ContinueWe use cookies to give you the best experience on our website. You can browse the site with Carestream disabled cookies; However, your visit will be significantly improved if cookies will be active. If you continue without changing your settings, you agree to receive all cookies. However, you can change the setting of cookies at any time.

If you want to learn more (this is the link to our privacy policy, which has detailed information on how we use cookies and how to change their settings).

General Data Protection Regulation "GDPR"

There is a new European Privacy initiative--the General Data Protection Regulation "GDPR". This initiative takes effect on May 25, 2018. Please read closely the Annex which is incorporated into the agreement your company may have with Carestream.

HIPAA Overview

HIPAA Compliance

The Health Insurance Portability and Accountability Act (HIPAA) was signed into law August 21, 1996. This legislation affects nearly everyone involved in healthcare from providers to healthcare information systems vendors. HIPAA contains provisions for:

  • Portability of insurance coverage as employees move from one employer to another.
  • Protection of patient-identifiable data from inappropriate disclosure and the type of information that must be protected and the circumstances.
  • Defined policies, analyses, practices, and mechanisms that must be conducted to ensure the privacy of “protected health information” (PHI) is maintained.
  • Government-mandated standards for electronic transactions, code sets and identifiers.

Related Resources:

Carestream HIPAA Business Associate Agreements

Carestream business associates must comply with HIPAA regulations. Please contact your local sales representative or contract manager for information about the provisions and terms in their agreement.

Correspondence should be mailed to:

Carestream Health, Inc.
Attn: US&C Contract Management
150 Verona Street
Rochester, NY 14608

Related Documents: