Skip to main content

Privacy Practices and Member Rights & Responsibilities

The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that requires health plans to implement additional security and privacy protections of member health information. Commonwealth Care Alliance (CCA) is committed to protecting member privacy and is compliant with HIPAA regulations, as well as other federal and Massachusetts privacy regulations. To maintain a high level of security consistent with industry standards, we constantly monitor and make improvements to our security infrastructure. CCA is required by law to protect the privacy of a member’s health information and to provide a Notice of Privacy Practices, which describes the following:

In addition to rights listed in the Member Rights and Responsibilities section, a CCA member can:

CCA members have the right to receive a copy of our current Notice of Privacy Practices.