This information includes what Blue Cross Blue Shield of Michigan does to protect your privacy, what you can do to help us and what to do if you have any questions about our privacy practices.
Blue Cross Blue Shield of Michigan understands the importance of keeping your health information private. We follow strict privacy policies in accordance with state and federal law. If you have questions or would like additional information regarding our privacy practices, please call 313-225-9000.
Here's how we protect private health information for Medicare recipients.
The BCBSM/BCN Notice of Privacy Practices (PDF) complies with updated regulations under the Health Insurance Portability and Accountability Act of 1996, or HIPAA. The Notice of Privacy Practices applies to all Blue Cross Blue Shield of Michigan, Blue Care Network and Blue Cross Complete of Michigan members, except for members who get a separate Notice of Privacy Practices from their employer.
Our Notice of Privacy Practices tells you that:
To get more information about your rights under HIPAA, visit our HIPAA compliance page. To get copies of individual rights forms, please visit our Protected Health Information and Privacy Forms page.
Blue Cross Blue Shield of Michigan is HITRUST CSF® Certified. The certification covers Electronic Data Interchange system and infrastructure.
HITRUST is an organization that’s responsible for creating and maintaining a comprehensive and flexible framework of prescriptive and scalable security controls in the health care sector, among others. HITRUST CSF Certification is frequently required by organizations that handle sensitive data, including protected health information or PHI.
We keep your protected health information, or PHI, safe according to state and federal regulations. We have the following measures in place to protect all verbal, written and electronic PHI:
When you use the internet to communicate with us, we make the following pledge:
If you purchased your own insurance on the Marketplace or you have a Medicare plan, you're entitled to access and share your health information. Learn about your ability to share and how Blue Cross Blue Shield of Michigan makes the process easier through a Patient Access Application Program Interface, or API.
Blue Cross collects information from users of our site. We use personal information to customize your internet transaction. Generally, we do not share with third parties the personal information you supply when conducting transactions on our website. And generally, unless you specifically key in personal information on our website, you browse our website anonymously, which means personal information is not collected. We may collect your personal information, such as name, address, etc., using a secure session when you initially register with us at this website or if you engage in a transaction that requires an electronic signature, for example.
In addition to personal information, we also gather information on the use of our website, including domain name, number of hits, pages visited, length of user session and so forth to evaluate the usefulness of our site.
When you use our online services, you may be asked to provide personal information that is necessary for us to process your request. To ensure your transaction remains confidential, the information is sent to us using an encrypted form in a "secure session" established with Secure Socket Layer (SSL). We also require the use of authentication, such as user ID and password, which allows us to verify your identity when you access our online services. Many of our sites also use multi-factor authentication and firewall technology to better protect your information.
Security tips
We do not offer encrypted email. As a result, when our website users send email inquiries to us, the return email address may be used to respond to the email inquiry. We do not use the return email address for any other purpose, nor will we share it with any third parties.
For private inquiries including those containing Protected Health Information, contact customer service.
We periodically conduct two types of surveys on our corporate website. General surveys on our site are randomly generated for all users. Specific surveys are offered to Blue Cross Blue Shield of Michigan members only within the secure member area.
We encourage you to participate in these surveys because they provide us with important information to improve the services we offer. Your personal information and responses remain strictly confidential. Participation in our surveys is voluntary.
All responses to our surveys are aggregated to create summarized results (such as gender, age or other demographic information). We then use the summarized results to improve the quality of our services to you.
A cookie is a piece of information that is sent to your browser along with a web page when you sign-on to a website. It is a unique identifier that a web server places on your computer. There are two types of cookies: (1) session cookies and (2) persistent cookies.
A session cookie is a text string (line of text) that is stored in computer memory temporarily. Session cookies are used to enable a website to track the pages you visit during a session so that information can be customized for you. Once you exit the website, the session cookie is destroyed.
Persistent cookies are small files used by a web server to deliver data to a web client (user); request that the client store the information; and in certain circumstances, return the information to the website. Websites can thus "remember" user information, such as their preferences for a particular website, and allow the use of user passwords. The website may deliver one or more cookies to the client. The client stores cookie data in one or more files on its local hard drive. In most cases the user can control a client browser to allow the use of cookies or disallow their use. Disallowing cookies may negatively impact intended functionality of web pages on this website.
Any site banner ads link you to areas of interest only within our website. We do not show banner ads for external websites.
We have links from our website to a number of different health care-related sites. We provide these links as a courtesy to help you find information. We are not responsible for the performance or content of sites linked from BCBSM.com since they are beyond our control. We recommend you read the privacy statements on the sites you visit to understand their individual privacy practices.
In compliance with the Children's Online Privacy Protection Act of 1998 (COPPA), we do not knowingly solicit data from children under 18 years of age and we do not knowingly market to children under 18 years of age.
We recognize that protecting children's identities and privacy online is important and that the responsibility to do so rests with both the online industry and with parents.
If you have any questions about our online privacy practices, call 313-225-9000.
If you are not a member and have never been a member, but have submitted personal information to us for individual and family coverage and would like it removed from our system, call 313-225-9000.
We reserve the right to revise, amend or modify our online privacy practices at any time and in any manner.
Learn more about the terms of use and privacy policy for using our mobile app.
Privacy issues: To report a concern or if you think your protected health information has been compromised, please call us at 1-800-552-8278 or email us. Don't include any protected health information in your email.
Other issues: For customer service, call the number on the back of your member ID card.