HIPAA Training

Size: px
Start display at page:

Download "HIPAA Training"

Transcription

1 HIPAA Training New Hire Orientation and General Training 1

2 This training is to ensure all Health Management workforce members (associates, contracted individuals, volunteers and students) understand our HIPAA policies and procedures to maintain the privacy and security of patient information. 2 11/9/2009 2

3 HIPAA is a broad law dealing with the privacy and security of health information: The Privacy Rule tells hospitals and physicians when and how they can use or disclose patient health information. The Security Rule tells hospitals and physicians how to protect health information from being inappropriately accessed, edited, or destroyed. 3 11/9/2009 3

4 Who are your HIPAA Officers? The HIPAA Privacy Officer is your HIM Director The HIPAA Security Officer is your Risk Manager 4 4

5 The first essential element of HIPAA: PHI Protected Health Information (PHI) is ALL PERSONAL HEALTH, BILLING AND DEMOGRAPHIC INFORMATION, IN ANY FORMAT (Oral, Paper, Picture or Electronic) CREATED OR HELD BY A COVERED ENTITY (hospital or physician, payer) (includes past, present and future healthcare) 5 11/9/2009 5

6 Minimum Necessary or need to know All members of the workforce contribute to the care of the patient. That doesn t mean everyone needs to see health information about patients. If you do not need to know confidential information to provide care (clinical or financial) you are NOT permitted to access it. This includes your PHI. 6 11/9/2009 6

7 Disciplinary Actions for Violations of HIPAA Policies & Procedures There are three different groups of disciplinary action depending on the violation. The following examples show what can happen if you do not protect our patients information correctly: 7 11/9/2009 7

8 Not signing off computer (with PHI) when leaving a work area. Inadvertent disclosure of PHI to the wrong patient Failure to follow o appropriate a guidelines es for the use of fax, mailing, , computer or other transmission of patient information causing a disclosure to an unintended recipient. 8 11/9/2009 8

9 Sharing your password with a coworker. Unauthorized access of information on a patient t you have no job-related responsibility for, including your friends, family, co-workers AND your own information! 9 11/9/2009 9

10 Using a co-worker s password without their knowledge. Disclosure of PHI which you have accessed, without authorization and when NOT involved in the care of the patient. Releasing any PHI for personal gain or releasing PHI with intent to harm the reputation of the individual or our organization. Accessing HIV test results, records of sexual or domestic abuse, drug and alcohol test results or other highly protected information when not involved in the care of those patients /9/

11 Our #1 Biggest Risk: Nosy Associates Aco-worker accesses information. The only reason was for curiosity regarding: A co-worker who is a patient A physician i who is a patient t A neighbor who is a patient Health Management has a zero tolerance for associates who access patient information without authorization! 11 11/9/

12 Actions that could cause a HIPAA violation Taking pictures of any patient s image, body part or X-ray with personal cell phone cameras (this will be grounds for termination) Unauthorized access of sensitive health information (HIV, Abuse, Psych records) Access of the associate s own patient t record in the computer system Sharing or stealing another co-worker s password for the computer systems Not verifying who you disclose patient information to (financial or clinical) and not confirming that the person requesting the information is authorized to receive it 12 11/9/

13 Where can I find our HIPAA policies and procedures? HIPAA Policy & Procedure Manuals are located: 1. On-line at your facility s Intranet site 2. On the home office intranet: t hma-info.com 13 11/9/

14 Steps you should take to protect patient privacy include: Respect the patient s information and condition the same way you would expect others to respect and care for yours. Close treatment room doors or use privacy curtains when discussing the care of a patient. Ensure that medical records are not left where others can see or gain access to them. Keep laboratory, radiology and other test results private. Make sure computer screens containing PHI are not visible to others not involved with the patient /9/

15 Destruction of paper containing patient t information Shred all patient information when it is to be discarded. Do not place anything with a patient s name or identifiers in the regular trash. Patient name bands Telemetry strips What about IV bags with med labels? If you can, peel off label. Label must be shredded or blacked-out with a marker /9/

16 Visitor Identification All associates should question visitors or other persons who are in restricted areas and are not escorted by an associate of the facility or are not displaying i proper identification. ifi i Vendors and contractors will be wearing their company ID in addition to hospital identification noting that they have permission to be in the building. All associates, volunteers and other workforce members must wear their identification badge as issued by the hospital /9/

17 IMPORTANT!! Every associate, physician and VIP admitted to our hospital will have their records reviewed for inappropriate access. Associates are not permitted to snoop in each other s patient information when they come into the hospital for care. Audit trails will document who was where in our systems and will document what the associate was accessing. This is performed by our HIPAA Officers (Privacy & Security). Your User ID will link to every item opened, read or printed /9/

18 The types of information that you are not permitted to access, acquire, use or disclose without authorization from the patient t include: 18 Medical information Name, address, phone number Social Security Number, date of birth Photo of any part of the patient s body, including X-ray images, whether or not they contain the patient s name Any information or data that could be used to identify the patient 11/9/

19 Notification to Patients Federal law now requires us to tell patients if someone has snooped into their information protected by HIPAA. We must also notify patients any time their protected health information was inappropriately disclosed d outside of the facility, or if it was stolen or breached. We are required to notify the patient in writing and report all breaches of PHI to the Federal Government /9/

20 Under the Notification Rule, a breach means the acquisition, access, use or disclosure of PHI which violates the HIPAA Privacy Rule and compromises the security or privacy of the PHI /9/

21 At any one time, if there are more than 500 patients who have their records snooped into or, if their protected health information is disclosed in any way outside of our facility, we must notify every patient and the Federal Government immediately. We may also need to notify the local media if 500 or more of the patients are from the same state /9/

22 Who do we need to notify if a breach of PHI is detected? All of the affected patients. t The Federal Government. Local media if 500 or more patients in the same area are affected /9/

23 Examples of Breaches Lost laptop p or PDA PHI left behind in the cafeteria, lounge, or public area Snooping in patient records without a need to know the information Cell phone pictures taken by associates that identify a patient or characteristics of a patient (x-ray or body part) PHI faxed to the wrong fax number, or ed to the wrong address Information intended for one patient handed to another patient (not verifying your work) /9/

24 Reporting deadlines for breach notifications Once we discover a breach of PHI, we have no more than 60 days (45 days in Florida) to comply with the Rule s notification requirement. You should immediately report all suspected PHI breaches to the Privacy Officer. The Privacy Officer will need to conduct a full investigation. Determination will need to be made if a breach occurred and notification is required /9/

25 What can you do to prevent a breach of PHI? Take 5 seconds to confirm the name of the patient and the document you want to generate or use is correct! Verify the fax # or address you are about to use is correct Double check that you have entered the numbers or letters correctly. Verify all auto dial numbers in the fax machines are entered correctly and you select the intended preprogrammed fax number. Use Fax coversheets; they are important safeguards 25

26 Increased HIPAA enforcement actions could directly affect you! If you are found to be responsible for any type of a HIPAA violation that the State Attorney General believes has threatened or in some way harmed a patient who is a resident of your State, you can be held responsible for your actions. The State Attorney General can bring a civil action in federal court against you! 26 11/9/

27 Conclusion We must all remember to protect the privacy and security of patient information at all times. We are all patients from time to time. How would you feel if your own health information was used or disclosed in a way that was harmful to you or your family? If you have a question about HIPAA, ask your supervisor or your Privacy Officer /9/

28 Reporting known or suspected HIPAA violations We expect all associates to adhere to the HIPAA policies, i but we know there may be times when the policy is being abused. You should report HIPAA violations or suspected violations to your supervisor or to your Privacy Officer. You may report anonymously, if you wish. Health Management Compliance Helpline: Health Management Associates, PO Box , Naples, FL You will not be retaliated against if you report a privacy violation. It is part of your job to report instances where you suspect policies are being broken /9/

29 Thank you for your attention. Please follow the instructions below: Please complete the Affirmation Statement at the end of this training! 29 11/9/

HIPAA and HITECH: Privacy and Security of Protected Health Information

HIPAA and HITECH: Privacy and Security of Protected Health Information HIPAA and HITECH: Privacy and Security of Protected Health Information What is HIPAA? Health Insurance Portability and Accountability Act of 1996 A federal law enacted to: Protect the privacy of a patient

More information

The Privacy & Security of Protected Health Information

The Privacy & Security of Protected Health Information The Privacy & Security of Protected Health Information By the end of this course, you should: Be familiar with the patient s rights to privacy under HIPAA Privacy Act Be able to identify Protected Health

More information

MCCP Online Orientation

MCCP Online Orientation 1 Objectives At the conclusion of this presentation, students will be able to: Discuss application of HIPAA to student s role. Describe the federal requirements of the HIPAA/HITECH regulations that protect

More information

HIPAA Privacy Training for Non-Clinical Workforce

HIPAA Privacy Training for Non-Clinical Workforce Office of Compliance Programs HIPAA Privacy Training for Non-Clinical Workforce Revised: January 24, 2017 HIPAA Privacy Workforce Training The Health Insurance Portability & Accountability Act (HIPAA)

More information

Updated FY15 Dignity Health General Compliance Education for Staff Module 2

Updated FY15 Dignity Health General Compliance Education for Staff Module 2 Updated FY15 Dignity Health General Compliance Education for Staff Module 2 This course will provide you with important information about the laws and regulations that affect the healthcare industry, our

More information

Privacy and Security For Teammates

Privacy and Security For Teammates Privacy and Security For Teammates This self-directed learning module contains information all CRHS Teammates are expected to know in order to protect our patients, our guests, and ourselves. Target Audience:

More information

Information Privacy and Security

Information Privacy and Security Information Privacy and Security 2015 Purpose of HIPAA HIPAA stands for the Health Insurance Portability and Accountability Act. Its purpose is to establish nationwide protection of patient confidentiality,

More information

Privacy and Security Compliance: The. Date Presenter Name of Member Organization

Privacy and Security Compliance: The. Date Presenter Name of Member Organization Privacy and Security Compliance: The Basics Date Presenter Name of Member Organization Privacy and Security Compliance: The Context for What We Do Privacy and Security compliance within (your office) is

More information

HIPAA Health Insurance Portability and Accountability Act of 1996

HIPAA Health Insurance Portability and Accountability Act of 1996 HIPAA Health Insurance Portability and Accountability Act of 1996 Protected Health Information (PHI) Covers patient information in any form written, verbal, or electronic PHI Includes Any information that

More information

Title: HIPAA PRIVACY ADMINISTRATIVE

Title: HIPAA PRIVACY ADMINISTRATIVE Administrative-HIPAA Privacy Title: HIPAA PRIVACY ADMINISTRATIVE Scope: All MultiCare Health System (MHS) workforce members, which includes but not limited to, employees, residents, students, volunteers

More information

Advanced HIPAA Communications and University Relations

Advanced HIPAA Communications and University Relations Advanced HIPAA Communications and University Relations accepts no liability of any use reliance placed on it, as it is warranty, express, or implied, or completeness of 1 the HIPAA Health Insurance Portability

More information

Compliance Program, Code of Conduct, and HIPAA

Compliance Program, Code of Conduct, and HIPAA Compliance Program, Code of Conduct, and HIPAA Agenda Introduction to Compliance The Compliance Program Code of Conduct Reporting Concerns HIPAA Why have a Compliance Program Procedures to follow applicable

More information

Protecting Patient Privacy It s Everyone s Responsibility

Protecting Patient Privacy It s Everyone s Responsibility 1 of 27 Protecting Patient Privacy It s Everyone s Responsibility This presentation is comprised of 27 screens. When you have finished reading a screen, click your mouse to continue to the next screen.

More information

HIPAA Privacy Rule. Best PHI Privacy Practices

HIPAA Privacy Rule. Best PHI Privacy Practices HIPAA Privacy Rule Best PHI Privacy Practices Learning Objectives Define the acronym HIPAA. Understand your role and responsibilities under the privacy regulations. Know what patient s rights are in terms

More information

Student Orientation: HIPAA Health Insurance Portability & Accountability Act

Student Orientation: HIPAA Health Insurance Portability & Accountability Act _ Student Orientation: HIPAA Health Insurance Portability & Accountability Act HIPAA: National Privacy Law History of HIPAA What was once an ethical responsibility to protect a patient s privacy is now

More information

HIPAA THE PRIVACY RULE

HIPAA THE PRIVACY RULE HIPAA THE PRIVACY RULE Reviewed December 2012 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of antidepressant medications in their mail. 2 HISTORY Many

More information

Breach Reporting and Safeguarding PHI Outpatient Services August, UAMS HIPAA Office Anita Westbrook

Breach Reporting and Safeguarding PHI Outpatient Services August, UAMS HIPAA Office Anita Westbrook Breach Reporting and Safeguarding PHI Outpatient Services August, 2012 UAMS HIPAA Office Anita Westbrook Breaches and Breach Reporting Real Life Example An employee of a large hospital accidentally left

More information

Health Information Privacy Policies and Procedures

Health Information Privacy Policies and Procedures University of the Pacific Arthur A. Dugoni School of Dentistry Health Information Privacy Policies and s These Health Information Privacy Policies & s implement our obligations to protect the privacy of

More information

System Office New Hire Orientation

System Office New Hire Orientation System Office New Hire Orientation Integrity & Compliance Program Jennifer Munro, MA 2, CHC Manager, Integrity & Compliance Education, Communication & Hotline System Integrity & Audit Services munrojl@trinity-health.org

More information

What is HIPAA? Purpose. Health Insurance Portability and Accountability Act of 1996

What is HIPAA? Purpose. Health Insurance Portability and Accountability Act of 1996 Patient Privacy and HIPAA/HITECH What is HIPAA? Health Insurance Portability and Accountability Act of 1996 Implemented in 2003 Title II Administrative Simplification It s a federal law HIPAA is mandatory,

More information

Study Management PP STANDARD OPERATING PROCEDURE FOR Safeguarding Protected Health Information

Study Management PP STANDARD OPERATING PROCEDURE FOR Safeguarding Protected Health Information PP-501.00 SOP For Safeguarding Protected Health Information Effective date of version: 01 April 2012 Study Management PP 501.00 STANDARD OPERATING PROCEDURE FOR Safeguarding Protected Health Information

More information

HIPAA PRIVACY TRAINING

HIPAA PRIVACY TRAINING HIPAA PRIVACY TRAINING HIPAA Privacy Training Objective Present a general overview of HIPAA and define important terms Understand the purpose of HIPAA and the Privacy Rule Understand the term Protected

More information

A general review of HIPAA standards and privacy practices 2016

A general review of HIPAA standards and privacy practices 2016 A general review of HIPAA standards and privacy practices 2016 45 CFR, 164 Health Insurance Portability and Accountability Act Treatment, Payment and Healthcare Operations 42 CFR, Part 2, Confidentiality

More information

HIPAA PRIVACY DIRECTIONS. HIPAA Privacy/Security Personal Privacy. What is HIPAA?

HIPAA PRIVACY DIRECTIONS. HIPAA Privacy/Security Personal Privacy. What is HIPAA? DIRECTIONS HIPAA Privacy/Security Personal Privacy 1. Read through entire online training presentation 2. Close the presentation and click on Online Trainings on the Intranet home page 3. Click on the

More information

Privacy and Security Orientation for Visiting Observers. DUHS Compliance Office

Privacy and Security Orientation for Visiting Observers. DUHS Compliance Office Privacy and Security Orientation for Visiting Observers DUHS Compliance Office 919-668-2573 compliance@dm.duke.edu Introduction This orientation is to provide new Visiting Observers with the HIPAA Privacy

More information

CLINICIAN S GUIDE TO HIPAA PRIVACY

CLINICIAN S GUIDE TO HIPAA PRIVACY CLINICIAN S GUIDE TO HIPAA PRIVACY Introduction... 2 What is HIPAA?... 2 Health Information Privacy... 2 Protected Health Information... 3 Identifiers... 3 HIPAA s Impact on Clinical Practice, Treatment,

More information

HIPAA Education Program

HIPAA Education Program HIPAA Education Program 2017-2018 Assurance and Compliance Services HIPAA Training Requirement This HIPAA Training Program is intended for and will satisfy the training requirement for the: Mount Sinai

More information

This notice describes Florida Hospital DeLand s practices and that of: All departments and units of Florida Hospital DeLand.

This notice describes Florida Hospital DeLand s practices and that of: All departments and units of Florida Hospital DeLand. MRN: FIN: FLORIDA HOSPITAL DELAND HIPAA NOTICE OF PRIVACY PRACTICES Effective Date: September 23, 2013 THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN

More information

It defines basic terms and lists basic principles that all LSUHSC-NO faculty, staff, residents and students must understand and follow.

It defines basic terms and lists basic principles that all LSUHSC-NO faculty, staff, residents and students must understand and follow. Office of Compliance Programs Revised: July 18, 2017 HIPAA Privacy HIPAA Privacy Workforce Training The Health Insurance Portability & Accountability Act (HIPAA) requires that the University train all

More information

Health Insurance Portability and Accountability Act. Awareness Training for Volunteers

Health Insurance Portability and Accountability Act. Awareness Training for Volunteers Health Insurance Portability and Accountability Act Awareness Training for Volunteers Southeastern Health Southeastern Health has a strong tradition of protecting the privacy of patient information. Confidentiality

More information

WHAT IS HIPAA? HIPAA is the ELECTRONIC transmission of Three programs have been enacted to date Privacy Rule April 2004

WHAT IS HIPAA? HIPAA is the ELECTRONIC transmission of Three programs have been enacted to date Privacy Rule April 2004 Rev. 1/22/2010 HIPAA TRAINING WHAT IS HIPAA? Health Insurance Portability and Accountability Act HIPAA is the ELECTRONIC transmission of Three programs have been enacted to date Privacy Rule April 2004

More information

HIPAA Notice of Privacy Practices

HIPAA Notice of Privacy Practices HIPAA Notice of Privacy Practices Georgia Mountains Hospice understands that your health information is highly personal and we are committed to safeguarding your privacy. Please read this Notice of Privacy

More information

Compliance & Privacy For Teammates

Compliance & Privacy For Teammates Carolinas HealthCare System 2014 Annual Continuing Education Module Compliance & Privacy For Teammates This self-directed learning module contains information all Carolinas HealthCare System Teammates

More information

Returning Volunteer Application

Returning Volunteer Application Returning Volunteer Application Office Use Only Application Received Brenda LeBlanc, Volunteer Coordinator 978-683-4000 x2645 Brenda.leblanc@lawrencegeneral.org Welcome! Returning Volunteers, Before returning,

More information

FEDERAL AND STATE BREACH NOTIFICATION LAWS FOR CALIFORNIA

FEDERAL AND STATE BREACH NOTIFICATION LAWS FOR CALIFORNIA FEDERAL AND STATE BREACH NOTIFICATION LAWS FOR CALIFORNIA LEGAL CITATION California Civil Code Section 1798.82 California Health and Safety (H&S) Code Section 1280.15 42 U.S.C. Section 17932; 45 C.F.R.

More information

The University of Toledo. Corporate Compliance and HIPAA Training. Presented by: The Compliance and Privacy Office

The University of Toledo. Corporate Compliance and HIPAA Training. Presented by: The Compliance and Privacy Office The University of Toledo Corporate Compliance and HIPAA Training Presented by: The Compliance and Privacy Office Topics Compliance HIPAA (Health Insurance Portability and Accountability Act) FERPA( Family

More information

Safeguarding PHI Nutrition Services. UAMS HIPAA Office May 2015

Safeguarding PHI Nutrition Services. UAMS HIPAA Office May 2015 Safeguarding PHI Nutrition Services UAMS HIPAA Office May 2015 HIPAA (not HIPPA) What is HIPAA? The Health Insurance Portability and Accountability Act is a federal law that protects the privacy and security

More information

Compliance & Privacy For Teammates

Compliance & Privacy For Teammates Carolinas HealthCare System 2015 Annual Continuing Education Module Compliance & Privacy For Teammates This self-directed learning module contains information all Carolinas HealthCare System Teammates

More information

HIPAA. Health Insurance Portability and Accountability Act. Presented by the UMMC Office of Integrity and Compliance

HIPAA. Health Insurance Portability and Accountability Act. Presented by the UMMC Office of Integrity and Compliance HIPAA Health Insurance Portability and Accountability Act Presented by the UMMC Office of Integrity and Compliance Rules and Regulations to ensure Privacy Set Federally recognized standards to ensure both

More information

Health Insurance Portability and Accountability Act (HIPAA)

Health Insurance Portability and Accountability Act (HIPAA) HIPPA Review Health Insurance Portability and Accountability Act (HIPAA) What is HIPAA: Stands for Health Insurance Portability and Accountability Act Addresses three areas: 1. Insurance portability 2.

More information

East Carolina University 2010 Annual HIPAA Privacy Training

East Carolina University 2010 Annual HIPAA Privacy Training East Carolina University 2010 Annual HIPAA Privacy Training What are the HIPAA Privacy and Security Rules? Federal laws that govern the use and disclosure of health information of our patients and research

More information

What is your start date? (Date in which you plan to begin seeing patients in the hospital). Specialty SECTION I. IDENTIFICATION DATA

What is your start date? (Date in which you plan to begin seeing patients in the hospital). Specialty SECTION I. IDENTIFICATION DATA This Application is for Non-employed Clinical Assistants (RN, dental assistant, orthotist, etc) who wish to assist a supervising physician at one or more of our facilities. Advanced Practice Nurses (CRNA,

More information

Reporting a Privacy Breach to the Commissioner

Reporting a Privacy Breach to the Commissioner SEPTEMBER 2017 Reporting a Privacy Breach to the Commissioner GUIDELINES FOR THE HEALTH SECTOR To strengthen the privacy protection of personal health information, the Ontario government has amended the

More information

Compliance Program Updated August 2017

Compliance Program Updated August 2017 Compliance Program Updated August 2017 Table of Contents Section I. Purpose of the Compliance Program... 3 Section II. Elements of an Effective Compliance Program... 4 A. Written Policies and Procedures...

More information

PRIVACY POLICIES AND PROCEDURES

PRIVACY POLICIES AND PROCEDURES Vinay M. Reddy, M.D., Ethelynda Jaojoco, M.D. Karen D. Cain, PA-C Julie J. Stackhouse, PA-C Jacie Touart, PA-C Brian Vaccarezza, PA-C Physical Medicine & Rehabilitation Electrodiagnostic Medicine Disorders

More information

Failure to comply may result in WU being liable for civil and criminal penalties under the HIPAA regulations.

Failure to comply may result in WU being liable for civil and criminal penalties under the HIPAA regulations. HIPAA Privacy Procedure #1 Effective Date: April 14. 2003 Reviewed Date: February, 2011 Accountabilities for Compliance to HIPAA Privacy Revised Date: February, 2011 Rules Scope: Radiation Oncology ************************************************************************************************

More information

Internship Application x2645

Internship Application x2645 Internship Application 978-683-4000 x2645 Office Use Only Application Received Interview Orientation CORI TB1 TB2 Pin # Entered in Volgistics FLU PERSONAL INFORMATION First Name Last Name Street Address

More information

Presented by the UAMS HIPAA Office August 2013 Anita B. Westbrook

Presented by the UAMS HIPAA Office August 2013 Anita B. Westbrook HIPAA and Social Media and other PHI Safeguards Presented by the UAMS HIPAA Office August 2013 Anita B. Westbrook Social Networking Let s Talk Facebook More than 750 million users Average user has 130

More information

PREA AUDIT: AUDITOR S SUMMARY REPORT 1 COMMUNITY CONFINEMENT FACILITIES

PREA AUDIT: AUDITOR S SUMMARY REPORT 1 COMMUNITY CONFINEMENT FACILITIES PREA AUDIT: AUDITOR S SUMMARY REPORT COMMUNITY CONFINEMENT FACILITIES Name of facility: OhioLink-Lima Physical address: 517 S. Main Street, Lima, Ohio 45801 Date report submitted: Auditor Information Address:

More information

2018 Employee HIPAA Orientation (EHO) Handbook

2018 Employee HIPAA Orientation (EHO) Handbook 2018 Employee HIPAA Orientation (EHO) Handbook Using EHO The material in this booklet is designed to provide newly hired employees with an understanding of HIPAA s regulations and their impact on the employee

More information

HIPAA Privacy & Security Training

HIPAA Privacy & Security Training HIPAA Privacy & Security Training for Nonclinicians Introduction As a Duke Medicine workforce member you may have access to patients and patient information and you have a legal and ethical obligation

More information

Compliance & Privacy Post Test

Compliance & Privacy Post Test Compliance & Privacy Post Test 1. One of your family members recently had a procedure at the CHS facility where you work. You want to find out the results. What should you do? a. Use your access rights

More information

MURRAY MEDICAL CENTER HIPAA NOTICE OF PRIVACY PRACTICES

MURRAY MEDICAL CENTER HIPAA NOTICE OF PRIVACY PRACTICES CW CR 618 Exhibit A MURRAY MEDICAL CENTER HIPAA NOTICE OF PRIVACY PRACTICES Effective Date: THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS

More information

PRIVACY BREACH MANAGEMENT POLICY

PRIVACY BREACH MANAGEMENT POLICY \(.kon Education Education PRIVACY BREACH MANAGEMENT POLICY Effective Date: September 1, 2016 GENERAL INFORMATION Under the Access to Information and Protection of Privacy Act (A TIPP Act) public bodies

More information

Chapter 9 Legal Aspects of Health Information Management

Chapter 9 Legal Aspects of Health Information Management Chapter 9 Legal Aspects of Health Information Management EXERCISE 9-1 Legal and Regulatory Terms 1. T 2. F 3. F 4. F 5. F EXERCISE 9-2 Maintaining the Patient Record in the Normal Course of Business 1.

More information

Section: Medical Staff Office Page: 1 of 2

Section: Medical Staff Office Page: 1 of 2 Section: Medical Staff Office Page: 1 of 2 Subject: Job Shadowers and Observers Not Covered Under Clinical Affiliation Agreement Executive Owner: Chief Medical Officer Original Policy: 6/4/13 Current Effective

More information

Protecting PHI for Clinical Staff and Students

Protecting PHI for Clinical Staff and Students Office of Compliance Programs Protecting PHI for Clinical Staff and Students Revised: July 24, 2017 Introduction HIPAA requires that LSUHSC-NO "have in place appropriate administrative, technical, and

More information

AUDIT DEPARTMENT UNIVERSITY MEDICAL CENTER HIPAA COMPLIANCE. For the period October 2008 through May JEREMIAH P. CARROLL II, CPA Audit Director

AUDIT DEPARTMENT UNIVERSITY MEDICAL CENTER HIPAA COMPLIANCE. For the period October 2008 through May JEREMIAH P. CARROLL II, CPA Audit Director UNIVERSITY MEDICAL CENTER HIPAA COMPLIANCE For the period October 2008 through May 2009 JEREMIAH P. CARROLL II, CPA Audit Director Audit Department 500 S Grand Central Pkwy Ste 5006 PO Box 551120 Las Vegas

More information

HIPAA Privacy Policies & Procedures Table of Contents

HIPAA Privacy Policies & Procedures Table of Contents HIPAA POCKET GUIDE HIPAA Privacy Policies & Procedures Table of Contents I. Clinical Policies A. Accounting of Disclosures..Pg 6 B. De-Identification of Information..Pg 7 C. Facility Directory...Pg 7

More information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES NOTICE OF PRIVACY PRACTICES Effective Date: 2013 Wisconsin Dental Association (800) 243-4675 THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS

More information

New Employee Orientation HIPAA Privacy. Marcia Matthias, MJ, RHIA, CHPC Corporate Director, Health Information/Privacy Officer

New Employee Orientation HIPAA Privacy. Marcia Matthias, MJ, RHIA, CHPC Corporate Director, Health Information/Privacy Officer New Employee Orientation HIPAA Privacy Marcia Matthias, MJ, RHIA, CHPC Corporate Director, Health Information/Privacy Officer Definitions HIPAA Health Insurance Portability and Accountability Act PHI Protected

More information

HIPAA Compliance and Health IT

HIPAA Compliance and Health IT HIPAA Compliance and Health IT Joel Benware Anne Cramer, Esq. Jim Sheldon-Dean 1 Joel Benware Compliance Officer at Northwestern Medical Center (NMC) in St. Albans, Vt. o o Reports directly to the NMC

More information

HIPAA Privacy & Security Training

HIPAA Privacy & Security Training HIPAA Privacy & Security Training for Clinicians Introduction As a clinician at Duke Medicine, you have direct access to patients and patient information and a legal and ethical obligation to protect patient

More information

USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION: HIPAA PRIVACY POLICY

USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION: HIPAA PRIVACY POLICY Page Number 1 of 8 TITLE: PURPOSE: USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION: HIPAA PRIVACY POLICY To assure that individually identifiable health information contained in any University Health

More information

PATIENT INFORMATION Please Print

PATIENT INFORMATION Please Print PATIENT INFORMATION Please Print DATE Patient s Last Name First Name Middle Name Suffix Gender: q Male q Female Social Security Number of Birth Race Ethnic Group: q Hispanic q Non-Hispanic q Unknown Preferred

More information

Notice of Privacy Practices

Notice of Privacy Practices Notice of Privacy Practices, pg. 1 of 5 Notice of Privacy Practices CATHOLIC CHARITIES OF THE ROMAN CATHOLIC DIOCESE OF SYRACUSE, NY This notice describes the privacy practices of Catholic Charities of

More information

STANDARDS OF CONDUCT A MESSAGE FROM THE CHANCELLOR INTRODUCTION COMPLIANCE WITH THE LAW RESEARCH AND SCIENTIFIC INTEGRITY CONFLICTS OF INTEREST

STANDARDS OF CONDUCT A MESSAGE FROM THE CHANCELLOR INTRODUCTION COMPLIANCE WITH THE LAW RESEARCH AND SCIENTIFIC INTEGRITY CONFLICTS OF INTEREST STANDARDS OF CONDUCT A MESSAGE FROM THE CHANCELLOR Dear Faculty and Staff: At Vanderbilt University, patients, students, parents and society at-large have placed their faith and trust in the faculty and

More information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES NOTICE OF PRIVACY PRACTICES Effective Date: May 31, 2013 THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW

More information

Your Role in Protecting Patient Privacy 2018

Your Role in Protecting Patient Privacy 2018 Your Role in Protecting Patient Privacy 2018 1 Training Focus This training will focus on what responsibilities you have in order to ensure that both you and our organization are in compliance with state

More information

VHA Privacy Policy Training FY VHA Privacy Office

VHA Privacy Policy Training FY VHA Privacy Office VHA Privacy Policy Training Applicable Confidentiality Statutes and Regulations The following legal provisions govern the collection, use, maintenance, and disclosure of information from VHA records. The

More information

STUDENT VOLUNTEER APPLICATION *Minimum Age for volunteers is 16*

STUDENT VOLUNTEER APPLICATION *Minimum Age for volunteers is 16* STUDENT VOLUNTEER APPLICATION *Minimum Age for volunteers is 16* CONTACT INFORMATION Name: Date: Address: Home Phone: Cell Phone: Email: Over 16? Over 18? EMERGENCY CONTACT INFORMATION Emergency Contact:

More information

HIPAA HAZARDS & SOCIAL MEDIA SNAFUS NARHC MARCH 20, 2018 MARGARET SCAVOTTO, JD, CHC MPA ST. LOUIS, MO

HIPAA HAZARDS & SOCIAL MEDIA SNAFUS NARHC MARCH 20, 2018 MARGARET SCAVOTTO, JD, CHC MPA ST. LOUIS, MO HIPAA HAZARDS & SOCIAL MEDIA SNAFUS NARHC MARCH 20, 2018 MARGARET SCAVOTTO, JD, CHC MPA ST. LOUIS, MO EXPECT THE UNEXPECTED SNOOPING EMPLOYEES WILL BE TEMPTED TO SNOOP MEDICAL RECORDS. SNOOPING A nurse

More information

Williamson County EMS (WCEMS) HIPAA Training for Third Out Riders

Williamson County EMS (WCEMS) HIPAA Training for Third Out Riders Williamson County EMS (WCEMS) HIPAA Training for Third Out Riders Training Statement: This training program is designed to educate you on WCEMS legal requirements to protect our patients rights and confidentiality,

More information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES Our Responsibilities Notice of Privacy Practices - Page 1 NOTICE OF PRIVACY PRACTICES Our Responsibilities. Your Information. Your Rights. This Notice of Privacy Practices ( Notice ) explains how University

More information

WRAPPING YOUR HEAD AROUND HIPAA PRIVACY REQUIREMENTS

WRAPPING YOUR HEAD AROUND HIPAA PRIVACY REQUIREMENTS WRAPPING YOUR HEAD AROUND HIPAA PRIVACY REQUIREMENTS Jeffrey Staton Attorney at Law Legal Aid Society of Louisville 416 W. Muhammad Ali Blvd., Ste. 300 Louisville, KY 40202 Phone: 502.614.3146 Jstaton@laslou.org

More information

Southwest Acupuncture College /PWFNCFS

Southwest Acupuncture College /PWFNCFS Southwest Acupuncture College /PWFNCFS This replaces policies in the catalogue and any other documents to date. Boulder Santa Fe TABLE OF CONTENTS STATEMENT OF PURPOSE... 1 I. RIGHT TO A NOTICE OF PRIVACY

More information

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES Effective April 14, 2003 Revised February 17, 2010 Revised September 23, 2013 Revised July 1, 2016 This Notice of Privacy Practices applies to the

More information

IVAN FRANKO HOME Пансіон Ім. Івана Франка

IVAN FRANKO HOME Пансіон Ім. Івана Франка THE IVAN FRANKO HOME S COMMITMENT TO PRIVACY PRIVACY STATEMENT The Ivan Franko Home respects this privacy of our residents, employees, Directors, volunteers and donors. We are committed to ensuring that

More information

REVISED NOTICE OF PRIVACY PRACTICES ORIGINAL DATE: JANUARY 1, 2003 REVISED: JANUARY 16, 2014 REVISED: NOVEMBER 27, 2017 PLEASE REVIEW IT CAREFULLY

REVISED NOTICE OF PRIVACY PRACTICES ORIGINAL DATE: JANUARY 1, 2003 REVISED: JANUARY 16, 2014 REVISED: NOVEMBER 27, 2017 PLEASE REVIEW IT CAREFULLY REVISED NOTICE OF PRIVACY PRACTICES ORIGINAL DATE: JANUARY 1, 2003 REVISED: JANUARY 16, 2014 REVISED: NOVEMBER 27, 2017 THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED

More information

The Purpose of this Code of Conduct

The Purpose of this Code of Conduct The Purpose of this Code of Conduct This Code of Conduct provides a framework to guide us in meeting our obligations as employees and volunteers of HPC Healthcare, Inc., and its current and future affiliates,

More information

Notice of Privacy Practices

Notice of Privacy Practices Notice of Privacy Practices Effective September 23, 2013 TCHC.org An equal opportunity employer and provider. CLINICS Baxter Bertha Henning Ottertail Sebeka Verndale Wadena HOSPITAL Wadena 415 Jefferson

More information

Understanding the Privacy and Security Regulations

Understanding the Privacy and Security Regulations Omnibus Rule Update HIPAA Handbook for Long-Term Care Staff Understanding the Privacy and Security Regulations Kate Borten, CISSP, CISM Handbook for Long-Term Care Staff Understanding the Privacy and Security

More information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES NOTICE OF PRIVACY PRACTICES THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY. WHY ARE YOU GETTING

More information

HOSTING RESEARCH VOLUNTEERS AT MAIMONIDES MEDICAL CENTER. Instructions and Forms

HOSTING RESEARCH VOLUNTEERS AT MAIMONIDES MEDICAL CENTER. Instructions and Forms HOSTING RESEARCH VOLUNTEERS AT MAIMONIDES MEDICAL CENTER Instructions and Forms Research volunteers provide important contributions to clinicians conducting research at Maimonides Medical Center. If you

More information

Medical Records Ch. 13. Dr. Thorson

Medical Records Ch. 13. Dr. Thorson Medical Records Ch. 13 Dr. Thorson Lesson Objectives Lesson Objectives Upon completion of this lesson, students should be able to: 1.Define and spell the terms to learn for this chapter. 2.Discuss ownership

More information

HIPAA for CNAs. This course has been awarded one (1.0) contact hour. This course expires on May 31, 2020.

HIPAA for CNAs. This course has been awarded one (1.0) contact hour. This course expires on May 31, 2020. HIPAA for CNAs This course has been awarded one (1.0) contact hour. This course expires on May 31, 2020. Copyright 2015 by RN.com. All Rights Reserved. Reproduction and distribution of these materials

More information

SUMMARY OF NOTICE OF PRIVACY PRACTICES

SUMMARY OF NOTICE OF PRIVACY PRACTICES LAKE REGIONAL MEDICAL GROUP 54 HOSPITAL DRIVE OSAGE BEACH, MO 65065 SUMMARY OF NOTICE OF PRIVACY PRACTICES THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU

More information

EMPLOYEE HANDBOOK EMPLOYEE HANDBOOK. Code of Conduct

EMPLOYEE HANDBOOK EMPLOYEE HANDBOOK. Code of Conduct EMPLOYEE HANDBOOK EMPLOYEE HANDBOOK L E A D I N G T E A C H I N G C A R I N G CODE OF CON DUCT Who We Are and What We Stand For In 2016, UNC Health Care adopted a system-wide. The purpose of this is to

More information

Patient Privacy Requirements Beyond HIPAA

Patient Privacy Requirements Beyond HIPAA Patient Privacy Requirements Beyond HIPAA Jane Hyatt Thorpe, J.D. School of Public Health and Health Services George Washington University Carrie Bill, J.D. Feldesman Tucker Leifer Fidell LLP The George

More information

Resident/Fellow Training Orientation Policies

Resident/Fellow Training Orientation Policies Resident/Fellow Training Orientation Policies Restraint or Seclusion: Violent Behavior Prevention and Reporting of Patient Abuse Blood Component Indications & Critical Tests HIPAA Privacy and Security

More information

Piedmont Healthcare, Inc. Code of Conduct

Piedmont Healthcare, Inc. Code of Conduct Piedmont Healthcare, Inc. Code of Conduct You are part of the Piedmont Healthcare family, a group of talented and dedicated people who take pride in what you do and are committed to our patients and our

More information

PERSONALLY IDENTIFIABLE INFORMATON (PII)

PERSONALLY IDENTIFIABLE INFORMATON (PII) PERSONALLY IDENTIFIABLE INFORMATON (PII) 1 PII - REFERENCES DOD 5400.11-R, DoD Privacy Act Program, May 07 OSD Memo, Subj: Safeguarding Against and Responding to the Breach of Personally Identifiable Information,

More information

Parental Consent For Minors to Receive Services

Parental Consent For Minors to Receive Services Parental Consent For Minors to Receive Services Welcome to the University of San Diego s Wellness Area! We appreciate your coming our way, and look forward to working with you. The following provides important

More information

JOINT NOTICE OF PRIVACY PRACTICES

JOINT NOTICE OF PRIVACY PRACTICES JOINT NOTICE OF PRIVACY PRACTICES THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED, AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY. respects

More information

1303A West Campus Drive

1303A West Campus Drive Page 1 of 5 Applies to: faculty staff student clinicians Effective Date of This Revision: April 6, 2005 student employees visitors contractors Contact for More Information: HIPAA Chief Privacy Officer

More information

Alignment. Alignment Healthcare

Alignment. Alignment Healthcare Alignment CODE OF CONDUCT Alignment Healthcare Our commitment to ethical conduct and compliance depends on all Alignment Healthcare personnel. If you find yourself in an ethical dilemma or suspect inappropriate

More information

If you have any questions about this notice, please contact our privacy officer Dr. Jev Sikes at

If you have any questions about this notice, please contact our privacy officer Dr. Jev Sikes at Notice of Privacy Practices For Deep Eddy Psychotherapy THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT

More information

CAPITAL SURGEONS GROUP, PLLC

CAPITAL SURGEONS GROUP, PLLC CAPITAL SURGEONS GROUP, PLLC NOTICE OF PRIVACY PRACTICES THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW

More information

DO ASK BUT DON T TELL HIPAA PRIVACY RULE

DO ASK BUT DON T TELL HIPAA PRIVACY RULE DO ASK BUT DON T TELL HIPAA PRIVACY RULE HITECH/OMNIBUS FINAL RULE HIPAA enacted in 1996; compliance required April 14, 2003 for the Privacy Rule and April 21, 2005 for the Security Rule surrounding electronic

More information

PRIVACY BREACH MANAGEMENT GUIDELINES. Ministry of Justice Access and Privacy Branch

PRIVACY BREACH MANAGEMENT GUIDELINES. Ministry of Justice Access and Privacy Branch Ministry of Justice Access and Privacy Branch December 2015 Table of Contents December 2015 What is a privacy breach? 3 Preventing privacy breaches 3 Responding to privacy breaches 4 Step 1 Contain the

More information