HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT

Similar documents
HIPAA PRIVACY TRAINING

HIPAA Privacy Regulations Governing Research

New HIPAA Privacy Regulations Governing Research. Karen Blackwell, MS Director, HIPAA Compliance

DE-IDENTIFICATION OF PROTECTED HEALTH INFORMATION (PHI)

HIPAA. Health Insurance Portability and Accountability Act. Presented by the UMMC Office of Integrity and Compliance

YALE UNIVERSITY THE RESEARCHERS GUIDE TO HIPAA. Health Insurance Portability and Accountability Act of 1996

HIPAA Policies and Procedures Manual

LifeBridge Health HIPAA Policy 4. Uses of Protected Health Information for Research

Student Orientation: HIPAA Health Insurance Portability & Accountability Act

Safeguarding PHI Nutrition Services. UAMS HIPAA Office May 2015

Privacy and Security Orientation for Visiting Observers. DUHS Compliance Office

What is HIPAA? Purpose. Health Insurance Portability and Accountability Act of 1996

WHAT IS HIPAA? HIPAA is the ELECTRONIC transmission of Three programs have been enacted to date Privacy Rule April 2004

Commission on Dental Accreditation Guidelines for Filing a Formal Complaint Against an Educational Program

The HIPAA privacy rule and long-term care : a quick guide for researchers

SCHOOL OF PUBLIC HEALTH. HIPAA Privacy Training

HIPAA PRIVACY DIRECTIONS. HIPAA Privacy/Security Personal Privacy. What is HIPAA?

Professional Compliance Program Grievance Report

Pennsylvania Hospital & Surgery Center ADMINISTRATIVE POLICY MANUAL

Advanced HIPAA Communications and University Relations

IRB 101. Rachel Langhofer Joan Rankin Shapiro Research Administration UA College of Medicine - Phoenix

THE JOURNEY FROM PHI TO RHI: USING CLINICAL DATA IN RESEARCH

INSTITUTIONAL REVIEW BOARD Investigator Guidance Series HIPAA PRIVACY RULE & AUTHORIZATION THE UNIVERSITY OF UTAH. Definitions.

The Queen s Medical Center HIPAA Training Packet for Researchers

CLINICIAN S GUIDE TO HIPAA PRIVACY

HIPAA Privacy Training for Non-Clinical Workforce

Compliance Program, Code of Conduct, and HIPAA

Instructions for using the following Notice of Privacy Practices

Notice of Privacy Practices

Patient-Level Data. February 4, Webinar Series Goals. First Fridays Webinar Series: Medical Education Group (MEG)

The Impact of The HIPAA Privacy Rule on Research

HIPAA COMPLIANCE APPLICATION

Presented by the UAMS HIPAA Office August 2013 Anita B. Westbrook

PRIVACY POLICIES AND PROCEDURES

Clarifying HIPAA Privacy Rules for Mental Health and Addiction Crises. National Council for Behavioral Health March 19, 2018

HIPAA Compliancy Group, LLC. 2017

Notice of. Privacy Practices. Dartmouth-Hitchcock Affiliated Covered Entity

HIPAA Privacy Rule and Sharing Information Related to Mental Health

Guidelines for Requesting an Increase in Authorized Enrollment in Orthodontics and Dentofacial Orthopedics Residency and Fellowship Programs

FERPA 101. December 4, Michael Hawes Director of Student Privacy Policy U.S. Department of Education

The Center for Advanced Pediatrics 40 Cross Street, Norwalk, CT Old Kings Highway North, Darien, CT

WHAT IS AN IRB? WHAT IS AN IRB? 3/25/2015. Presentation Outline

Navigating HIPAA Regulations. Michelle C. Stickler, DEd Director, Research Subjects Protections

MCCP Online Orientation

APPLICATION FOR RESEARCH REQUESTING AN IRB WAIVER OF CONSENT AND HIPAA AUTHORIZATION

INFORMATION ABOUT Children s Mercy Hospitals and Clinics for our Affiliates

HIPAA Privacy Rule. Best PHI Privacy Practices

Guidelines for Requesting an Increase in Enrollment in a Predoctoral Dental Education Program

HIPAA Privacy & Security Training

POLICY ON ENROLLMENT INCREASES IN ADVANCED DENTAL SPECIALTY PROGRAMS

HIPAA for CNAs. This course has been awarded one (1.0) contact hour. This course expires on May 31, 2020.

HIPAA Privacy & Security Training

Health Insurance Portability and Accountability Act. Awareness Training for Volunteers

Notice of Privacy Practices

Valley Regional Medical Center HIPAA AND HITECH EDUCATION

Notice of Privacy Practices

UNIVERSITY OF ILLINOIS HIPAA PRIVACY AND SECURITY DIRECTIVE

Pharmacy Welcome and Information Packet

Balance Fitness and Nutrition

WRAPPING YOUR HEAD AROUND HIPAA PRIVACY REQUIREMENTS

If you have any questions about this notice, please contact the SSHS Privacy Officer at:

COMMISSION ON DENTAL ACCREDITATION GUIDELINES FOR PREPARING REQUESTS FOR TRANSFER OF SPONSORSHIP

Parental Consent For Minors to Receive Services

NOTICE OF PRIVACY PRACTICES Occupations, Inc. 15 Fortune Road West Middletown, NY 10941

INFORMATION ABOUT CHILDREN S MERCY HOSPITALS AND CLINICS

System-wide Policy: Use and Disclosure of Protected Health Information for Research

NOTICE OF PRIVACY PRACTICES

Notice of HIPAA Privacy Practices Updates

Notice of Privacy Practices for Protected Health Information (PHI)

ADVANCED PLASTIC SURGERY, PLLC. NOTICE OF PRIVACY PRACTICES

Roles & Responsibilities of Investigator & IRB

HIPAA THE PRIVACY RULE

CAPITAL SURGEONS GROUP, PLLC

NOTICE OF PRIVACY PRACTICES

Study Management PP STANDARD OPERATING PROCEDURE FOR Safeguarding Protected Health Information

NOTICE OF PRIVACY PRACTICES Mid-Atlantic Women s Care, PLC Effective Date: September 23, 2013 Last Revised: February 15, 2018

JOINT NOTICE OF PRIVACY PRACTICES

For Office Use Only

COMMISSION ON DENTAL ACCREDITATION REPORTING PROGRAM CHANGES IN ACCREDITED PROGRAMS

Regulatory Issues Facing Student Health Centers Presented by: Richard T. Yarmel and Edward H. Townsend

OVERVIEW OF THE USES AND DISCLOSURES OF PHI

CHI Mercy Health. Definitions

COMMISSION ON DENTAL ACCREDITATION POLICY ON REPORTING AND APPROVAL OF SITES WHERE EDUCATIONAL ACTIVITY OCCURS

Information Privacy and Security

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES

Notice of Privacy Practices

I SBN Crown copyright Astron B31267

NOTICE OF PRIVACY PRACTICES

LICENSED CLINICAL SOCIAL WORKER-PATIENT SERVICES AGREEMENT

Module: Research and HIPAA Privacy Protections ( )

NOTICE OF PRIVACY PRACTICES

Notice of Privacy Practices

HIPAA Privacy Training Handbook/ Quick Reference

If you have any questions about this notice, please contact our privacy officer Dr. Jev Sikes at

The HIPAA Privacy Rule and Research: An Overview

Notice of privacy practices

Williamson County EMS (WCEMS) HIPAA Training for Third Out Riders

10 Times HIPAA May Not Apply

PATIENT INTAKE PACKET

Health Insurance Portability and Accountability Act (HIPAA)

Transcription:

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT

INSTRUCTIONS Read through this presentation. Submit completed post test to the Portage County MRC Coordinator. Estimated completion time: 1 hour

Learning Objectives By the end of this section the participant should be able to: Define Health Insurance Portability and Accountability Act (HIPAA) Identify protected and unprotected health information Describe how HIPAA applies in a disaster situation

What is HIPAA? Health Insurance Portability and Accountability Act (HIPAA) Public Law 104-191: Signed August 21, 1996 A federal law designed to: Give patients control over all Protected Health Information (PHI) that might be shared between health care providers & other covered entities Ensure confidentiality of PHI Standards set by HIPAA are minimal, therefore state and local lawmakers may enforce strict guidelines to protect a person s private health information

What is a Covered Entity? An entity that is responsible for the transmission of health information must do so within the standards set under the Health Insurance and Portability Act (1996).

What Entities Are Covered? Health Departments Health Plans individual or group health insurance companies Health Care Clearinghouses billing services or providers A health care provider who transmits any health information in electronic form hospitals, clinics, doctors, nurses, and EMS

What is protected? HIPAA protects communications between patients and their healthcare provider that are: verbal written electronic

What Is Protected Health Information (PHI) Health Information: any oral or recorded information relating to the past, present or future physical or mental health of an individual, the provision of health care to the individual, or the payment for health care.

What is Protected Health Information Information created or received by a covered entity: most individually identified health information that is created or received by, or on behalf of, a covered entity is protected under the HIPAA privacy rule.

What is Protected Health Information Individual Identifiers: information that identifies or can be used, alone or in combination with other information, to identify the individual (e.g., name, address, SSN, etc).

Types of Individual Identifiers Health plan beneficiary numbers Account numbers Certificate/license numbers Vehicle identifiers and serial numbers, including license plate numbers Device identifiers and serial numbers Web universal resource locations (URLs) Internet Protocol (IP) address numbers Biometric identifiers, including finger and voice prints Full face photographic images and any comparable data Any other unique identifying number, characteristic, or code

Where are the places Protected Health Information exists? PHI may be found: in medical and billing records at the fax machine on your computers

Where are the places PHI exists? PHI may be found: in your files; on your desk; in telephone conversations or overheard conversations Look around, you may be surprised at all of the places PHI exists in our environment.

The HIPPA Privacy Rule Rule that defines and limits how a covered entity shares individual identifiable health information

Commitment to Privacy Every organization has a commitment to protect patient privacy. Before HIPAA, no federal framework existed to protect patient information from being exploited for personal gain. Under HIPAA, organizations and individuals will be punished for violating privacy clauses.

Exceptions to Privacy Rule HIPAA Privacy Rule does not apply to disclosures if they are not made by entities covered by the Privacy Rule. For example, the HIPAA Privacy Rule does not restrict the American Red Cross from sharing patient information.

HIPAA in a Disaster The HIPAA Privacy Rule allows patient information to be shared to assist in disaster relief efforts, and to assist patients in receiving the care they need. http://www.aphsa.org/katrina/disasterpolicy.asp

HIPAA Disaster Policy Summary The ways in which patient information can be shared by providers and health plans covered by the HIPAA privacy rule are for: Treatment Notification Imminent Danger Facility Directory

Treatment Health care providers can share patient information as necessary to provide treatment. Treatment includes sharing information with other providers (including hospitals and clinics) referring patients for treatment (including linking patients with available providers in areas where the patients have relocated), and coordinating patient care with others (such as emergency relief workers or others that can help in finding patients appropriate health services). Providers can also share patient information to the extent necessary to seek payment for these health care services.

Notification Health care providers can share patient information as necessary to identify, locate and notify family members, guardians, or anyone else responsible for the individual s care of the individual s location, general condition, or death. The health care provider should get verbal permission from individuals, when possible; but, if the individual is incapacitated or not available, providers may share information for these purposes if, in their professional judgment, doing so is in the patient s best interest. Thus, when necessary, the hospital may notify the police, the press, or the public at large to the extent necessary to help locate, identify or otherwise notify family members and others as to the location and general condition of their loved ones.

Notification, cont d In addition, when a health care provider is sharing information with disaster relief organizations that, like the American Red Cross, are authorized by law or by their charters to assist in disaster relief efforts, it is unnecessary to obtain a patient s permission to share the information if doing so would interfere with the organization s ability to respond to the emergency.

Imminent Danger Providers can share patient information with anyone as necessary to prevent or lessen a serious and imminent threat to the health and safety of a person or the public Sharing of PHI should be consistent with applicable law and the provider s standards of ethical conduct.

Facility Directory Health care facilities maintaining a directory of patients can tell people who to call or ask about individuals whether the individual is at the facility His/her location in the facility, and His/her general condition.

Resources To learn more about HIPPA. Department of Health and Human Services: http://www.hhs.gov/ocr/privacy/hipaa/ understanding/index.html

Post Test Thanks for viewing this orientation Please complete the post-test Can be completed on-line, OR Printed and sent to MRC Coordinator: Susan Forgacs Portage County Health District 705 Oakwood Street Ravenna, OH 44266 sforgacs@portageco.com 330-296-9919, ext. 138 330-298-4492 (fax)

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback