Privacy Issues in Healthcare Xintao Wu University of North Carolina at Charlotte Nov 1, 2012.

Slides:

Advertisements

Similar presentations

HIPAA: An Overview of Transaction, Privacy and Security Regulations Training for Providers and Staff.

Advertisements

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

Confidentiality and HIPAA

HIPAA Privacy Rule Training

HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

Privacy Laws & Higher Education. Agenda 1.Five Privacy Laws a.FERPA b.HIPAA c.GLB d.FACTA Disposal Rule e.CAN-SPAM 2.Overview of the Laws a.What does.

 Original Intent: ◦ Act passed in 1996 with two main goals: 1.Ensure individuals would be able to maintain their health insurance between jobs (the “portability”

 The Health Insurance Portability and Accountability Act of  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

Are you ready for HIPPO??? Welcome to HIPAA

School-Based Health Centers & Confidentiality: Understanding FERPA & HIPAA Laurie Mesibov & Jill Moore UNC School of Government December 2012.

PRIVACY BREACHES A “breach of the security of the system”: –Is the “unauthorized acquisition of computerized data that compromises the security, confidentiality,

MoneyWi$e: ID THEFT & ACCOUNT FRAUD ID Theft & Account Fraud Prevention and Clean Up © 2009.

FERPA: Family Educational Rights and Privacy Act.

1 GRAND VALLEY STATE UNIVERSITY FAMILY EDUCATIONAL RIGHTS & PRIVACY ACT (FERPA) TRAINING OFFICES OF THE REGISTRAR AND UNIVERSITY COUNSEL JANUARY 20, 2009.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.

Have You Read Your Medical Record? Peggy Beck, RHIA, CMT, FAAMT.

ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.

Standard 29 CFR Part Access to Employee Exposure and Medical Records Training.

Banks and the Privacy of Medical Information 8 th National HIPAA Summit March 8, 2004 Joy Pritts, JD Health Policy Institute Georgetown University

Copyright © 2005 Thomson Delmar Learning. ALL RIGHTS RESERVED.1 This product was funded by a grant awarded under the President’s Community-Based Job Training.

HIPAA PRIVACY AND SECURITY AWARENESS.

1 General Awareness Training Security Awareness Module 1 Overview and Requirements.

STANDARD 5.3 Objective 3 Students will explain and understand the need for confidentiality.

Health Insurance Portability and Accountability Act (HIPAA)

Confidentiality and Drug Courts Carson Fox Esq. Steve Hanson M.S. Ed.

Component 4: Introduction to Information and Computer Science Unit 2: Internet and the World Wide Web 1 Component 4/Unit 2Health IT Workforce Curriculum.

Medical Law and Ethics, Third Edition Bonnie F. Fremgen Copyright ©2009 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved.

Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal.

Understanding HIPAA (Health Insurandce Portability and Accountability Act)

Mr. Fleming.  Law passed by Congress in  Right to Privacy ◦ Medical information of patient can only be shared with doctor and professionals administering.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.

HIPAA THE PRIVACY RULE. 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti- depressant medications.

1 CONFIDENTIALITY. 2 Requirement Under IDEA 34 CFR Sec (c) All staff collecting or using personally identifiable information in public education.

Medical Manager Unit 9 ICBS 170. Medical Manager Electronic Data Interchange (EDI)  Ability to request, receive, transfer and integrate information electronically.

HIPAA LAWS.  Under the privacy rule, the patient must give consent to use his or her Protected Health Information.  Examples in which consent must be.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 7 Medical Records and Informed Consent.

C HAPTER 34 Code Blue Health Sciences Edition 4. Confidentiality of sensitive information is an important issue in healthcare. Breaches of confidentiality.

FERPA AND HIPAA COMPLIANCE AS COMMUNITY PARTNERS Written and presented by Nicole M. Thompson School Board Attorney, School Board of the City of Richmond.

Copyright © 2015 by Saunders, an imprint of Elsevier Inc. All rights reserved. Chapter 3 Privacy, Confidentiality, and Security.

Medical Documentation

HIPAA Overview Why do we need a federal rule on privacy? Privacy is a fundamental right Privacy can be defined as the ability of the individual to determine.

CONFIDENTIALITY. Three Confidentiality Laws 1.FERPA-Family Education Rights and Privacy Act (State Policy 4350: Procedures for the Collection, Maintenance.

Table of Contents. Lessons 1. Introduction to HIPAA Go Go 2. The Privacy Rule Go Go.

HIPAA TRIVIA Do you know HIPAA?. HIPAA was created by?  The Affordable Care Act  Health Insurance companies  United States Congress  United States.

What is HIPAA? Health Insurance Portability and Accountability Act of HIPAA is a major law primarily concentrating on the prolongation of health.

1 HIPAA’s Impact on Depository Financial Institutions 2 nd National Medical Banking Institute Rick Morrison, CEO Remettra, Inc.

HIPAA Training Workshop #3 Individual Rights Kaye L. Rankin Rankin Healthcare Consultants, Inc.

HIPAA Privacy Rule Training

FERPA AND HIPAA COMPLIANCE AS COMMUNITY PARTNERS

What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.

Electronic Health Records (EHR)

South Carolina AHEC Health Careers Academy

Lesson 3- Health Information Technology & Clients

Electronic Transactions Workshop

Patient Medical Records

Electronic Transactions Workshop

Component 4: Introduction to Information and Computer Science Unit 2: Internet and the World Wide Web Lecture 4 This material was developed by Oregon.

Disability Services Agencies Briefing On HIPAA

Lesson 1- Introduction to Health Information Technology

Health Care: Privacy in a Digital Age

The Health Insurance Portability and Accountability Act

Lesson 1: Introduction to HIPAA

Presentation transcript:

Privacy Issues in Healthcare Xintao Wu University of North Carolina at Charlotte Nov 1, 2012

2 Introduction HIPAA Federal Health Insurance Portability and Accoutability, only applies to medical records maintained by health care providers, health plans, and health clearinghouses, and only if the facility maintains and transmits records in electronic form. A lot information on medical records not covered by HIPAA

3 Medical records Created when you receive treatment from a health professional. Include your medical history, details about your lifestyle, family medical history, laboratory test results, medications prescribed, and reports on operations/medical procedures. Information you provide on applications for disability, life or accidental insurance

4 Medical information not covered by HIPAA Financial records Federal Gramm-Leach-Bliley Act GLB gives you the right to be notified about the information sharing practices of financial institutions. You can opt-out of third party information sharing. Your credit card account and checking transactions may include information about where you go for health care. Insurance applications and medical claims also contain health-related information. Such information may be shared among affialates of financial institutions. Education records US Dept. of Education and the Family Educational Rights and Privacy Act, FERPA. Vaccination histories, physical examination for sports, counseling for behaviral problems, records of visits to the school nurse.

5 Medical information not covered by HIPAA Employment records Occupational Safety and Health Act – oSHA Employer may request a doctor’s certification of the illness. But the employer cannot make you produce medical records.

6 Access to your medical records Insurance companies Are considered as financial institutions under GLB law. Must provide you a notice of how they gather and use your information. Government agencies Request your medical records to verify claims made through medicare, social security disability etc. Medical Information Bureau A central database of medical information shared by insurance companies. With 15 million people. When you apply for life or health insurance as an individual, you are likely to be asked to provide information about your health. If you have medical conditions that insurance companies consider significant, the insurance company will report that information to the MIB.

7 Access to your medical record IntelliScript and MedPoint Databases that report prescription drug purchase histories to insurance companies. They may prompt an insurer to deny coverage for certain conditions, increase insurance premiums, or deny coverage altogether. Such adverse actions by insurance companies trigger a sequence of consumer rights under the Fair Credit Reporting Act (FCRA). Employers A potential employer may ask for medical information as part of an employment background check. However Employers may not ask job applicants about medical information or require a physical examination prior to offering employment. After employment is offered, an employer can only ask for a medical examination if it is required of all employees holding similar jobs

8 Access to your medical record Subpoenaed for court cases Other disclosures Your medical information may be used for health research and may be disclosed to public health agencies like CDC. Specific names are usually not given to researchers. Medical information may be passed to direct marketers when you participate in informal health screenings. Internet

9 Protect your medical records Discuss your confidentiality concerns with your doctor. bring a written request to the appointment that revokes your consent to release medical information to the insurance company and/or to your employer for that visit. Ask your health care provider to use caution when photocopying portions of your medical records for others. Find out if your health care provider has a policy on the use of cordless and cellular phones and fax machines when discussing and transmitting medical information. If your records are subpoenaed for a legal proceeding, they become a public record. Ask the court to allow only a specific portion of your medical record to be seen, or better yet, not to be open at all.

10 Protect your medical records Think twice before filling out marketing-related questionnaires. They commonly contain sections that ask for a great deal of family health information. Before participating in health screenings offered in shopping malls and other public places, find out what uses will be made of the medical information that is collected. Use caution when visiting health-related websites and when participating in online discussion groups. Establish your own history of treatment. If your employer offers an employee health or wellness program, an EHP, ask about any established privacy policy. You want to know whether your progress reports will be maintained by an outside consultant or made a part of your permanent personnel file.

11 Access to your own medical records HIPAA requires health care providers, health plans, and health care clearinghouse to allow you access to your medical records. Notices you receive from providers and plans must include information about how you can obtain copies of your medical records.

State laws HIPAA sets the “floor” on privacy rights. That means states are free to adopt more stringent medical privacy laws, but states cannot pass any law that takes away your HIPAA rights. A California law effective in January 2009 gives you the right to sue for privacy violations. 12

13 Electronic health records In January 2005 the Bush Administration called for the creation of a nationwide network of electronic health records (EHR) within 10 years. In January 2009, President Obama signed the American Recovery and Reinvestment Act of 2009, Public Law No: 111-5, also known as the Stimulus Law, which allocates 19 billion dollars for electronic health records by the year Electronic health records, EHRs, refers to a government-promoted technological system that allows health care providers to consolidate, store, retrieve and share medical information about an individual’s entire medical history. EHRs, with the goal of eventually making paper records obsolete, are endorsed as a way to save money and reduce medical errors. Personal Health Records (PHRs). Various commercial systems for storing medical records have also emerged in recent years. Such systems, operated by Internet vendors are called personal health records or PHRs, and allow consumers to create their own health history. One example of PHR is the Microsoft HeathVault website.Microsoft HeathVault websit Google intends to offer a similar service.

14 Q A &