©2002 by the National Committee for Quality Assurance NCQA and HIPAA “A match made in ?” The Fifth National HIPAA Summit Sharon King Donohue, JD General.

Slides:

Advertisements

Similar presentations

JCAHO –A HIPAA Business Associate National HIPAA Summit

Advertisements

The HIPAA Privacy Rule And Its Impact On Agents And Employers National Association of Health Underwriters Capitol Conference March 23, 2003 Joseph T. Holahan,

Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.

Chapter 3 Health Care Information Systems: A Practical Approach for Health Care Management 2nd Edition Wager ~ Lee ~ Glaser.

HIPAA Basics Brian Fleetham Dickinson Wright PLLC.

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

Confidentiality and HIPAA

HIPAA Privacy Rule Training

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.

What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.

HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.

HEAVEN’S HANDS COMMUNITY SERVICE H.I.P.A.A. What is HIPAA? HIPAA stands for the Health Insurance Portability and Accountability Act, which was passed.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.

1 Developed by: U-MIC To start the presentation, click on this button in the lower right corner of your screen. The presentation will begin after the.

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

Health Insurance Portability and Accountability Act (HIPAA)

HIPAA Collaborative of Wisconsin PAYMENT, COLLECTIONS, AND ACCEPTED BENEFITS FURTHER DEFINITION OF THE PRIVACY RULE Copyright HIPAA Collaborative.

HIPAA Business Associates Leadership Group Meeting June 28, 2001.

HIPAA The Privacy Rule Health Insurance Portability and Accountability Act of 1996 (HIPAA) The 104 th Congress passed the Act, Public Law ,

Dealing with Business Associates Business Associates Business Associates are persons or organizations that on behalf of a covered entity: –Perform any.

Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.

HIPAA (health insurance portability and accountability act)

HIPAA – How Will the Regulations Impact Research?.

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

Advanced Issues in Privacy: Drafting and Negotiating Business Associate Contracts Thomas E. Jeffry, Jr. Partner Davis Wright Tremaine LLP Los Angeles,

Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.

Health Insurance Portability and Accountability Act of 1996 HIPAA Privacy Training for County Employees.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.

Chapter 7—Privacy Law and HIPAA

FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.

HIPAA BASIC TRAINING Presented by Anderson Health Information Systems, Inc.

HIPAA THE PRIVACY RULE. 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti- depressant medications.

Policies for Information Sharing April 10, 2006 Mark Frisse, MD, MBA, MSc Marcy Wilder, JD Janlori Goldman, JD Joseph Heyman, MD.

NCQA Standards Update & Delegated Credentialing Tips NYSAMSS Annual Meeting – May 4, 2012 By: Di Hall, CPCS, CPMSM Director, Compliance & Quality Improvement.

OHCAs, ACEs and Hybrid Entities Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)

Rhonda Anderson, RHIA, President  …is a PROCESS, not a PROJECT 2.

A Professional Corporation Stinson, Mag & Fizzell (402) Business Associates 101 Jennifer Wolfe Jerram, B.S.N., J.D.

C HAPTER 34 Code Blue Health Sciences Edition 4. Confidentiality of sensitive information is an important issue in healthcare. Breaches of confidentiality.

1 Privacy Plan of Action © HIPAA Pros 2002 All rights reserved.

HIPAA Certified LLC 1 6th National HIPAA Summit JCAHO and NCQA and HIPAA Business Associates Friday, March 28, 2003.

A NATIONAL HIPAA SUMMIT AUDIOCONFERENCE Davis Wright Tremaine LLP Legal Requirements For Vendor And Clearinghouse HIPAA Compliance; Business Associate.

HIPAA Privacy Rule Implementation Status Report Richard M. Campanelli, J.D. Director, Office for Civil Rights Before the The Tenth National HIPAA Summit.

©2002 by the National Committee for Quality Assurance NCQA: HIPAA Business Associate Presentation to the 6th National HIPAA Summit March 28, 2003 Patricia.

HIPAA Overview Why do we need a federal rule on privacy? Privacy is a fundamental right Privacy can be defined as the ability of the individual to determine.

Functioning as a Business Associate Under HIPAA William F. Tulloch Director, PCBA March 9, 2004.

HIPAA Privacy Rule Positive Changes Affecting Hospitals’ Implementation of the Rule.

AND CE-Prof, Inc. January 28, 2011 The Greater Chicago Dental Academy 1 Copyright CE-Prof, Inc

HIPAA TRIVIA Do you know HIPAA?. HIPAA was created by?  The Affordable Care Act  Health Insurance companies  United States Congress  United States.

The Medical College of Georgia HIPAA Privacy Rule Orientation.

New Hire HIPAA Orientation. HIPAA Overview HIPAA is an acronym that stands for the Health Insurance Portability and Accountability Act of HIPAA.

HIPAA Privacy Rule Positive Changes Affecting Hospitals’ Implementation of the Rule Melinda Hatton -- Oct. 31, 2002.

HIPAA Privacy Rule Training

To start the presentation, click on this button in the lower right corner of your screen. The presentation will begin after the screen changes and you.

What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.

HIPAA Administrative Simplification

Permitted Uses & Disclosures of PHI

Disability Services Agencies Briefing On HIPAA

Presentation to The Fourth National HIPAA Summit

2003 Immunization Registry Conference

HIPAA Policy & Procedure Strategies

Making Your IRBs and Clinical Investigators HIPAA-Ready

Analysis of Final HIPAA Privacy Modification Rule

Presentation transcript:

©2002 by the National Committee for Quality Assurance NCQA and HIPAA “A match made in ?” The Fifth National HIPAA Summit Sharon King Donohue, JD General Counsel, Chief Privacy Officer November 1, 2002

NCQA: Mission is to improve the health of people everywhere  Nonprofit accreditor with long standing commitment to protecting privacy  Privacy standards pre-date HIPAA

NCQA: Programs and Data  Accreditation & Certification Programs: HMO, PPO, Disease Management, Credentials Verification, Physician Organizations, Managed Behavioral Health, Human Research Protection  Data Collection and Analysis: Measures development; assessment and reporting of quality performance

HIPAA & Accreditation Reviews Accreditation & Certification Surveys: Rigorous reviews of the clinical and administrative systems necessary for quality care and service  Includes file reviews containing Protected Health Information (PHI)

HIPAA & QI Activities Impact of the final privacy regulation:  Clarified that the definition of “Health Care Operations” includes quality improvement activities, including accreditation [45 CFR ]  Eliminated the consent requirement when PHI is used or disclosed for Treatment, Payment and Health Care Operations (TPO) [67 FR 53182]

Alignment of Accreditation Standards with HIPAA Changes effective July 2003: Consent  Removed requirements for organizations to obtain routine consent  For uses beyond TPO, authorization still required  Must give notice of privacy practices (no signature required)

Alignment of Accreditation Standards with HIPAA, cont. Changes for 2003: Members’ Rights  Member must have rights to Access, Amend and Receive an Accounting of Disclosures  Incorporated protections concerning disclosure of PHI to employers

Alignment of Accreditation Standards with HIPAA (con’t) Changes for 2003: Definitions & Delegations  Incorporate definition of PHI  Privacy Officer  Some BA requirements incorporated in delegation standards

HIPAA Comparative Analysis For a comprehensive comparative analysis, see the AHLA publication “National Accreditation Standards and HIPAA: A Comprehensive Analysis.”

HIPAA & Data Collection and Analysis HEDIS ® : A set of measures (HEDIS, CAHPS ®, HOS) used to assess the quality of clinical care and services provided. Involves the collection of data containing PHI.  Measures development  Assessment and reporting of quality performance

HIPAA & HEDIS Analysis of HEDIS - related activities under HIPAA:  Final rule removed obstacles to requiring access to HEDIS data  Data Use Agreement (DUA) required for NCQA  Limited Data Set applies

NCQA HIPAA Readiness: Business Associate Contract Draft Business Associate Contract Addendum Addresses: Business Associate Contract Provisions Required by the Privacy Regulation NCQA’s Data Collection Activities - data aggregation Data Use Agreement

Business Associate Contract (Con’t) Timeline for BA Addendum:  Currently being field tested – comments due by 11/06/02  Final version completed by 11/22/02 and mailed to all NCQA accredited and certified covered entities

NCQA HIPAA Readiness: Internal Operations Privacy & Security Protections Tracking requests for Access, Amendments and Accounting of Disclosures Data Use, Storage and Disposal Data Transmission

Certification for Business Associates  NCQA is developing a program to certify privacy practices of business associates  Goal: To provide “Satisfactory safeguards” of privacy practices  Includes self assessment, review of policies and procedures and on-site review

Certification for Business Associates Why get certified or require certification?  Reduces costs of due diligence and oversight  Makes contracting easier  Demonstrates reasonable safeguards and potentially reduces liability  May result in insurance discounts

Certification for Business Associates Areas covered under draft standards:  Internal Operations (self-assessment, internal safeguards, personnel, breaches of protections)  Covered entities and agents (contracts, uses & disclosures)  Consumer Rights (access & amendments to PHI, accountings & disclosures, authorizations)  Use and disclosure of PHI (tracking, accountings, minimum necessary, security, de-identification)

Certification for Business Associates  Draft standards public comment mid- November  Final standards mid-April 2003  Surveys commence June 2003  Early adopters December 31, 2003 –First 10 get 20% discount

NCQA HIPAA Contacts  BA Addendum – Sharon King Donohue (202) or Patricia Pergal (202)  Certification of privacy practices for Business Associates – Bill Tulloch (202) or Anna Mangum (202)