#crnt&panel1-1
Page Last Updated: 07/1/2021