health insurance portability and accountability act of
play

Health Insurance Portability and Accountability Act of 1996 - PowerPoint PPT Presentation

Feb 09, 2023 •23 likes •333 views

Health Insurance Portability and Accountability Act of 1996 Compliance at Purdue https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu Health Insurance Portability and Accountability Act of 1996 (HIPAA) Federal

  1. Health Insurance Portability and Accountability Act of 1996 Compliance at Purdue https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  2.  Health Insurance Portability and Accountability Act of 1996 (HIPAA)  Federal law  Part of the Social Security Administration Act  Protects the confidentiality and security of personally identifiable health information as it is used, disclosed and electronically transmitted by covered entities What is HIPAA?  Creates framework, using standardized formats, for transmitting electronic health information more cost effective All departments and workforce designated by Purdue’s HIPAA Privacy Officer as HIPAA covered components MUST comply with its requirements. https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  3.  The Privacy Rule protects all individually identifiable health information held or transmitted by a covered entity, its business associates or a business associate’s subcontractors, in any form or media.  This information is also known as Protected Health Information What is (PHI). Protected  Includes information tied to a covered health care provider or health Health  PHI includes: Information  Demographic data  Individual’s past, present or future physical or mental health (PHI)? conditions  The provision of health care to the individual  Past, present, or future payment for the provision of health care to the individual  Information that identifies or can be used to identify the individual https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  4.  Some examples of protected health information at Purdue includes :  Prescription information processed by Purdue University Pharmacy  Health claims processed by Purdue’s health plan administrators  Clinic billing information processed by the Accounts Receivable department  Treatment or accounts receivable information accessed by ITaP PHI  Information excluded from the definition of PHI:  Employment records  Education records  Health information about individuals who have been deceased for more than 50 years  De-identified information which must have the subject’s name, email address, telephone numbers, or any other information that could be used alone or in combination to identify the subject removed  The Office for Civil Rights provides further guidance regarding de-identification at: https://www.hhs.gov/hipaa/for- professionals/privacy/special-topics/de-identification/index.html https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  5.  The Privacy Rule (2003)  Applies to covered entities and provides safeguards to protect PHI  Identifies permitted uses and disclosures, rights of individual to control how their PHI is used and disclosed, establishes administrative requirements , and application of sanctions  The Security Rule (2005)  Protects the confidentiality, integrity and availability of PHI that is maintained or transmitted electronically HIPAA Legal  Requires administrative, physical and technical safeguards to protect PHI, safeguards must be addressable (can address its applicability for a particular Overview environment) and requires a sanction policy  HITECH (2010)  Expands HIPAA Privacy Requirements to directly cover business associates , who are now required to report to covered entities  Omnibus Rule (2013)  New regulations affecting The Privacy Rule, Security Rule, HITECH  Implemented new regulations such as Genetic Information Nondiscrimination Act (GINA), breach notifications , marketing , fundraising , school immunization records , research authorizations and enforcement https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  6.  Secretary of Health and Human Services (HHS) has authority to impose penalties to non-complying entities.  HITECH Act (2010) requires HHS to develop procedures by Penalties for which an individual harmed by a HIPAA breach of PHI may obtain a percentage of the HHS enforcement penalties. Non- compliance  The covered entity and specific individuals can be investigated and prosecuted with Civil, State, and Federal Criminal penalties  Fines can reach up to $250,000 and 10 years of imprisonment per violation https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  7.  Health care providers who transmit PHI in electronic form in connection with certain electronic transactions defined by federal regulations (e.g. electronic billing and remission of payments electronically)  Health care clearinghouses Who is  Certain health plans  HIPAA business associate which is a person or organization that Covered by performs certain business functions on behalf of the covered HIPAA? entity and involves the use, maintenance, or disclosure of PHI  Prior to disclosing PHI to a business associate, covered entities are required to enter into a written agreement that imposes safeguards If your department is covered by HIPAA, is planning to disclose PHI to an outside entity, and you are unsure about whether an agreement is required, ask your HIPAA liaison to contact the HIPAA Privacy Officer (x66846) PRIOR to disclosing any PHI! https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  8.  Purdue University is designated as a hybrid entity  All of Purdue is NOT covered by HIPAA - only those areas that have been formally designated as covered components by the HIPAA Privacy Officer. How does  Covered components include:  Purdue Student Health Center, Purdue University Pharmacy, HIPAA impact Purdue’s North Central Nursing Clinic, Employee Wellness Purdue? Programs, Student and Receivables Business Services-Accounts Receivable, ITaP, Bursar, and others  A full list of departments at Purdue that are covered by HIPAA can be found at: https://www.purdue.edu/legalcounsel/HIPAA/Covered%20Comp.html https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  9.  Name a HIPAA Privacy Liaison who will be responsible for communicating HIPAA policies and procedures, ensuring that training occurs, maintaining documentation for 6 years, and discussing with the HIPAA privacy compliance director any new issues.  Determine and document which staff are included in the Covered covered component and determine which roles need access Components’ to PHI.  Ensure that all HIPAA policies and procedures are followed Responsibilities and apply sanctions.  Identify business associates.  Ensure that privacy and security safeguards are in place and followed. https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  10.  Complete HIPAA training upon hire and then annually thereafter  Read the Notice of Privacy Practices (NPP) applicably to the area in which they work Staff  NPP is a document which is distributed to individuals who receive Responsibilities services from Purdue’s HIPAA-covered health care providers and health plan components. within a  NPP describes how PHI may be used and disclosed by Purdue’s covered components and the rights of an individual to control how their Covered information is used and disclosed. Component  Know how HIPAA regulations impact the employee’s individual job procedures  Agree to comply with the official confidentiality agreement  Ensure compliance with the “ minimum necessary ” rule https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  11.  HIPAA requires that uses, disclosures, and requests of PHI must be limited to the minimum necessary information needed to accomplish the intended purpose.  Minimum necessary does NOT apply to :  Disclosures to or requests by a health care provider for treatment purposes  Uses or disclosures made to the individual Minimum  Uses or disclosures pursuant to an authorization  Uses or disclosures to Health and Human Services Necessary  Uses or disclosures that are required by law or required for compliance with the HIPAA privacy rule Only workforce members with responsibilities related to a particular patient or health plan member may access information pertaining to that individual and only the minimum necessary information should be accessed to perform the related work responsibilities! https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

  12.  HIPAA requires that a valid HIPAA authorization be obtained from an individual or their representative before sharing information for the following purposes:  Disclosures of psychotherapy notes  Marketing  Disclosures that constitute a sale of PHI HIPAA  Any other use or disclosure inside or outside of the covered Authorizations component other than for purposes exempted by HIPAA  Purdue’s HIPAA authorization form should be used when an authorization is obtained from a patient by Purdue’s covered components  If HIPAA authorization is not received on Purdue’s approved form, the authorization must be reviewed by the HIPAA Privacy Officer PRIOR to disclosure of PHI. https://www.purdue.edu/legalcounsel/HIPAA/index.html legalcounsel@purdue.edu

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Training Course HIPAA Health Insurance Portability and Accountability Act HIPAA

Training Course HIPAA Health Insurance Portability and Accountability Act HIPAA

Training Course HIPAA Health Insurance Portability and Accountability Act HIPAA initially went into effect April 14, 2003 HIPAA is a set of rules that is to be followed by doctors, hospitals and other health care providers.

284 views • 25 slides
Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of

Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of

How the City of Lewisville Has Complied in a Paperless World Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of 1996) o Privacy Rule o Security Rule o Enforcement Rule o Genetic Information

416 views • 27 slides
The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets

The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets

The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets boundaries on the use/release of health records Holds violators accountable with penalties Strikes a balance when public health

357 views • 12 slides
Health Insurance Portability and Accountability Act (HIPAA): Breach Notification Rule April 2019

Health Insurance Portability and Accountability Act (HIPAA): Breach Notification Rule April 2019

Health Insurance Portability and Accountability Act (HIPAA): Breach Notification Rule April 2019 Alissa Smith 1 Outline of Presentation HIPAA Breach Notification Rule Overview Updates on OCR Enforcement Complaints

485 views • 36 slides
Themes from the May 24-25, 2016 Hearing De-Identification and the Health Insurance Portability

Themes from the May 24-25, 2016 Hearing De-Identification and the Health Insurance Portability

Themes from the May 24-25, 2016 Hearing De-Identification and the Health Insurance Portability and Accountability Act (HIPAA) NCVHS Privacy, Confidentiality, and Security Subcommittee De-identification Hearing Objectives: 1. Increase

406 views • 13 slides
HIPAA Understanding Your Responsibilities Under the Health Insurance Portability and

HIPAA Understanding Your Responsibilities Under the Health Insurance Portability and

HIPAA Understanding Your Responsibilities Under the Health Insurance Portability and Accountability Act Tacoma Fire Department About Me Deputy Chief of Administration 21 years with Tacoma Fire Dept. 15 years as FF/Paramedic 7

719 views • 13 slides
Texas HHS Privacy Office Health Insurance Portability And Accountability Act (HIPAA) The

Texas HHS Privacy Office Health Insurance Portability And Accountability Act (HIPAA) The

Presentation to Texas State University Student Speakers Seminar E. Angela Branch, Deputy Chief Privacy Officer of Audit and Compliance Travis Davis, Deputy Chief Privacy Officer Texas HHS Privacy Office Health Insurance Portability And

266 views • 25 slides
North Dakota EMS Association Management Conference June, 2016 Health Insurance Portability and

North Dakota EMS Association Management Conference June, 2016 Health Insurance Portability and

North Dakota EMS Association Management Conference June, 2016 Health Insurance Portability and Accountability Act HIPAA is a federal law. The Department of Health & Human Services issued HIPAA privacy standards and security standards to

590 views • 39 slides
August 5, 2015 EEOC Proposed Rules on Worksite Wellness Laura Anderson, Esq. The Health

August 5, 2015 EEOC Proposed Rules on Worksite Wellness Laura Anderson, Esq. The Health

August 5, 2015 EEOC Proposed Rules on Worksite Wellness Laura Anderson, Esq. The Health Insurance Portability and Accountability Act of 1996 (HIPAA) The Health Insurance Portability and Accountability Act of 1996 (HIPAA)

358 views • 17 slides
Goal als of f presentation High level overview Basic concepts & vocabulary NOT exhaustive

Goal als of f presentation High level overview Basic concepts & vocabulary NOT exhaustive

6/12/2018 Minnesotas Health Records Act (MHRA) & The Federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) Nathan Hopkins House Research Department 6/13/2018 Goal als of f presentation High level overview

299 views • 6 slides
HIPAA In The Workplace What Every Employer Should Know and Remember What is HIPAA? The

HIPAA In The Workplace What Every Employer Should Know and Remember What is HIPAA? The

HIPAA In The Workplace What Every Employer Should Know and Remember What is HIPAA? The Health Insurance Portability and Accountability Act of 1996 Portable Accountable Rules for Privacy Rules for Security

575 views • 33 slides
New Employee Orientation HIPAA Privacy Marcia Matthias, MJ, RHIA, CHPC Corporate Director,

New Employee Orientation HIPAA Privacy Marcia Matthias, MJ, RHIA, CHPC Corporate Director,

New Employee Orientation HIPAA Privacy Marcia Matthias, MJ, RHIA, CHPC Corporate Director, Health Information/Privacy Officer Definitions HIPAA Health Insurance Portability and Accountability Act PHI Protected Health

660 views • 35 slides
DATA SHARING & BREACH PROTOCOLS UNDER THE FINAL HIPAA PRIVACY RULE I. INTRODUCTION: The

DATA SHARING & BREACH PROTOCOLS UNDER THE FINAL HIPAA PRIVACY RULE I. INTRODUCTION: The

DATA SHARING & BREACH PROTOCOLS UNDER THE FINAL HIPAA PRIVACY RULE I. INTRODUCTION: The Health Insurance Portability and Accountability Act (HIPAA) Administrative Simplification provisions apply to three types of entities, which are known as

111 views • 7 slides
Better Health Through Health Insurance Literacy W ho W e Are The Health Insurance Literacy (HIL)

Better Health Through Health Insurance Literacy W ho W e Are The Health Insurance Literacy (HIL)

Better Health Through Health Insurance Literacy W ho W e Are The Health Insurance Literacy (HIL) group is comprised of key partners in the health coverage community including: Literacy is The capacity to find and evaluate information

629 views • 24 slides
insurance 2017 Agenda Expanding our focus to health 1 insurance Health & wellbeing that

insurance 2017 Agenda Expanding our focus to health 1 insurance Health & wellbeing that

AIA and health insurance 2017 Agenda Expanding our focus to health 1 insurance Health & wellbeing that solves 2 real problems for your clients 3 Making it work for you Health insurance is a large dynamic market 22 13.4 $3,653 2

385 views • 21 slides
PetPlan Pet Insurance Sarikka Raman PetPlan Pet Insurance is a pet insurance company that

PetPlan Pet Insurance Sarikka Raman PetPlan Pet Insurance is a pet insurance company that

PetPlan Pet Insurance Sarikka Raman PetPlan Pet Insurance is a pet insurance company that specializes in coverage for cats and dogs. PetPlan Pet Insurance offsets the high costs of pet health care by offering health About insurance policies

387 views • 12 slides
SKILLS IN THE SOUTH EAST ECONOMY Session 1: How will Brexit affect migration, border security and

SKILLS IN THE SOUTH EAST ECONOMY Session 1: How will Brexit affect migration, border security and

SEEC-SESPM WORKSHOP Friday, 23 June 2017 BREXIT, MIGRATION & SKILLS IN THE SOUTH EAST ECONOMY Session 1: How will Brexit affect migration, border security and the skills gap? EU workers in the South East Economy 1.Skills gaps Dr CARLOS

476 views • 9 slides
Measuring the neutrino mass hierarchy with PINGU Justin Evans 11th May 2012 Oscillation

Measuring the neutrino mass hierarchy with PINGU Justin Evans 11th May 2012 Oscillation

Measuring the neutrino mass hierarchy with PINGU Justin Evans 11th May 2012 Oscillation parameters Smallest mass splitting Solar mass splitting Require L/E ~ O (10 5 km/GeV) Solar neutrinos SNO, Borexino, etc Reactor neutrinos

603 views • 49 slides
r sss s r rstr

r sss s r rstr

r sss s r rstr str rstr r sss s

728 views • 27 slides
L EDGER C OMBINERS FOR F AST S ETTLEMENT Matthias Fitzi 1 , Peter Gai 1 , Aggelos Kiayias 1,2 ,

L EDGER C OMBINERS FOR F AST S ETTLEMENT Matthias Fitzi 1 , Peter Gai 1 , Aggelos Kiayias 1,2 ,

L EDGER C OMBINERS FOR F AST S ETTLEMENT Matthias Fitzi 1 , Peter Gai 1 , Aggelos Kiayias 1,2 , Alexander Russell 1,3 1 IOHK Research 2 University of Edinburgh 3 University of Connecticut TCC 2020 Nakamoto Ledgers in a Nutshell ? Cartoon

994 views • 67 slides
Privacy in Context A panel discussion Karen Sollins Overview Sollins: Introduction, some

Privacy in Context A panel discussion Karen Sollins Overview Sollins: Introduction, some

Privacy in Context A panel discussion Karen Sollins Overview Sollins: Introduction, some thoughts for framing Panelists: Tschofenig, Sowell, Clark Discussion: Everyone What is privacy? Information privacy concerns the

310 views • 12 slides
Data & Visual Analytics Mahdi Roozbahani Lecturer, Computational Science and Engineering,

Data & Visual Analytics Mahdi Roozbahani Lecturer, Computational Science and Engineering,

CX4242: Data & Visual Analytics Mahdi Roozbahani Lecturer, Computational Science and Engineering, Georgia Tech Assignments Overview (Tentative and subject to change) CX 4242 Assignment 1 Platforms, Languages & Technologies Python,

1.1k views • 30 slides
How Secret-sharing can Defeat Terrorist Fraud Gildas Avoine 1 Cdric Lauradoux 2 Benjamin Martin 1

How Secret-sharing can Defeat Terrorist Fraud Gildas Avoine 1 Cdric Lauradoux 2 Benjamin Martin 1

How Secret-sharing can Defeat Terrorist Fraud Gildas Avoine 1 Cdric Lauradoux 2 Benjamin Martin 1 1 Universit catholique de Louvain Belgium 2 INRIA, Universit de Lyon France 17 June 2011 Plan 1 General Context 2 Relay Attacks 3 Distance

570 views • 35 slides
Security Analysis of Distance Bounding Protocols Agnes BRELURUT, Pascal LAFOURCADE, David GERAULT

Security Analysis of Distance Bounding Protocols Agnes BRELURUT, Pascal LAFOURCADE, David GERAULT

Security Analysis of Distance Bounding Protocols Agnes BRELURUT, Pascal LAFOURCADE, David GERAULT LIMOS, Universit dAuvergne, France September 17th 2015 BRELURUT, LAFOURCADE, GERAULT (LIMOS, France) Security Analysis of Distance Bounding

704 views • 42 slides

More recommend