HIPAA and Joint Commission Requirements Compared and Contrasted

Similar documents
National Health Information Privacy and Security Week. Understanding the HIPAA Privacy and Security Rule

Prepublication Requirements

Prepublication Requirements

Northwell Health Facility Name. Effective Date: 8/15/13

CAMH. Table of Changes CAMH Update 2, September 2011

CAMH February 2005 Update HIGHLIGHTS

Blood Alcohol Testing, HIPAA Privacy and More

HIPAA for CNAs. This course has been awarded one (1.0) contact hour. This course expires on May 31, 2020.

USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION: HIPAA PRIVACY POLICY

CMS HOSPITAL CONDITIONS OF PARTICIPATION (COPS) 2011

SUMMARY OF NOTICE OF PRIVACY PRACTICES

Title: HIPAA PRIVACY ADMINISTRATIVE

CAPITAL SURGEONS GROUP, PLLC

Williamson County EMS (WCEMS) HIPAA Training for Third Out Riders

OREGON HIPAA NOTICE FORM

Prepublication Requirements

PEDIATRIC HEALTH ASSOCIATES HIPAA NOTICE OF PRIVACY PRACTICES

CAMH. Table of Changes CAMH Update 1, March 2011

1303A West Campus Drive

New York Notice Form Notice of Psychologists Policies and Practices to Protect the Privacy of Your Health Information


Patient Privacy Requirements Beyond HIPAA

Protecting Patient Privacy It s Everyone s Responsibility

Information Privacy and Security

OUR LEGAL DUTY PERSONS COVERED BY THIS NOTICE

NOTICE OF PRIVACY PRACTICES

2012 Medical Staff Update 2011 CHALLENGING STANDARDS/NPSGS

Information Sharing and HIPAA Compliance

Access to Patient Information for Research Purposes: Demystifying the Process!

Accommodate reasonable requests you may have to communicate health information by alternative means or at alternative locations.

HIPAA Notice of Privacy Practices

Chapter 9 Legal Aspects of Health Information Management

Chapter 19 Section 3. Privacy And Security Of Protected Health Information (PHI)

Privacy Practices Home Visit Doctor, LLC July 2017

HIPAA THE PRIVACY RULE

8/28/2014. Compliance and Practical Challenges When Using Scribes: Just What the Doctor Ordered? Objectives of the Presentation

A general review of HIPAA standards and privacy practices 2016

Review for Required Monitors

NOTICE OF PRIVACY PRACTICES

MCCP Online Orientation

Health Insurance Portability and Accountability Act. Awareness Training for Volunteers

Patient Blood Management Certification Program. Review Process Guide. For Organizations

Parental Consent For Minors to Receive Services

Health Insurance Portability and Accountability Act (HIPAA)

Interpretation of The Joint Commission Standards Related to Pain Management. Agenda. The Joint Commission Mission 9/6/2012

EP Review Project: The Joint Commission Deletes 225 Hospital Requirements

Notice of Privacy Practices

Privacy and Security Orientation for Visiting Observers. DUHS Compliance Office

(PLEASE PRINT) Sex M F Age Birthdate Single Married Widowed Separated Divorced. Business Address Business Phone Cell Phone

The Joint Commission 2016 Medical staff Standards Update

NOTICE OF PRIVACY PRACTICES

HIPAA PRIVACY RULE. Joint Commission on Accreditation of Healthcare Organizations. Margaret VanAmringe. Vice-President, External Relations

NOTICE OF PRIVACY PRACTICES Full Length Version Effective Date: 4/19/2016

2017 CAMH. What s New July 2017 Release Effective as Noted

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES

Establishing and Implementing a Process to Investigate and Resolve Privacy Breaches and Complaints

HIPAA Policies and Procedures Manual

HIPAA Privacy Test Overview

Eligibility Introduction Practice Ethics and Patient Rights and Responsibilities (RI)... 6

Your Medical Record Rights in Rhode Isl and

JOINT NOTICE OF PRIVACY PRACTICES

[Enter Organization Logo] USE AND DISCLOSURE OF MENTAL HEALTH RECORDS. Policy Number: [Enter] Effective Date: [Enter]

New Patient Information

FEDERAL AND STATE BREACH NOTIFICATION LAWS FOR CALIFORNIA

Signature (Patient or Legal Guardian): Date:

REVISED NOTICE OF PRIVACY PRACTICES ORIGINAL DATE: JANUARY 1, 2003 REVISED: JANUARY 16, 2014 REVISED: NOVEMBER 27, 2017 PLEASE REVIEW IT CAREFULLY

42 CFR Part 2: Improvements and New Challenges with the Use and Disclosure of Substance Use Disorder Treatment Records

INFORMED CONSENT DOCUMENT. Project Title: The Contraceptive Choice Center: an innovative health services delivery and payment model

ERIE COUNTY MEDICAL CENTER CORPORATION NOTICE OF PRIVACY PRACTICES. Effective Date : April 14, 2003 Revised: August 22, 2016

Notice of Privacy Practices

HIPAA PRIVACY TRAINING

HIPAA & HEALTH INFORMATION EXCHANGE

Applications of Healthcare Risk Management. Reading List

UNIVERSITY OF PENNSYLVANIA HEALTH SYSTEM

NOTICE OF HOSPICE EL PASO S PRIVACY PRACTICES


VHA Privacy Policy Training FY VHA Privacy Office

(A Guide to Consumer Rights under HIPAA)

MSK Group, PC NOTICE O F PRIVACY PRACTICES Effective Date: December 30, 2015

HIPAA in DPH. HIPAA in the Division of Public Health. February 19, February 19, 2003 Division of Public Health 1

HIPAA IMPLICATIONS: Patient Rights Under HIPAA

Texas Medicaid. Provider Procedures Manual. Provider Handbooks. Telecommunication Services Handbook

Notice of Privacy Practices

SAMPLE Medical Staff Self-Assessment Questionnaire

CLINICIAN S GUIDE TO HIPAA PRIVACY

It defines basic terms and lists basic principles that all LSUHSC-NO faculty, staff, residents and students must understand and follow.

Emergency Medical Treatment and Active Labor Act (EMTALA) AUDIT GUIDE

RECEIPT OF NOTICE OF PRIVACY PRACTICES WRITTEN ACKNOWLEDGEMENT FORM. I,, have received a copy of Dr. Andy Hand s Notice of Privacy Practice.

ST. LAWRENCE REHABILITATION CENTER OUTPATIENT POLICIES AND REGISTRATION INFORMATION

ADVANCED PLASTIC SURGERY, PLLC. NOTICE OF PRIVACY PRACTICES

OAK HAMMOCK AT THE UNIVERSITY OF FLORIDA, INC. NOTICE OF PRIVACY PRACTICES. Privacy Office: (352) Effective Date: September 23, 2013

OSHA & HIPAA Seminar. Northern Texas Facial & Oral Surgery

SUMMARY OF JOINT NOTICE OF PRIVACY PRACTICES (HOSPITAL AND MEMBERS OF ITS MEDICAL STAFF)

NOTICE OF PRIVACY PRACTICES

Senior Care Pharmacy Wichita

1.04 Patient Rights Legislation

What is HIPAA? Purpose. Health Insurance Portability and Accountability Act of 1996

Payment: We are permitted to use and disclose your health information to receive payment for our services. For example, we may:

Notice of Privacy Practices for Protected Health Information

POLICY & PROCEDURE. This policy applies to all healthcare organizations owned and/or managed by WFH.

Transcription:

HIPAA and Joint Commission Requirements Compared and Contrasted Twelfth National HIPAA Summit April 10, 2006 Fran Carroll Corporate Compliance and Privacy Officer Joint Commission on Accreditation of Healthcare Organizations

Objectives 1. To review Joint Commission history as it pertains to HIPAA, the new Joint Commission survey process and how HIPAA issues enter the survey. 2. To review key standards and their applicability to HIPAA. 3. To review questions raised by organizations and the Joint Commission response. 4. Q & A.

The Joint Commission & HIPAA Review of legislation and comments Review of standards in 2001 to date re: HIPAA Changes to Standards Example - IM 2.10 EP 1 Individuals aware of uses and disclosures EP2 Removal of identifiers encouraged EP3 Not disclosed without patient permission EP4 Right to access, amend, and receive accounting

Joint Commission Survey Process Reformatting of Standards 2004 Standard; Intent Standard; Rationale; Elements of Performance Priority Focus Areas Patient Tracer Methodology

Key Standards and Relation to HIPAA Number of areas where HIPAA and Joint Commission Standards need to be considered together when developing P&P s or practices of the organization. NSPG #2 improve communication among HC providers, #8 medication reconciliation Standards: RI 6; PC 1; PI 1; LD -2; EC 2; HR 2; IM 7; Meeting Joint Commission Standards = HC ops = Minimally Necessary

Key Standards and Relation to Leadership HIPAA LD 1.30 The hospital complies with applicable law and regulation. EP1 The hospital provides all care, treatment and services in accordance with applicable licensure requirements, laws, rules and regulation. LD 3.15 The leaders develop and implement plans to identify and mitigate impediments to efficient patient flow throughout the hospital.

Key Standards and Relation to Patient Rights HIPAA RI 2.10 The hospital respects the rights of patients. RI 2.20 Patients receive information about their rights RI 2.50 Consent is obtained for recording or filming made for the purposes other than identification, diagnosis, or treatment of the patients.

Key Standards and Relation to Patient Rights HIPAA RI 2.120 The hospital addresses the resolution of complaints from patients and their families. RI 2.130 The hospital respects the need of patients for confidentiality, privacy, and security. RI 2.180 The hospital protects research subjects and respects their rights during research, investigation and clinical trials involving human subjects.

Key Standards and Relation to HIPAA Management of Information IM 1.10 The hospital plans and designs information management processes to meet internal and external information needs. IM 2.10 Information privacy and confidentiality are maintained. IM 2.20 Information security, including data integrity, is maintained. IM 2.30 Continuity of information is maintained.

Key Standards and Relation to HIPAA Management of Information IM 3.10 The hospital has a process in place to effectively manage information, including the capturing, reporting, processing, storing, retrieving, disseminating, and displaying of clinical/service and non-clinical data and information. IM 4.10 The information management system provides information for use in decision making.

Key Standards and Relation to HIPAA Management of Information IM 6.10 The hospital has a complete and accurate medial record for patients assessed, cared for, treated or served. IM 6.50 Designated qualified staff accept and transcribe verbal or telephone orders from authorized individuals. IM 6.60 The hospital provides access to relevant information from a patient s record as needed for use in patient care, treatment and services.

Key Standards and Relation to HIPAA Environment of Care Overview and goals address privacy in terms of auditory and visual. EC 2.10 The hospital identifies and manages security risks. EC 9.10 The hospital monitors conditions in the environment.

Key Standards and Relation to HIPAA Patient Safety Goals 8 Medication Reconciliation 8b A complete list of the patient s medications is communicated to the next provider of service when a patient is referred or transferred to another setting, service, practitioner, or level of care within or outside the organization.

Questions Raised by Organizations What is PHI? After Hours Security of Medical Records Is providing consent for a blood transfusion on a speaker phone a violation of HIPAA? Is there a standard for workforce sanctions for breach of patient confidentiality? What about white boards?

Questions Raised by Organizations When we are sending information by mail must it be certified? A LTC facility was told that telling a hospital that a patient received a site infection from surgery was a violation of HIPAA how does the Joint Commission feel about that? Sign in sheets?

Questions Raised by Organizations How long are we supposed to keep records? Is there 2 hours of HIPAA training required annually? Is there a Joint Commission standard regarding BAA s? Is there a requirement to put a privacy filter on a computer?

Resources American Health Lawyers Association: Expert Series, National Accreditation Standards and HIPAA: A Comparative Analysis, Copyright 2002 www.jcaho.org www.hhs.gov/ocr/

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback