HIPAA Update Randy Snyder. Topics Today  Security Primer  Electronic Transactions Clearinghouse Update  Secure Certificates.

Slides:



Advertisements
Similar presentations
Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance.
Advertisements

CONFIDENTIAL 1 Preparing for & Maintaining PCI Compliance.
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
What you need to know about billing to Medicaid Beverly Remm Director of Billing Orion Healthcare Technology.
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
Presents: Weekly HIPAA Teleconference Revised
ICN PresentationHIPAA Compliance Training February 5, 2003 Presented by the State of Iowa Enterprise HIPAA Compliance Project Office and.
CHAPTER © 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2 The Use of Health Information Technology in Physician Practices.
HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.
Reviewing the World of HIPAA Stephanie Anderson, CPC October 2006.
Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
CAMP Med Building a Health Information Infrastructure to Support HIPAA Rick Konopacki, MSBME HIPAA Security Coordinator University of Wisconsin-Madison.
1 HIT Standards Committee Privacy and Security Workgroup: Recommendations Dixie Baker, SAIC Steven Findlay, Consumers Union August 20, 2009.
Conformity Assessment Practical Implications InterAgency Committee on Standards Policy June 2007 Gordon Gillerman Conformity Assessment Advisor Homeland.
6/3/20151 MARS... and the YEAR 2000 Management Administrative and Reporting System Commonwealth of Kentucky.
October 1, 2005 (Rev. 10/06) Statewide Electronic Commerce Program (SECP) Electronic Funds Transfer Enrollment Process For agencies and eligible entities.
First Practice - Information Security Management System Implementation and ISO Certification.
MDCH HIPAA Transactions Provider Outreach David McLaury Director of Project Development and Implementation
Electronic Funds Transfer Enrollment Process For agencies and eligible entities desiring to participate in the State Controller’s Master Services Agreement.
5 TH National HIPAA Summit HIPAA Vendor Readiness SIEMENS/HDX Presentation 1 November 2002 Don Bechtel HDX Compliance Officer Co-chair WEDI SNIP Transactions.
N ational P rovider I dentifier Type 1 Workforce Training Month Day, Year The NPI will become the standard, unique identifier for health care providers.
HCCA HIPAA Readiness Survey Results Jody Noon Principal Deloitte & Touche Portland, OR November, 2002 John Steiner Esq. Chief Compliance Officer Cleveland.
Information Security Training for Management Complying with the HIPAA Security Law.
The Use of Health Information Technology in Physician Practices
Evolving IT Framework Standards (Compliance and IT)
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
“ Technology Working For People” Intro to HIPAA and Small Practice Implementation.
VALUEOPTIONS® MARYLAND FRIDAY, MARCH 15, ValueOptions® Maryland is the partnership between the Department of Health and Mental Hygiene (DHMH)/Mental.
Company LOGO Data Privacy HIPAA Training. Progress Diagram Function in accordance Apply your knowledge Learn the Basics Orientation Evaluation Training.
State of Iowa Enterprise HIPAA Compliance
Health Insurance Portability and Accountability Act (HIPAA)
Health Insurance Portability and Accountability Act of 1996 (HIPAA) Proposed Rule: Security and Electronic Signature Standards.
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.
Instructional & Information Technology Services Fall, Activities and Updates Teresa Macklin Information Security Officer Information Security.
Eliza de Guzman HTM 520 Health Information Exchange.
September 12, 2004 Simplifying the Administration of HIPAA Security Angel Hoffman, RN, MSN Director, Corporate Compliance University of Pittsburgh Medical.
Ali Pabrai, CISSP, CSCS ecfirst, chairman & ceo Preparing for a HIPAA Security Audit.
Design of Health Technologies lecture 22 John Canny 11/28/05.
1 Craig D. Azoff, Director Administrative Information Systems Bill Luecken, Senior Director Information Systems Eric Steinhardt, Security Manager 13 th.
HIPAA Vendor Readiness Siemens/HDX Audio Telecast July 24, 2002.
Note1 (Admi1) Overview of administering security.
1 HIPAA Administrative Simplification Standards Yesterday, Today, and Tomorrow Stanley Nachimson CMS Office of HIPAA Standards.
Working with HIT Systems
HIPAA Health Insurance Portability and Accountability Act of 1996.
Standard Unique Health Identifier for Health Care Providers April 9, th Annual HIPAA Summit Gail Kocher Highmark.
Internal Control Update FY 2011 Unit Certification Results and FY 2012 Plans April 10, 2012 BAG Meeting.
Confidential 1 HIPAA Compliance at Blue Cross Blue Shield of Minnesota: A Case Study Tim Wittenburg Director of Corporate Architecture & Data Management.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
Copyright © 2007 Pearson Education Canada 23-1 Chapter 23: Using Advanced Skills.
HIPAA Summit Practical Approaches to Sticky Payer Issues April 26, 2002 Bob Perlitz, AVP, HIPAA Compliance Officer.
Case Study: Applying Authentication Technologies as Part of a HIPAA Compliance Strategy.
WESTERN PA CHAPTER OF THE AMERICAN PAYROLL ASSOCIATION – NOVEMBER 4, 2015 Risk Management for Payroll.
Information Security Office: Function, Alignment in the Organization, Goals, and Objectives Presentation to Sacramento PMO March 2011 Kevin Dickey.
The Health Insurance Portability and Accountability Act of 1996 “HIPAA” Public Law
HIPAA Transactions and Code Sets LA County Department of Mental Health Solution June 5, 2003.
HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services.
Unique Medical Billing Plus
Electronic Transactions Workshop
Pass4itsure Cisco Dumps
Electronic Transactions Workshop
Donna Eden Office of General Counsel, HHS
Case Study: Vendor Readiness for HIPAA Compliance
Final HIPAA Security Rule
County HIPAA Review All Rights Reserved 2002.
Contents subject to change.
HIPAA Security Standards Final Rule
HIPAA Compliance Services CTG HealthCare Solutions, Inc.
Introduction to the PACS Security
Presentation transcript:

HIPAA Update Randy Snyder

Topics Today  Security Primer  Electronic Transactions Clearinghouse Update  Secure Certificates

Where are we at with HIPAA?  Privacy Practices –Policies and Procedures available at ISAC website  Electronic Transactions –Electronic Transaction Clearinghouse –28E ETC via ISAC  Security Regulations (April 2005) –Policies and Procedures TBA

Privacy Practices  Implemented in April 2003  Changes in Policies and Procedures  Available via ISAC Website –

Electronic Transactions & Code Sets  October 2003 Implementation  Payers must be capable of accepting HIPAA Compliant Transactions if requested by Provider  28E ETC (Electronic Transaction Clearinghouse) administered by ISAC 

28E ETC  Available to all counties currently 65 signed up  CPC, Jail, General Assistance typical initial HIPAA users (currently inbound only)  EDI Transactions capability  Future potential other uses could include electronic ordering, invoicing and payments for use by other departments

ETC Features  Internet Access –SSH FTP for Providers (Medical Practitioners) –Secure Website for Counties –Option for SSH FTP for file transmissions to counties  Support by ISAC’s Tammy Norman –Voice Phone: –  Secure Hosting Facility by Quilogy

ETC Features cont.  Processes –837/835 Claims –277/276 Eligibility –270/271 Status  Multiple Dept Capable –Requires separate Taxpayer Identification Number  Internal Process Independent  Printable Transactions  Auditable Transaction Numbers  Notification  Future updates/ changes dependent on County input

Security Regulations Compliance  April 2005 Compliance Date  Policies and Procedures being developed by HIPAA Security Committee (Chaired by Jim Rice, Cerro Gordo)  To be published via ISAC Website

Security Action Plan  Assign Security Officer Role  Establish Policies and Procedures –Look for Boilerplates on ISAC Website  Perform Risk Assessment  Resolve Findings in Risk Assessment  Develop & Implement Risk Mgmt Plan –Continuity Plan Disaster Recovery Data Backup –Security Procedures Server/Workstation Network Infrastructure Physical/Logical

Components of Security  People –Awareness –Competency  Process –Policies –Procedures  Technology –Perimeter Hardening –Critical Core Strengthening

Resources  ISAC –  ICIT –  SNIP –

Questions?