Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance.

Slides:



Advertisements
Similar presentations
H = P = A = HIPAA DEFINED HIPAA … A Federal Law Created in 1996 Health
Advertisements

SIMPLIFYING PRIVACY: HIPAA PRIVACY STANDARDS AND RESEARCH Angela M. Vieira General Counsel Childrens Hospital and Health Center June 5, 2004.
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
Todd Frech Ocius Medical Informatics 6650 Rivers Ave, Suite 137 North Charleston, SC Health Insurance Portability.
Electronic Medical Records: Implications of HIPAA for Selecting and Implementing an EMR Todd Frech Senior Partner
HIPAA AWARENESS TRAINING
Hipaa privacy and Security
Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.
1 The Health Insurance Portability and Accountability Act (HIPAA) A guided tutorial for GVSU employees.
HIPAA Basics Brian Fleetham Dickinson Wright PLLC.
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.
HIPAA Privacy Rule Training
HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
HIPAA What’s New? What Is HIPAA Health Insurance Portability and Accountability Act of 1996 Health Insurance Portability and Accountability Act.
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
Presented by the Office of the General Counsel An Overview of HIPAA.
NAU HIPAA Awareness Training
HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.
Reviewing the World of HIPAA Stephanie Anderson, CPC October 2006.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
H IPAA PRIVACY WORK GROUP FOR EYE BANKS EBAA HIPAA PRIVACY WORK GROUP Christina W. Strong, Esq., Facilitator.
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.
HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.
HIPAA Health Insurance Portability & Accountability Act of 1996.
HIPAA – Health Insurance Portability & Accountability Act and the Privacy Act MSgt Nechele M. Chambers Senior Enlisted Liaison TRICARE Area Office-Europe.
HIPAA PRIVACY AND SECURITY AWARENESS.
“ Technology Working For People” Intro to HIPAA and Small Practice Implementation.
HIPAA The Privacy Rule Health Insurance Portability and Accountability Act of 1996 (HIPAA) The 104 th Congress passed the Act, Public Law ,
State of Iowa Enterprise HIPAA Compliance
Health Insurance Portability and Accountability Act (HIPAA)
Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.
Working with Health IT Systems Protecting Privacy, Security, and Confidentiality in HIT Systems Lecture a This material (Comp7_Unit7a) was developed by.
HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.
Medical Law and Ethics, Third Edition Bonnie F. Fremgen Copyright ©2009 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved.
LeToia Crozier, Esq., CHC Vice President, Compliance & Regulatory Affairs Corey Wilson Director of Technical Services & Security Officer Interactive Think.
Health Insurance Portability and Accountability Act (HIPAA) CCAC.
Health Insurance Portability and Accountability Act of 1996 HIPAA Privacy Training for County Employees.
Understanding HIPAA (Health Insurandce Portability and Accountability Act)
Eliza de Guzman HTM 520 Health Information Exchange.
© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.
HIPAA PRACTICAL APPLICATION WORKSHOP Orientation Module 1B Anderson Health Information Systems, Inc.
Patient Confidentiality and Electronic Medical Records Ann J. Olsen, MBA, MA Information Security Officer and Director, Information Management Planning.
The Culture of Healthcare Privacy, Confidentiality, and Security Lecture d This material (Comp2_Unit9d) was developed by Oregon Health and Science University,
1 HIPAA Administrative Simplification Standards Yesterday, Today, and Tomorrow Stanley Nachimson CMS Office of HIPAA Standards.
Rhonda Anderson, RHIA, President  …is a PROCESS, not a PROJECT 2.
Working with HIT Systems
Copyright ©2014 by Saunders, an imprint of Elsevier Inc. All rights reserved 1 Chapter 02 Compliance, Privacy, Fraud, and Abuse in Insurance Billing Insurance.
HIPAA Health Insurance Portability and Accountability Act of 1996.
Working with HIT Systems Unit 7a Protecting Privacy, Security, and Confidentiality in HIT Systems This material was developed by Johns Hopkins University,
The Health Insurance Portability and Accountability Act of 1996 “HIPAA” Public Law
The Health Insurance Portability and Accountability Act 
HIPAA Privacy Rule Training
Health Insurance Portability and Accountability Act of 1996
Health Insurance Portability and Accountability Act HIPAA 101
What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.
HIPAA Administrative Simplification
HIPAA PRIVACY AWARENESS, COMPLIANCE and ENFORCEMENT
Disability Services Agencies Briefing On HIPAA
Lesson 1  7 Basic Components of an Effective Compliance Plan
HIPAA Security Standards Final Rule
Enforcement and Policy Challenges in Health Information Privacy
HIPAA Policy & Procedure Strategies
Introduction to the PACS Security
Presentation transcript:

Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance

HIPAAs Components Administrative Simplification –Transaction Standards EDI standards for claims, enrollment, authorizations Effective Date: August 17, 2000 Compliance Date: October 16, 2002 –Privacy Rules Appropriate use of protected health information (PHI) Patients rights for access, corrections and disclosures Effective Date: April 14, 2001 Compliance Date: April 14, 2003 –Security Rules Integrity, confidentiality and availability of PHI Effective Date: TBD Compliance Date: TBD

Are you covered by HIPAA? Covered Entities: –All Health Plans –All Health Clearinghouses –All providers who transmit health information electronically

What information is covered? The current privacy rules covers individually identifiable health information –Electronic –Written –Oral

HIPAA Compliance Steps Appoint a Privacy Officer Evaluate existing information disclosure practices Develop appropriate policies and procedures Develop and implement Chain of Trust Agreements Develop and conduct employee training Evaluate and possibly upgrade information systems and networks Conduct a self evaluation

Information Disclosure Practices CLIA supercedes HIPAAs requirements for reference labs (45 CFR § (1)(iii) ) –Does require that information be protected –Does require a Chain of Trust Agreement with Business Associates –Does not require information disclosure to patients (unless required by state law) –Does not require laboratories to establish patient initiated correction processes

Compliance for Information Disclosures Evaluate who has access to your protected health information –Billing service –Accountant –QA or inspection teams –Vendors –Consultants and contractors –Marketing organizations

Chain of Trust Agreement Agreement between a covered entity and an outside organization that has access to PHI Outlines requirements for a Business Associates use and protection of PHI Describes sanctions and penalties if PHI is disclosed HIPAA has no authority over Business Associates

Polices and Procedures HIPAA Policies and Procedure Requirements –Integrated with your existing policies and procedures –Designed to reduce the risk of unapproved information disclosure –Must also support the availability, confidentiality and integrity of health information

Employee Training Initial Privacy and Security Training –Must be conducted at all organizational levels –Authorized disclosures –Unauthorized disclosures –Patients rights to access and correction –Penalties and sanctions Organizations must provide periodic awareness training to all employees

IT Evaluation Applications and networks must support the availability, confidentiality and integrity of PHI –Evaluate network security –Application security and user authentication –Perform periodic system audits –Implement standard back up procedures –Implement disaster recovery procedures

Compliance Evaluation Compliance enforcement: HHS Office of Civil Rights –Compliance assistance –Scheduled and spot inspections –Evaluation of patient complaints –Fines Criminal Investigations: Justice Department

Resources Enclosed CD –Sample policy –Project plan –HIPAA preparation checklist OMI Web Site –Monthly updates –Links to other HIPAA resources Administrative Simplification Web Site –Full text of the regulations –FAQ HIPAA-REGS list server –Announcements and updates to all three rules

Questions?