PERSONAL HEALTH INFORMATION PROTECTION ACT (PHIPA) Frequently Asked Questions (FAQ s) Office of Access and Privacy

Similar documents
IVAN FRANKO HOME Пансіон Ім. Івана Франка

Compliance with Personal Health Information Protection Act

PRIVACY AND ANTI-SPAM CODE FOR OUR ORGANIZATION

PRIVACY AND ANTI-SPAM CODE FOR OUR DENTAL OFFICE Please refer to Appendix A for a glossary of defined terms.

Your Health Information and Your Privacy in Our Facility

Your Health Information and Your Privacy in Our Office

REVIEWED BY Leadership & Privacy Officer Medical Staff Board of Trust. Signed Administrative Approval On File

Opening the Door Hospitals & FOI. Applying PHIPA and FIPPA to Personal. Information: Guidance for Hospitals.

The Personal Health Information Protection Act

CIRCLE OF CARE. Ann Cavoukian, Ph.D. Information and Privacy Commissioner, Ontario, Canada

A PHIPA Update from the IPC

What to do When Faced With a Privacy Breach: Guidelines for the Health Sector. ANN CAVOUKIAN, Ph.D. COMMISSIONER

Overview of Privacy Legislation in Ontario

Privacy Toolkit for Social Workers and Social Service Workers Guide to the Personal Health Information Protection Act, 2004 (PHIPA)

Eastern Ontario Development Program

Overview. COTBC Practice Standards for Managing Client Information, Tel: (250) Toll-Free BC: 1 (866) Fax: (250)

INVESTIGATION REPORT

Getting Ready for Ontario s Privacy Legislation GUIDE. Privacy Requirements and Policies for Health Practitioners

A Deep Dive into the Privacy Landscape

PROFESSIONAL STANDARDS FOR MIDWIVES

PEDIATRIC HEALTH ASSOCIATES HIPAA NOTICE OF PRIVACY PRACTICES

Your Privacy. Ontario s Information and Privacy Commissioner.

Privacy and Security Training for Connecting Ontario. PACE Cardiology April, 2017

TABLE OF CONTENTS. Assistance offered by The Leila Rose Foundation. Guidelines for Assistance. LRF Privacy Policy. Patient Advocate Disclaimer

PRIVACY POLICY. 1. Privacy Statement

Data Integration and Big Data In Ontario Brian Beamish Information and Privacy Commissioner of Ontario

NOTICE OF PRIVACY PRACTICES

Notice of Health Information Privacy Practices Acknowledgement

Dr. Kristin Heins, ND Thrive Natural Family Health 110 Eglinton Avenue East, Suite 502 Toronto, Ontario M4P 2Y1 Telephone: (647)

Catholic Charities Disabilities Services. In-Home Behavioral Support Services (2017)

physicians, nurses, and technicians and other Facility personnel for review and learning purposes. We may also combine the medical information we

COLLECTION STATEMENT

DURHAM HOARDING SUPPORT SERVICES (DHSS) - REFERRAL FORM

Privacy Policy - Australian Privacy Principles (APPs)

NOTICE OF PRIVACY PRACTICES

YORK REGION DISTRICT SCHOOL BOARD. Policy and Procedure #158.0, Information Access and Privacy Protection

Instructions for using the following Notice of Privacy Practices

If you have any questions about this notice, please contact the SSHS Privacy Officer at:

This notice describes Florida Hospital DeLand s practices and that of: All departments and units of Florida Hospital DeLand.

PRIVACY BREACH MANAGEMENT GUIDELINES. Ministry of Justice Access and Privacy Branch

Information Privacy and Security

HIPAA Policies and Procedures Manual

Rules and Regulations Grant Application for Autism Service Dog

Scholarship Program for Indigenous Students 2018 Application Form. Applicant Information. First Name: Last Name: Prefix: Permanent Address: City:

Privacy and Management of Health Information

What information does Genome.One collect about you and why?

Notice of Privacy Practices

MURRAY MEDICAL CENTER HIPAA NOTICE OF PRIVACY PRACTICES

FAMILY PHARMACEUTICAL SERVICES NOTICE OF PRIVACY PRACTICES effective 9/23/2013

DUTIES OF A CUSTODIAN

Massachusetts Department of Public Health. Privacy of Health Data

Patient name (print) Signature of Patient/ Legal Representative. Relationship to Patient FOR OFFICE USE ONLY

College of Midwives of Ontario Professional Standards for Midwives

NOTICE OF PRIVACY PRACTICES

WHAT IS HIPAA? HIPAA is the ELECTRONIC transmission of Three programs have been enacted to date Privacy Rule April 2004

Protecting Patient Privacy It s Everyone s Responsibility

RECEIPT OF NOTICE OF PRIVACY PRACTICES WRITTEN ACKNOWLEDGEMENT FORM. I,, have received a copy of Dr. Andy Hand s Notice of Privacy Practice.

Mandatory Reporting A process

JOINT NOTICE OF PRIVACY PRACTICES

NEW BRIGHTON CARE CENTER

NOVA SCOTIA DIETETIC ASSOCIATION CODE OF ETHICS FOR PROFESSIONAL DIETITIANS

NOTICE OF PRIVACY PRACTICES

Orthopedic Specialty Clinic, Ltd. Updated 05/2014

Policy No. AD I1 ** Information from collection to retention shall be managed according to relevant legislation.

PATIENT INFORMATION Please Print

Notice of Privacy Practices

If you have any questions about this notice, please contact our privacy officer Dr. Jev Sikes at

New York Notice Form Notice of Psychologists Policies and Practices to Protect the Privacy of Your Health Information

STANDARD ADMINISTRATIVE PROCEDURE

Health Information Privacy Policies and Procedures

Introduction...2. Purpose...2. Development of the Code of Ethics...2. Core Values...2. Professional Conduct and the Code of Ethics...

NOTICE OF PRIVACY PRACTICES

THE CHILDREN S INSTITUTE OF PITTSBURGH NOTICE OF PRIVACY PRACTICES

Catholic Charities Disabilities Services 2017 Family Reimbursement Grant For Respite Funds 1 Park Place, Suite 200 Albany, NY (518)

ILAC Leadership Scholarships for Hispanic Women

Advanced Oral & Maxillofacial Surgery, Ltd. NOTICE OF PRIVACY PRACTICES

PRIVACY POLICY 18/8/2016

Signature (Patient or Legal Guardian): Date:

Precedence Privacy Policy

FEDERAL AND STATE BREACH NOTIFICATION LAWS FOR CALIFORNIA

REVISION EFFECTIVE DATE N/A

WAKE FOREST BAPTIST HEALTH NOTICE OF PRIVACY PRACTICES

AUSTRALIAN RESUSCITATION COUNCIL PRIVACY STATEMENT

Report of the Information & Privacy Commissioner/Ontario. Review of the Cardiac Care Network of Ontario (CCN):

Advance Care Planning Workbook Ontario Edition

PATIENT NOTICE OF PRIVACY PRACTICES Effective Date: June 1, 2012 Updated: May 9, 2017

Advance Care Planning In Ontario. Judith Wahl B.A., LL.B. Advocacy Centre for the Elderly 2 Carlton Street, Ste 701 Toronto, Ontario M5B 1J3

OUTPATIENT SERVICES CONTRACT 2018

Guidelines. Guidelines for Working with Third Party Payers

Mandatory Reporting and Breach Notification Changes to PHIPA and what you need to know

NOTICE OF PRIVACY PRACTICES Effective Date: April 14, 2003

POLICY STATEMENT PRIVACY POLICY

The Code of Ethics applies to all registrants of the Personal Support Worker ( PSW ) Registry of Ontario ( Registry ).

Notice of Privacy Practices

Major Features of the Legislation 3 The Health Care Consent Act, 1996 (HCCA) 3 The Substitute Decisions Act, 1992 (SDA) 4

Health Care Provider Guide Digital Health Drug Repository. Version: V 3.0

The Arizona HIO Statute

SUMMARY OF NOTICE OF PRIVACY PRACTICES

Notice of HIPAA Privacy Practices Updates

NOTICE OF PRIVACY PRACTICES

Transcription:

PERSONAL HEALTH INFORMATION PROTECTION ACT (PHIPA) Frequently Asked Questions (FAQ s) Office of Access and Privacy The purpose of PHIPA is to protect and govern the individual s right to retain control over the collection, use and disclosure of his/her personal information. What is the Personal Health Information Protection Act (PHIPA)? The Personal Health Information Protection Act, 2004 (PHIPA) is Ontario's health-specific privacy legislation. PHIPA governs the manner in which personal health information may be collected, used and disclosed, within the health care system. It also regulates individuals and organizations that receive personal information from health care professionals. What is personal health information? Personal health information is "identifying information" collected about an individual. It is information about an individual's health or health care history in relation to: The providing of health care to the individual, including the identification of a person as a provider of health care to the individual; A plan of service within the meaning of the Long-Term Care Act, 1994, for the individual; To payments or eligibility for health care in respect of the individual; To the donation by the individual of any body part or bodily substance of the individual or is derived from the testing or examination of any such body part or bodily substance; Individual's health number, or An individual's substitute decision-maker What is NOT personal information? Any data that has been collected in which all personal identifiers have been removed (making determination of identity impossible) is not considered personal information, nor is the name, title, business address or business telephone number of an employee of an organization.

What does Markham Stouffville Hospital use my health information for? Markham Stouffville Hospital uses your information for the delivery of patient care, administration of the healthcare system, research, teaching, statistics, fundraising, and to meet legal and regulatory requirements. Who does Markham Stouffville Hospital give my health information to? The Hospital is required to disclose patient information to several other organizations. This includes the Ministry of Health, The Canadian Institute for Health Information (CIHI), Public Health, and Cancer Care Ontario. Information may also be disclosed to other physicians directly involved in the administering of care to our patients. The Hospital places appropriate safeguards on the transmission of all information disclosed to other organizations and seeks to ensure that health information protection measures are in place and in accordance with the Personal Health Information Protection Act, 2004. Does Markham Stouffville Hospital ever sell patient information to drug companies, or anyone else? Markham Stouffville Hospital does not sell patient information to drug companies or to anyone else. Can I access my health information? The Hospital is required to disclose patient information to several other organizations. This includes the Ministry of Health, The Canadian Institute for Health Information, Public Health, and Cancer Care Ontario. Information may also be disclosed to other physicians directly involved in the administering of care to our patients. The Hospital places appropriate safeguards on the transmission of all information disclosed to other organizations and seeks to ensure that health information protection measures are in place and in accordance with the Personal Health Information Protection Act, 2004. Where do I go to access my health record? To get a copy of your health records, you can: Submit your request, in writing, to Markham Stouffville Hospital's Health Information Department. Your written request for a copy of your health records should include: your name, address and date of birth; your signature or the signature of a legal representative (if applicable) the date and the signature of a witness.* Please note the Hospital will only accept original letters. Faxes are not acceptable.*

Or, alternatively, you may go to the Hospital's Health Records Department and request a Consent to Release Personal Health Information form. Please allow a reasonable amount of time for the Hospital to process your request. Should you wish to receive photocopies of your health records a reasonable fee will be charged. Can the husband/wife of a patient access their spouse's records? No, unless the patient's husband or wife is designated as the substitute decision maker. Can all Markham Stouffville Hospital staff access my patient record? Only Markham Stouffville Hospital staff involved in your care may access your patient record. All Markham Stouffville Hospital staff are bound by a strict confidentiality agreement, which is signed as a condition of their employment. This agreement seeks to ensure staff access patient information only on a need to know basis. What if I am unable to give consent to release my personal health information? If you are unable to give consent for a friend or family member to access your health records due to reasons of competency or consciousness, the consent decision falls to the appointed substitute decision maker such as a parent or guardian. This person is bound by law to act on your behalf and must make decisions based on their belief of what you would wish done if you were able to decide. Will my family or friends be able to call the hospital to get information about me over the phone? Markham Stouffville Hospital's clinical care team has no way to verify the identity of the caller. Therefore, in order to protect patient privacy, minimal information is disclosed over the phone. What is a breach of privacy? Breach of privacy, confidentiality or security refers to the unauthorized access, collection, use, or disclosure of any personal information or personal health information.

What is a "lock-box? The "lock-box" is a term used to describe the right of an individual to instruct a health information custodian not to disclose specified personal health information to another custodian. How does the lock-box work? When an individual requests a health information custodian not to disclose his/her personal health information to another custodian, the custodian is obliged to inform the recipient custodian that some personal health information is inaccessible as a result of it having been "locked" by the individual. The custodian who receives "locked" personal health information may choose to explore this matter with the individual. The custodian would need to obtain the express consent of that individual to access and use that information. A custodian, however, is permitted to disclose the information to a recipient custodian where in his/her professional opinion, the disclosure is necessary for the purpose of eliminating or reducing a significant risk of serious bodily harm to the patient. What if some of the information in my health record is incorrect? An individual who believes that his/her personal health information is incomplete or inaccurate may request a health information custodian to correct his/her record. It is the responsibility of the custodian to ensure that personal health information is complete and accurate. How does an individual correct error or omissions to their records? An individual seeking to correct his/her personal health information is required to submit a written request to the health information custodian. The custodian must respond within 30 days of receiving a correction request. PHIPA provides limited grounds for extending this 30-day time frame. For example, extensions are permitted where replying within 30 days would unreasonably interfere with the custodian's activities, or where the time necessary to undertake the consultations associated with the request would exceed 30 days. Can the hospital refuse to correct an individual's personal health information? The hospital is obligated to correct personal health information where an individual demonstrates, to the satisfaction of the hospital, that the record is in fact inaccurate or

incomplete and the individual gives the custodian the necessary information to correct the record. The hospital, however, may refuse to correct personal health information that is a professional opinion or an observation of the health care provider. How is my personal health information protected? Administrative Safeguards: Markham Stouffville Hospital's Privacy Policy governs the way in which all hospital employees manage and access patient information. In addition, all hospital employees must sign a Confidentiality Agreement as a condition of their employment. Physical Safeguards: Markham Stouffville Hospital has a number of physical safeguards and measures to protect patient records including facility access controls, workstation security and mobile device security requirements. Technical Safeguards: Markham Stouffville Hospital's Information Technology department upgrades the security capabilities of the patient information system on an ongoing basis. By implementing role based access controls; the Technology department ensures staff only have access to electronic information on a need to know basis. Furthermore, Markham Stouffville Hospital's patient information system also uses passwords as an additional measure to protect the system from inappropriate access from within; and a firewall to protect our system from users externally on the Internet. How does an individual initiate a complaint? An individual who feels his/her privacy rights under PHIPA has been violated has the right to submit a written complaint to Markham Stouffville Hospitals Office of Access and Privacy. All privacy complaints will be handled in a confidential manner. An individual may also submit a written complaint to the Information Privacy Commissioner of Ontario. Information and Privacy Commissioner / Ontario 2 Bloor Street East, Suite 1400 Toronto, Ontario Canada M4W 1A8 1-416-326-3333 1-800-387-0073 http://www.ipc.on.ca

Where can I find out more about information privacy rights and protection at Markham Stouffville Hospital? You can get more information from the following sources: Email: You can email the Chief Privacy Officer at privacy@msh.on.ca Telephone: You can call the Office of Access and Privacy at (905) 472-7373 ext. 6004.

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback