Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presentation to The Fourth National HIPAA Summit

Published byOlivia Brooks Modified over 5 years ago

Similar presentations

Presentation on theme: "Presentation to The Fourth National HIPAA Summit"— Presentation transcript:

1 Presentation to The Fourth National HIPAA Summit
April 26, 2002 Sharon King Donohue General Counsel National Committee for Quality Assurance

2 NCQA and HIPAA Proposed standards changes for 2003
Impact of the NPRM and quality assessment Certification of Business Associates NCQA’s model Business Associate Contract Points to mention: NCQA has a wide range of programs relevant to different parts and levels of the system. Core part of our mission is providing information. Much of the information we have is available free of charge on our Web site. We give more of it away free to the media so the HMO report cards you see are usually based on our data. As previously indicated, we build consensus. We believe that it is critical for our programs to reflect the input, needs, desires of all the affected parties. That means consumers, employers, providers, policy makers, health plans, etc. Achieving consensus among these groups is a hallmark of our work and the reason for our success.

3 Proposed Standards Changes for 2003
Consent and Notice: Removed requirements for MCOs to obtain routine consent For uses beyond TPO, authorization still required Must give notice of privacy practices (no signature required) Points to mention: NCQA has a wide range of programs relevant to different parts and levels of the system. Core part of our mission is providing information. Much of the information we have is available free of charge on our Web site. We give more of it away free to the media so the HMO report cards you see are usually based on our data. As previously indicated, we build consensus. We believe that it is critical for our programs to reflect the input, needs, desires of all the affected parties. That means consumers, employers, providers, policy makers, health plans, etc. Achieving consensus among these groups is a hallmark of our work and the reason for our success.

4 Proposed Standards Changes for 2003
Consent and Notice (continued): Requirement to disclose confidentiality policies via MCO’s Web site

5 Proposed Standards Changes for 2003
Member Rights: Right to access PHI, request restrictions on use, amend and request accounting of disclosures Include HIPAA protections before PHI can be shared with employers

6 Proposed Standards Changes for 2003
Confidentiality Process: Confidentiality committee no longer required (may be Chief Privacy Officer) Oversight of confidentiality policies Appeals process for confidentiality issues Process to review requests to use PHI We also look at many, many other things like human subjects research facilities, CVOs, etc.

7 Proposed Standards Changes for 2003
Contracting Requirements for Delegates: Similar to Business Associate contracting requirements Likely to be applicable July 2003 for new delegates All others likely to be applicable July 2004

8 Proposed Standards Changes for 2003
Contracting Requirements for Delegates (continued): If delegate arrangement includes use of PHI, contract must: identify permitted uses describe delegates safeguards to protect PHS from inappropriate use or disclosure stipulate that delegate will ensure that subdelegates have similar safeguards

9 Proposed Standards Changes for 2003
Contracting Requirements for Delegates (continued): require delegate to inform MCO if breaches occur provide for return, destruction or protection of PHI if delegation ends

10 The NPRM Unintended consequence of consent - restricting the flow of PHI needed for quality assessment and measurement (HEDIS®) Elimination of consent for TPO permits information to flow among Covered Entities in a way that is positive for quality assessment, measurement and improvement This is the IOM set of levels of the health care system that are important in quality It should be noted that in some situations- like solo physician practice-the “organization” and micro environment are one and the same- and in others, like Kaiser- there are several layers in the organization (national (Permanente Medical group, regional (Northern California Permanente), site (Oakland), department (internal medicine) in addition to the micro environment and individual physician-clinician.

11 The NPRM (continued) Explicit acknowledgement that Covered Entities can disclose PHI to other Covered Entities for quality assessment NCQA is commenting on the need for additional modifications to minimum necessary requirements Some elements of all three exist in most service sectors- in health care professionalism is a much more important force for accountability and quality than in many others- but all three are clearly present. It is critical to try to create a balance among the forces in health care- non of them alone are sufficient for creating accountability and driving quality If the market and professionalism are not sufficient-then regulation is usually imposed in its strongest form. In health care -this is the case in the nursing home sector where both professionalism and the market are relatively weak. In nursing home regulation include federal and state laws and regulations-evaluation (licensing-survey-certification and enforcement) all by government entities. Weakness of this approach is clear both in low level of quality achieved-and in conflict between government roles of purchaser-payer-evaluator and enforcer.

12 Certification of Business Associates
NCQA is considering a program to certify business associates “Satisfactory safeguards” of privacy practices Includes security review and policies and procedures Possible launch early 2003

13 NCQA’s Business Associate Contracting
NCQA is implementing HIPAA readiness initiatives Preparing model business associate contract language Field test — 7/ /02 Implement from 10/02 - 4/04

Download ppt "Presentation to The Fourth National HIPAA Summit"

Similar presentations

HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.

HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.
Minimum Necessary Standard Version 1.0

Minimum Necessary Standard Version 1.0
Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.

Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
Confidentiality and HIPAA

Confidentiality and HIPAA
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) 252-9321; Victoria Nemerson.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.
Changes to HIPAA (as they pertain to records management) Health Information Technology for Economic Clinical Health Act (HITECH) – federal regulation included.

Changes to HIPAA (as they pertain to records management) Health Information Technology for Economic Clinical Health Act (HITECH) – federal regulation included.
1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.
HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
Are you ready for HIPPO??? Welcome to HIPAA

Are you ready for HIPPO??? Welcome to HIPAA
Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.
August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.

August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.
HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.

HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.
Version 6.0 Approved by HIPAA Implementation Team April 14, 2003 1 HIPAA Learning Module The following is an educational Powerpoint presentation on the.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.
HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

Similar presentations

Ads by Google