Massachusetts Department of Public Health. Privacy of Health Data

Similar documents
New Patient Information

JOINT NOTICE OF PRIVACY PRACTICES

HIPAA in DPH. HIPAA in the Division of Public Health. February 19, February 19, 2003 Division of Public Health 1

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES

Privacy Rio Grande Valley HIE Policy: P1. Last date Revised/Updated 02/18/2016

PATIENT NOTICE OF PRIVACY PRACTICES Effective Date: June 1, 2012 Updated: May 9, 2017

ADVANCED PLASTIC SURGERY, PLLC. NOTICE OF PRIVACY PRACTICES

SUMMARY OF THE CIRCUMSTANCES AND PURPOSES FOR WHICH YOUR HEALTH INFORMATION MAY BE USED AND DISCLOSED

NOTICE OF PRIVACY PRACTICES MOUNT CARMEL HEALTH SYSTEM

Balance Fitness and Nutrition

PEDIATRIC HEALTH ASSOCIATES HIPAA NOTICE OF PRIVACY PRACTICES

PRIVACY POLICY USES AND DISCLOSURES FOR TREATMENT, PAYMENT, AND HEALTH CARE OPERATIONS

Payment: We are permitted to use and disclose your health information to receive payment for our services. For example, we may:

always legally required to follow the privacy practices described in this Notice.

Notice of Health Information Privacy Practices Acknowledgement

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES

NOTICE OF HOSPICE EL PASO S PRIVACY PRACTICES

Catholic Charities Disabilities Services. In-Home Behavioral Support Services (2017)

NOTICE OF PRIVACY PRACTICE UNIVERSITY OF CALIFORNIA SAN FRANCISCO DENTAL CENTER

A Better You Counseling Services, LLC 1225 Johnson Ferry Road, Ste 170 Marietta GA

Notice of Privacy Practices

This notice describes Florida Hospital DeLand s practices and that of: All departments and units of Florida Hospital DeLand.

CAPITAL SURGEONS GROUP, PLLC

NOTICE OF PRIVACY PRACTICES UNIVERSITY OF CALIFORNIA RIVERSIDE CAMPUS HEALTH CENTER

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES

Practice Limited to Infants, Children, & Adolescents

GRAVES-GILBERT CLINIC NOTICE OF CURRENT PRIVACY PRACTICES

SUMMARY OF NOTICE OF PRIVACY PRACTICES

MURRAY MEDICAL CENTER HIPAA NOTICE OF PRIVACY PRACTICES

Advanced Oral & Maxillofacial Surgery, Ltd. NOTICE OF PRIVACY PRACTICES

Joseph Bikowski, M.D., Associates

OAK HAMMOCK AT THE UNIVERSITY OF FLORIDA, INC. NOTICE OF PRIVACY PRACTICES. Privacy Office: (352) Effective Date: September 23, 2013

NOTICE OF PRIVACY PRACTICES

Patient Registration Form Pediatrics

Catholic Charities Disabilities Services 2017 Family Reimbursement Grant For Respite Funds 1 Park Place, Suite 200 Albany, NY (518)

Accommodate reasonable requests you may have to communicate health information by alternative means or at alternative locations.

NOTICE OF PRIVACY PRACTICES

Johns Hopkins Notice of Privacy Practices for Health Care Providers

NOTICE OF PRIVACY PRACTICES

REVISED NOTICE OF PRIVACY PRACTICES ORIGINAL DATE: JANUARY 1, 2003 REVISED: JANUARY 16, 2014 REVISED: NOVEMBER 27, 2017 PLEASE REVIEW IT CAREFULLY

SENATE, No. 553 STATE OF NEW JERSEY. 211th LEGISLATURE PRE-FILED FOR INTRODUCTION IN THE 2004 SESSION

Senior Care Pharmacy Wichita

NOTICE OF PRIVACY PRACTICES

HIPAA-HITECH HELPBOOK NJ Physician Practices

CHI Mercy Health. Definitions

SANTA RITA CARE CENTER Notice of Information Practices

Notice of Privacy Practices

MASSACHUSETTS DEPARTMENT OF PUBLIC HEALTH POLICY ON THE RETENTION, STORAGE, AND USE OF NEWBORN SCREENING DATA AND RESIDUAL SPECIMENS DECEMBER 2015

NOTICE OF PRIVACY PRACTICES Occupations, Inc. 15 Fortune Road West Middletown, NY 10941

FAMILY PHARMACEUTICAL SERVICES NOTICE OF PRIVACY PRACTICES effective 9/23/2013

Types of Authorized Recipients Probation/Parole Officers or the Department of Corrections

Commonwealth Health Corporation Notice of Privacy Practices CHC COMMONWEALTH HEALTH CORPORATION

NOTICE OF PRIVACY PRACTICES

MEMPHIS LUNG PHYSICIANS FOUNDATION AN OFFICE OF BAPTIST MEDICAL GROUP NOTICE OF PRIVACY PRACTICES

OUR LEGAL DUTY PERSONS COVERED BY THIS NOTICE

Compliance. TODAY February Promoting a culture of compliance in daily operations and business goals. an interview with Darrell Contreras

DEPARTM PRACTICES. Effective: Tel: Fax: to protecting. Alice Gleghorn, Page 1

Associates in ear, nose, throat/ Head & Neck surgery, pllc

FERPA, CHALLENGES FACING SCHOOL NURSES & DISCIPLINARY ACTIONS FERPA. MELANIE BALESTRA, MN, NP, JD JD August May 4, 22, 2012

Form B - For those enrolled in other insurance

HIPAA Notice of Privacy Practices DFD Russell Medical Center Effective April 14, 2003 Updated April 10, 2013

PROCEDURE-STUDENT RECORDS

PATIENT INFORMATION Please Print

NOTICE OF PRIVACY PRACTICES

BON SECOURS RICHMOND NOTICE OF PRIVACY PRACTICES

For Payment. We will use and disclose your personal health information to obtain payment for health care services we have provided to you.

HIPAA Notice of Privacy Practices

OREGON HIPAA NOTICE FORM

The Children's Clinic Patient Information Form

Instructions for using the following Notice of Privacy Practices

HIPAA PRIVACY NOTICE

Patient Privacy Requirements Beyond HIPAA

PERSONAL HEALTH INFORMATION PROTECTION ACT (PHIPA) Frequently Asked Questions (FAQ s) Office of Access and Privacy

WELCOME. Payment will be expected at the time of service. Please remember our 24 hour cancellation notice.

Interim Commissioner Lauren A. Smith and Members of the Public Health Council

NOTICE OF PRIVACY PRACTICES UNIVERSITY OF CALIFORNIA IRVINE HEALTHSYSTEM

physicians, nurses, and technicians and other Facility personnel for review and learning purposes. We may also combine the medical information we

Notice of HIPAA Privacy Practices Updates

NOTICE OF PRIVACY PRACTICES

PARAGOULD DOCTORS CLINIC PRIVACY NOTICE

Notice of Privacy Practices

NEW BRIGHTON CARE CENTER

Orthopedic Specialty Clinic, Ltd. Updated 05/2014

New York Notice Form Notice of Psychologists Policies and Practices to Protect the Privacy of Your Health Information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES Revised

NOTICE OF PRIVACY PRACTICES

Notice of Privacy Practices for Protected Health Information

NOTICE OF PRIVACY PRACTICES

NOTICE OF PRIVACY PRACTICES Full Length Version Effective Date: 4/19/2016

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED, AND HOW YOU CAN GET ACCESS TO THIS INFORMATION.

SCHOOL OF PUBLIC HEALTH. HIPAA Privacy Training

To ensure proper disclosure and release of Protected Health Information (PHI) Division/Department: All HealthPoint Policy/Procedure #:

NOTICE OF PRIVACY PRACTICES

A general review of HIPAA standards and privacy practices 2016

The Arizona HIO Statute

Oklahoma Surgicare NOTICE OF PRIVACY PRACTICES. Effective Date: 02/17/2010

Transcription:

Massachusetts Department of Public Health Privacy of Health Data

Institutional Commitment to Privacy Privacy and Data Access Office Staffing Privacy Attorney Confidential Data Officer Admin Support Goals of Office Making sure that MDPH workforce members comply with state and federal privacy laws and the MDPH Confidentiality Policy and Procedures Provide training to staff, volunteers, interns, consultants Respond to requests for confidential information from within and outside the Department Respond to questions about the privacy of confidential information Respond to complaints filed by people who feel that a MDPH Bureau or Program has violated their privacy Two (2) Institutional Review Boards Both federally recognized Meet monthly

Institutional Commitment to Privacy Various training for staff at all levels Security Privacy (Basic / Advanced) Self Audit of Security Privacy Liaisons for each bureau / program area IT safeguards in place to allow role-based access

Regulatory Data collected by DPH strictly regulated by a web of state and federal laws HIPAA and FIPA State laws and regulations that are program-specific (Vital Records, Cancer, Birth Defects) Federal laws that are program-specific (i.e. Early Intervention, WIC, Substance Abuse, HIV/AIDS surveillance, STDs)

HIE and Public Health DPH currently only focusing on the 3 public health components listed for meaningful use 1. Electronic Lab Reporting 2. Syndromic Surveillance 3. Immunization Registry With time and experience, anticipate looking at additional uses for HIE Reduce administrative burden on providers who have many reporting requirements Improve quality and timeliness of reporting Respond to federal funders who may require HIE interface

Overview of Three Systems Use Released to Researchers Notes Syndromic Surveillance Cluster surveillance No Limited information collected Electronic Lab Reporting Reportable diseases; case investigation and follow up No Strict role-based access; laws governing access depending on disease type Immunization Registry Surveillance Information-sharing with health care providers Not active registry Expanded privacy language included in statute

Immunization Registry Statute (if applicable) DPH Regs (if applicable) Open to Researchers? Chapter 111, Section 24M To be developed Yes (according to statute) Specific legal restrictions for privacy? Health care providers must discuss the reporting procedures of the registry with individuals (or parents) and advise them of their right to object to the disclosure of such information to others outside DPH Immunization Registry Program. Information in the immunization registry shall be Confidential and not a public record not subject to subpoena or court order or admissible as evidence in before a court, tribunal, agency, board or person Individuals (or parents) may amend incorrect information in the immunization registry DPH must, upon request, provide a record of all individuals and agencies that have accessed an individual's information.

Immunization Registry Immunization information shall only be released to the following without consent, unless the individual or the parent or guardian objects to such disclosure: licensed health care providers providing direct care to the individual patient; elementary and secondary school nurses and registration officials who require proof of immunization for school enrollment and disease control; local boards of health for disease prevention and control; Women Infants and Children, or WIC, nutrition program staff who administer WIC benefits to eligible infants and children; staff of state agencies or state programs whose duties include education and outreach related to the improvement of immunization coverage rates among their clients.

Disease reporting / Syndromic surveillance DPH Regs (if applicable) Released to Researchers? 105 CMR 300 and 105 CMR 111D No Specific legal restrictions for privacy? All personally identifying information, whether kept in an electronic system or paper format, including but not limited to, reports of disease, records of interviews, written or electronic reports, statements, notes, and memoranda, about any individual that is reported to or collected by the Department or local boards of health pursuant to 105 CMR 300.000 et seq., shall be protected by persons with knowledge of such identity. Except when necessary for disease investigation, control, treatment and prevention purposes, the Department and local boards of health shall not disclose any personally identifying information without the individual s written consent. Only those Department and local board of health employee who have a specific need to review personal data records for lawful purposes of the Department or local board of health shall be entitled access to such records.

Electronic lab reporting The Department and local boards of health shall ensure that all paper records and electronic data systems relating to information that is reported to or collected by the Department or local boards of health pursuant to 105 CMR 300.000 et seq. are kept secure and, to the greatest extent practical, kept in controlled access areas. [Specific to electronic lab reporting] Every such report shall be kept confidential by the department and its employees and agents and shall not be subject to the inspection, examination, or copying by any other agency of government or by any other person.

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback