HIPAA and Academic Medical Centers, Colleges and Universities Presented By: Michael L. Blau, Esq.Tina S. Sheldon McDermott, Will & EmeryAssistant Compliance.

Slides:

Advertisements

Similar presentations

Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,

Advertisements

H OGAN & H ARTSON, L.L.P.

HIPAA In Relation to Other Federal Laws Professor Peter P. Swire Ohio State University Consultant, Morrison & Foerster LLP Glasser LegalWorks/HIPAA Conference.

University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.

HIPAA Compliance: from an Employer’s Perspective Presented by VGM Mark J. Higley Vice President, Development.

1 The Health Insurance Portability and Accountability Act (HIPAA) A guided tutorial for GVSU employees.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.

1 Student Health Director Briefing Frequently Asked Questions HIPAA May 23, 2012.

Privacy Laws & Higher Education. Agenda 1.Five Privacy Laws a.FERPA b.HIPAA c.GLB d.FACTA Disposal Rule e.CAN-SPAM 2.Overview of the Laws a.What does.

Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna

Presented by the Office of the General Counsel An Overview of HIPAA.

Entities Covered by HIPAA Privacy Rule George Mason University College of Nursing and Health Science Regulatory Requirements for Health Systems Summer.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

HIPAA Health Insurance Portability and Accountability Act.

HIPAA TRAINING to satisfy the training requirement for School District # 435 Staff.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

Are you ready for HIPPO??? Welcome to HIPAA

School-Based Health Centers & Confidentiality: Understanding FERPA & HIPAA Laurie Mesibov & Jill Moore UNC School of Government December 2012.

HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Your HIPAA rules Ben Burton, JD, MBA, RHIA, CHP, CHC Notice of Privacy Practices.

HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.

© Copyright 2014 Saul Ewing LLP The Coalition for Academic Scientific Computation HIPAA Legal Framework and Breach Analysis Presented by: Bruce D. Armon,

Achieving and Sustaining HIPAA Compliance October 4, 2002 David Swartz George Washington University Melissa Glynn PricewaterhouseCoopers LLP.

Health Insurance Portability and Accountability Act (HIPAA)

Notice of Privacy Practices Nebraska SNIP Privacy Subgroup July 18, 2002 Michael J. Brown, MHA, CPA Vice-President, Administrative & Regulatory Affairs,

1 VUMC Confidentiality Policy and HIPAA Implications for Clinical Research General Clinical Research Center Skills Workshop March 2, 2007 Gaye Smith Privacy.

Triton Group, LLC.Lebow, Malecki & Tasch, LLC.1 BUILDING A BETTER ORGANIZATION BY COLLABORATING WITH OTHER BUSINESS PARTNERS: RISKS AND BENEFITS Martin.

– Privacy in Perspective – Dealing with Hybrids & Other Unique Collaborations Thomas E. Jeffry, Jr., Esq. Partner, Davis Wright Tremaine LLP, Los Angeles,

Company LOGO Data Privacy HIPAA Training. Progress Diagram Function in accordance Apply your knowledge Learn the Basics Orientation Evaluation Training.

Revised February 4, Health Insurance Portability and Accountability Act (HIPAA) HIPAA Privacy Rule: UCSF Education Module for Researchers, Research.

Copyright ©2011 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved. Health Information Technology and Management Richard.

Compliance Strategies for Records Management

Enhancing Communication Among Health Care and Educational Programs How Privacy Regulations Impact Delivery of Effective Services by Karl R. White National.

Advanced HIPAA Issues for Biotech and Life Sciences Companies: Mark E. Schreiber Palmer & Dodge LLP 111 Huntington Avenue Boston, MA

1 HIPAA: Privacy Regulations Addressing HIPAA at Harvard University Tina S. Sheldon Harvard University HIPAA Colloquium at Harvard University Cambridge,

© 2009 The McGraw-Hill Companies, Inc. All rights reserved. 1 McGraw-Hill Chapter 2 The HIPAA Privacy Standards HIPAA for Allied Health Careers.

Understanding HIPAA (Health Insurandce Portability and Accountability Act)

Eliza de Guzman HTM 520 Health Information Exchange.

1 Developed by: U-MIC To start the presentation, click on this button in the lower right corner of your screen. The presentation will begin after the.

FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.

HIPAA PRACTICAL APPLICATION WORKSHOP Orientation Module 1B Anderson Health Information Systems, Inc.

Seventh National HIPAA Summit HIPAA Compliance Case Study: HIPAA and Academic Medicine - Lessons Learned Past, Present and Future.

OHCAs, ACEs and Hybrid Entities Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)

PATIENT- AND FAMILY-CENTERED CARE: Partnerships for Safety & Quality Staff Physician & Resident Physician Toolkit.

September 17, 2002© Michael Best & Friedrich LLC1 Iowa State Association of Counties HIPAA Training September 17-18, 2002 Legal Issues presented by: Ryan.

HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?

Health Insurance portability and Accountability Act (HIPAA)‏

© FOLEY & LARDNER 2001 WHEN PRINTING IN BLACK & WHITE: Go to the TITLE MASTER SLIDE, delete the logo and replace it with this one. Organized Health Care.

A NATIONAL HIPAA SUMMIT AUDIOCONFERENCE Davis Wright Tremaine LLP Legal Requirements For Vendor And Clearinghouse HIPAA Compliance; Business Associate.

1 HIPAA: Privacy Regulations Addressing HIPAA at Harvard University Tina S. Sheldon Harvard University HIPAA Summit West II San Francisco, California March.

Human Subjects Update E. Wethington, Chair, UCHS.

HIPAA TRIVIA QUEST December Edition. I’ll ask the questions - and you’ll give the answers.

GW&T © 2002 Garfunkel, Wild & Travis, P.C HIPAA: What University Counsel Needs to Know -- The Basics NATIONAL ASSOCIATION OF COLLEGE AND UNIVERSITY.

New Hire HIPAA Orientation. HIPAA Overview HIPAA is an acronym that stands for the Health Insurance Portability and Accountability Act of HIPAA.

Disclaimer This presentation is intended only for use by Tulane University faculty, staff, and students. No copy or use of this presentation should occur.

Iowa State Association of Counties

What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.

HIPAA Privacy and Security Training Compliance is Everyone’s Job

HOGAN & HARTSON, L.L.P. “Publications” “Health”

HIPAA Privacy and Security Training Compliance is Everyone’s Job

Disability Services Agencies Briefing On HIPAA

HIPAA Summit West II San Francisco, California March 13-15, 2002

HIPAA Privacy and Security Training Compliance is Everyone’s Job

2003 Immunization Registry Conference

HIPAA Policy & Procedure Strategies

FERPA and HIPAA for School Nurses and School Based Health Center Staff

Presentation transcript:

HIPAA and Academic Medical Centers, Colleges and Universities Presented By: Michael L. Blau, Esq.Tina S. Sheldon McDermott, Will & EmeryAssistant Compliance Officer, 28 State StreetRisk Management and Audit Services Boston, MA Harvard University

v1.ppt 2 Introduction HIPAA Challenges for AMCs, Colleges and Universities Addressing HIPAA at Harvard Impact of HIPAA on Research

v1.ppt 3 Compliance Strategies Why identify covered entities, hybrid entities and covered components? –Entities/components subject to HIPAA compliance requirements –Workforce of entities/components subject to HIPAA compliance training Status of University and AMC –University is a “hybrid entity” Primary purpose is education

v1.ppt 4 Compliance Strategies –AMC organized as a separate legal entity is a covered entity –If AMC is not organized as a separate legal entity, AMC is a covered component (at least in part) of a hybrid entity –NPRM - eliminates primary purpose test AMC may be a hybrid entity with covered (and noncovered) components

v1.ppt 5 Compliance Strategies Potential hybrid entities and covered components –Medical school/dental school Clinic services Clinical education Research related treatment –Faculty practice plans –School of Public Health –School/Department of Social Work –School/Department of Psychology

v1.ppt 6 Compliance Strategies –School/Department of Nursing –Student Health Centers/Infirmaries –Employee Clinics –Department of Athletics –On-site day care –Student counseling services –Human Resource Department Employer sponsored health and dental plans Self-insured health and dental plans Flexible spending accounts

v1.ppt 7 Compliance Strategies Medical co-payment reimbursement programs –NPRM - providers who do not engage in standardized transactions need not be included in covered component Offices/workforce that provide “business associate” functions for hybrid entity or covered component –legal staff –IS staff

v1.ppt 8 Compliance Strategies –Accounting staff –Risk management/compliance –Patient advocate programs –Volunteers –Deans? –Senior management? –Governing board?

v1.ppt 9 Compliance Strategies FERPA (Family Education and Privacy Act) exception for student health/education records –Status of prospective students, summer students, recent graduates, visiting parents, other visitors

v1.ppt 10 Compliance Strategies Single vs. multiple privacy officers/ compliance offices –Reporting line/access to governing board Designation and documentation requirement –Designation by vote of governing board –Who has authority to designate for public University/AMC?

v1.ppt 11 Compliance Strategies Facilitating flow of PHI within University –Affiliated Covered Entities (ACEs) -- common ownership (5% or more) or control –Organized Health Care Arrangements (OHCAs) -- clinically integrated care setting or held out to public as joint arrangement for UR, QA or financial risk sharing purposes –ACEs and OHCAs can use joint Consents and Notices Can share PHI for TPO purposes of disclosing entity

v1.ppt 12 Compliance Strategies ACEs need unified administration of patient rights –NPRM - would eliminate Consent requirement/would require acknowledgement of receipt of Notice –The Problem of Faculty Practice Plans May not be ACE May not be an OHCA for office-based services Medical staff and AMC are an OHCA for hospital-based services May need separate Consents and Notices

v1.ppt 13 Compliance Strategies –The Problem of Voluntary and Part-time Faculty –The Problem of Physicians-In-Training, including rotations from outside institutions Covered workforce? Business associates? OHCA? Implications for training and compliance responsibility –Business Associate Contracts

Addressing HIPAA at Harvard