Copyright © 2003 HealthTrio, Inc. 1 Achieving HIPAA and E-Business Objectives in Less than 90 days Ralph A. Korpman, MD CEO, HealthTrio 6 th Annual HIPAA.

Slides:



Advertisements
Similar presentations
Healthcare Payment & Remittance Medical Banking - Best Practices
Advertisements

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.
Medicaid Management Information System (MMIS) Replacement
Copyright © 2005 EFT Network, Inc. All Rights Reserved. Automated Recurring Payments Flexible Payment Solution.
Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.
1 Health Insurance Portability and Accountability Act of 1996 IS&C Expo October 16 & 17, 2002 John Wagner Governor’s Office of Technology.
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
Netcentives Inc. 475 Brannan St. San Francisco, CA NASDAQ: NCNT Netcentives Inc. 475 Brannan St. San Francisco,
The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.
Bringing HIPAA to Hospital Systems HIPAA impact on hospital systems viaMD solution for HIPAA compliance W e b e n a b l i n g Pa t i e n t A d m i t t.
HIPAA Administrative Simplification Final Rule for Transactions Code Sets Stanley Nachimson
Westbrook Technologies from Document Management’s Role in HIPAA.
Presents: Weekly HIPAA Teleconference Revised
TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.
SLIDE 1 Westbrook Technologies from Fortis: A Healthcare Solution for Medical Records, Billing and HIPAA.
CHAPTER © 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2 The Use of Health Information Technology in Physician Practices.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
Pharmaceutical Care Solutions 8 March 2010 © Copyright ESH 2010 Submission to Greek Ministry.
Leveraging a Single Platform - Connecting a Statewide Healthcare Ecosystem Michigan Association of Health Plans Rick Murdock Executive Director Michigan.
Massachusetts: Transforming the Healthcare Economy John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.
Implementing an Enterprise Security System for Internet Authentication and Authorization Ken Patterson, CISSP Information Security Officer Harvard Pilgrim.
2 The Use of Health Information Technology in Physician Practices.
HIPAA TRANSACTIONS HIPAA Summit IV 2002 UPDATE. HHS Office of General Counsel l Donna Eden l Office of the General Counsel l Department of Health and.
A Primer on Healthcare Information Exchange John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.
agenda About Availity Claims Management Tools & Services What’s Coming
Secure Practice Management System for Small Healthcare Providers Kingdom Iweajunwa Saeed Rajput.
Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.
August 22, 2002 THE HIPAA COLLOQUIUM at Harvard University A. John Blair, III, MD Chairman and Chief Executive Officer Taconic IPA, Inc. Fishkill, NY HIPAA.
Connecticut Ave NW, Washington, DC Direct Exchange An Introduction for Providers Engaged in Stage 2 Meaningful Use David.
5 TH National HIPAA Summit HIPAA Vendor Readiness SIEMENS/HDX Presentation 1 November 2002 Don Bechtel HDX Compliance Officer Co-chair WEDI SNIP Transactions.
4th Annual Investor Conference May 16, 2001 BUSINESS TRANSFORMATION AND INNOVATION SERVICES Gary Velasquez President.
D E L T A Health Systems MCOL Health Web Summit New Directions in Managing Health Care Costs December 2002 Self Funding: Emphasis on Benefits & Costs Delivering.
Internet Trust Defined. Delivered. Electronic Business the Way It Was Meant to Be.
The Use of Health Information Technology in Physician Practices
“ Technology Working For People” Intro to HIPAA and Small Practice Implementation.
"For distribution to Plan Sponsors only". How many third party administrators are involved with your benefits offering at this time? Do you have access.
AL-MAAREFA COLLEGE FOR SCIENCE AND TECHNOLOGY INFO 232: DATABASE SYSTEMS CHAPTER 1 DATABASE SYSTEMS (Cont’d) Instructor Ms. Arwa Binsaleh.
The Evolution of the Referral Process
HIPAA & Public Schools New Federalism in a New Century The Challenges of Administering HIPAA in Public Schools ASTHO/NGA Center Joint Audioconference September.
Interfacing Registry Systems December 2000.
HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.
1 E-Health Source: Information Systems for Healthcare Management, 6th Edition Authors: Charles J. Austin and Stuart B. Boxerman Health Administration Press.
April 2005 pebb.benefits Project Overview. Page 1  Approx. 129 PEBB agencies  Over 110,000 members  17 databases for benefit administration  Paper.
Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.
© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.
HIPAA For Provider Contracting Networks Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)
Community Connectivity The MA Experience John D. Halamka MD CIO, Harvard Medical School CIO, CareGroup Chairman, NEHEN.
Customer Interface for wuw.com 1.Context. Customer Interface for wuw.com 2. Content Our web-site can be classified as an service-dominant website. 3.
Patient Confidentiality and Electronic Medical Records Ann J. Olsen, MBA, MA Information Security Officer and Director, Information Management Planning.
HIPAA Vendor Readiness Siemens/HDX Audio Telecast July 24, 2002.
OHCAs, ACEs and Hybrid Entities Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)
Health Information Technologies and Health Care Transformation James Golden, PhD Director, Division of Health Policy Minnesota Department of Health February.
HIPAA Summit Audioconference Analysis of Addenda to HIPAA Transactions and Code Sets Rule Larry Watkins Executive Vice President, Claredi Co-chair, WEDI.
Michael Milgramm, CEO/CTO Donald Kovalevich, President John Fricke, VP Business Development IdentaZone, Inc © Copyright 2012 IdentaZone provides a multi-layer.
Telephone Checks Innovative, Flexible, and Convenient Payment Solution.
Confidential 1 HIPAA Compliance at Blue Cross Blue Shield of Minnesota: A Case Study Tim Wittenburg Director of Corporate Architecture & Data Management.
2015 NetSymm Overview NETSYMM OVERVIEW December
Copyright © 2015 by Saunders, an imprint of Elsevier Inc. All rights reserved. Chapter 3 Privacy, Confidentiality, and Security.
Systems, Data and HIPAA from a Medicaid Perspective Rick Friedman, Director Division of State Systems Center for Medicare and Medicaid US Dept Health &
1 Administrative Simplification: The Last Word National HIPAA Summit 8 Baltimore, MD March 9, 2004 William R. Braithwaite, MD, PhD “Doctor HIPAA”
Table of Contents. Lessons 1. Introduction to HIPAA Go Go 2. The Privacy Rule Go Go.
The Medical College of Georgia HIPAA Privacy Rule Orientation.
©2014 Cleo. All rights reserved. Company confidential. Managing Chaos: Andy Moir Director, Product Marketing 2 Data Movement in 2015.
©2010 RealMed Corporation. RealMed Overview National Committee on Vital and Health Statistics Subcommittee on Standards Sean Kilpatrick, Director of Product.
SAP GRC(Governance Risk and Compliance)/SECURITY ONLINE TRAINING  Magnific Name : SAP GRC/SECURITY 24*7 Technical support  faculty : Real time Experience.
Electronic Transactions Workshop
Electronic Transactions Workshop
Presentation transcript:

Copyright © 2003 HealthTrio, Inc. 1 Achieving HIPAA and E-Business Objectives in Less than 90 days Ralph A. Korpman, MD CEO, HealthTrio 6 th Annual HIPAA Summit May, 2003 Washington DC

2 Health Plan Needs HIPAA Compliance –Security –Privacy –Transactions E-Business –Connect to key stakeholders –Reduce administrative costs –Improve customer satisfaction

3 HealthTrio develops e-health and core administrative business solutions that enable managed care organizations to compete more effectively by reducing operational costs, strengthening relationships with trading partners, and ensuring HIPAA compliance.

4 Health Plan Provider  Eligibility and Benefits  Referrals and Authorizations  Claims Status and History  Direct Claim Submission  Lab Results  Medication and Formulary Management, Prescription Entry  Point of Service Settlement Member  Personalized Personal Health Record  Adds/Updates  Reminders/Disease Management  Benefit Query and Management Employer Automated Benefit Management Billing reconciliation Online enrollment HR Services Broker Online Benefit Packages Online Quote Generation Online Enrollment Eligibility & Benefits

5 HIPAA Status RegulationProposedFinalCompliance Standards for Electronic Transactions 05/07/199808/17/2000 (Addenda 02/20/2003) 10/16/2003 National Standard Healthcare Identifier 05/07/1998Expected National Standard Employer Identifier 06/16/199805/31/200207/30/2004 Security Standards08/12/199802/20/200304/21/2005 Privacy and Patient Confidentiality 11/03/199912/28/200004/14/2003 Standards for Electronic Claims Attachments Expected 2003 Expected – 2007 National Standard Health Plan Identifier Expected 2003 Expected – 2007 Source:

6 Standards for Electronic Transactions Health Plans must: –Accept standard transactions –Send standard transactions –Manage passage of information to/from existing systems –Communicate with business partners using standards

7 Security Standards Health Plans must: –Maintain control of their data –Implement access control and authorization (role- and user-based security) –Protect data at the data element level (what happened) –Shift focus from transactions – Security is a major undertaking

8 Privacy and Patient Confidentiality Health Plans must: –Comply with minimum necessary disclosure provisions –Maintain complete audit trails for every access (successful and failed)treatment, payment and healthcare operations –Allow members to exercise control over how their information is used –Protect data at the data element level (who did it and why)

9 Health Plan HIPAA Issues Core systems that are not HIPAA compliant or HIPAA compliable Core systems that are not able to secure the data at the data element level Multiple core systems Industry still has large number of paper claims (40-50% of all claims still arrive on paper)

10 Health Plan HIPAA Options Per Gartner Analyst: Wes Rischel –Wrap –Hack –Map –Combo: Wrap/Hack/Map

11 HealthTrio Enables HIPAA Compliance WRAP core systems with secure architecture Include full audit trails for all access attempts Secure all data at the data element level Three-dimensional security –Who can access data or perform transactions? –What can they see and do? –Which specific pieces of data are available?

12 How HealthTrio Works HealthTrio connect data server HealthTrio connect data server(s) HealthTrio connect data server HealthTrio connect Application Server Farm Health Plan #1 Health Plan #3 Health Plan #2 Legacy Client/Server Provider Member Broker Employer

13 HealthTrio connect Application Server Farm Provider Member Broker Employer Complete Data, Rule and Process Model Secured at the data element level “Understand the data” HealthTrio connect data server HealthTrio connect data server(s) HealthTrio connect data server Health Plan #1 Health Plan #3 Health Plan #2 Legacy Client/Server Intelligent Connectivity™ Keep Health Plan data on site Employer Meet HIPAA requirements for data element security Allows for: Real-time interaction & auto-adjudication Common look and feel Care management initiatives

14 Provider Member Broker Employer HealthTrio connect data server HealthTrio connect data server(s) HealthTrio connect data server HealthTrio connect Application Server Farm Health Plan #1 Health Plan #3 Health Plan #2 Legacy Client/Server Intelligent Connectivity HealthTrio Web Farm: Presentation Security access Directory Services User specific views for Providers, Employers, Members and Brokers

15 How does HealthTrio enable HIPAA Compliance? HIPAA Requires: HealthTrio Offers: Transaction and Code Set Standards Mapping of proprietary transactions and codes to HIPAA standards, extending the life of legacy systems EDI transactions Robust security enables secure Internet communications channel for use by business partners

16 How does HealthTrio enable HIPAA compliance? Unique Health Identifiers An EMPI maps providers, employers and members to a single source, in preparation for identifier finalization Unique architecture allows health plan data to remain on the plan’s site, behind the plan’s firewall Security – Physical Safeguards Role-based security allows user profiles to be defined, and access for each profile can be limited by screen, menu item, data element, or table to secure data at the “data element level.” Data Security

17 How does HealthTrio enable HIPAA compliance? Privacy – Audit Trails Log of access to each data element with time stamp is available to authorized persons, including the consumer Member portal allows consumers to request amendment to their record, and review access to their record Privacy – Consumer Control Data-element level security allows organizations to provide the smallest amount of information necessary Minimum Necessary Disclosure

18 Non-profit, New England-based HMO Market leader in innovation and quality HMO, PPO and POS managed-care products Consistently named one of the nation’s top-ranked health plans for quality and member satisfaction

19 Harvard Pilgrim Uses HealthTrio for HIPAA Security model Single interface and security platform for EDI and Web transactions Manage electronic communication with NEHEN Manage electronic communication with providers Enabling HIPAA compliant transactions "HealthTrio’s security architecture is so robust that we are using it for overall HIPAA compliance, including, for example, our connection to NEHEN.” –Bob Trombly, Deputy CIO, Harvard Pilgrim Health Care

20 Harvard Pilgrim Health Care HPHConnect Goals are to: –Standardize transactions on common EDI formats –Support HIPAA compliant transactions –Leverage web-based channel for transactions and content delivery –Eliminate redundant data entry for providers and HPHC –Offer providers choice in interaction with HPHC based on their practice needs

21 Providers – Direct Clearinghouses Employers – Direct Providers – NEHEN EDI Transactions Web-based access – Information and Transactions Employers and Brokers Providers and Members via HPHConnect

22 Extensive role-based control over all access Web-based access definition Encryption: –128 bit –Continuous encryption Secure Sockets Layer (SSL): –Secure channel between end-user and server –Source certificate –VeriSign Physical, Data, Transport, Access Data element level security Complete audit trails HIPAA Compliance with HealthTrio

23 Contact Information Ralph A. Korpman, M.D. President and CEO HealthTrio

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.