understanding privacy laws for physical
play

Understanding Privacy Laws for Physical and Behavioral Health - PowerPoint PPT Presentation

Jun 16, 2023 •318 likes •918 views

Understanding Privacy Laws for Physical and Behavioral Health Information Sharing September 29, 2015 11:00am-12:30pm For audio, please listen through your speakers or call: (631) 992-3221 Access Code: 453-672-361 Housekeeping Join audio

  1. Understanding Privacy Laws for Physical and Behavioral Health Information Sharing September 29, 2015 11:00am-12:30pm For audio, please listen through your speakers or call: (631) 992-3221 Access Code: 453-672-361

  2. Housekeeping • Join audio using computer mic/speakers or telephone • All lines are muted • Webinar is being recorded and will be provided within 48 hours • Send questions using the “Questions” box in the control pane • Q&A session at the end 2

  3. Presenters Leslie Clement, Laura Rosas, Kate Tipping, Nicole Corbin, OHA SAMHSA SAMHSA OHA Additional presenter: Deanna Laidler, Oregon DOJ (photo unavailable) 3

  4. Webinar Agenda • Overview of the Behavioral Health Information Sharing Advisory Group • Background and overview of 42 CFR Part 2, HIPAA, and state laws • Behavioral Health and Health IT • Mechanisms to work with 42 CFR Part 2 to share information between providers • Next steps and resources • Question and answer 4

  5. Overview of the Advisory Group • Need: Lack of understanding of Part 2 and state laws impacted CCOs’ care coordination ability • Goal: To develop solutions to support integrated care and enable sharing of behavioral health information between behavioral and physical health providers • Members/Partners: Internal staff from across the agency (OHA, AMH, DMAP, APD, ISPO, DDS, OHIT, TC) Priorities: - Outreach to stakeholders - Education - Leverage existing IT solutions - Develop tools to facilitate information sharing 5

  6. Provider Survey Results: Participants • 71% practiced in urban Provider Type setting • 76% providers within CCO network 13% MH • 63% practice in BH clinic SUD 7% or primary care practice 34% MH/SUD with integrated BH care PCP 13% • 91% exchange PHI with other providers 6

  7. Provider Survey Results: Major Barriers to Information Sharing Confusion over compliance with state or federal 1 laws Concerns over privacy and confidentiality 2 protection for patients State or federal laws prohibit the type of 3 sharing that is needed/wanted 7

  8. Provider Survey Results: Resources to Address Information Sharing Barriers 75% Technology solutions 64% Model consent form 54% Advocacy for federal 39% 39% 38% revisions Personalized TA Peer learning Webinar Resource 8

  9. Provider Survey Results: What We Learned • Provider concerns are not specific to electronic exchange of PHI • Solutions must account for variations across providers and systems • Education about state and federal laws is needed Priorities: - Outreach to stakeholders - Education - Leverage existing IT solutions - Develop tools to facilitate information sharing 9

  10. Upcoming Work • Conduct additional webinars • Develop a model Qualified Service Organization Agreement • Collaborate on OHA and Jefferson HIE ONC grant • Develop a provider toolkit covering privacy laws, case studies of allowable sharing, model forms, and FAQs • Engage federal partners in discussions about modifications to Part 2 10

  11. Overview of the Substance Abuse Confidentiality Regulations, 42 CFR Part 2 Kate Tipping, JD Public Health Advisor, Health Information Technology Center for Substance Abuse Treatment Substance Abuse and Mental Health Services Administration

  12. The Legal Framework: Federal and State Health Privacy Laws Two Federal Laws • HIPAA: Health Insurance Portability and Accountability Act, specifically the HIPAA Privacy and Security Rules • 42 CFR Part 2 regulations: implement Federal law (42 U.S.C. § 290dd-2) and protect confidentiality of alcohol and drug treatment and prevention information State Laws • Many state laws protect “sensitive” health information, including mental health information, HIV/AIDS and other health conditions deemed sensitive under state law 12

  13. Confidentiality: Federal Health Privacy Law Framework Protecting the confidentiality of people receiving substance use disorder (SUD) treatment must be balanced with the ability to share information amongst physical health and SUD providers Patient Information Confidentiality Sharing among Providers 13

  14. Purpose of 42 CFR Part 2 • Encourage people to seek treatment without fear that by doing so their privacy will be compromised • Sharing of alcohol and drug patient health information can lead to:  Negative perceptions and discrimination  Criminal legal consequences  Civil legal consequences 14

  15. Who is Covered Under 42 CFR Part 2?  Applies to federally assisted alcohol and drug abuse programs 15

  16. Part 2 and Disclosure: The General Rule • Disclosure of information that identifies a patient (directly or indirectly) as having a current or past drug or alcohol problem (or as participating in a drug or alcohol program) is generally prohibited Unless: • The patient consents in writing, or • Another (limited) exception applies 16

  17. Re-disclosure of Part 2 Information • Once Part 2 information has been initially disclosed (with or without patient consent), re-disclosure is not permitted without the patient’s express consent to re-disclose or unless otherwise permitted under Part 2 • Disclosures authorized by consent must be accompanied by a statement notifying the recipient that Part 2 re-disclosure is prohibited, unless further disclosure is expressly permitted by the patient’s written consent or as otherwise permitted by Part 2 17

  18. Myth 1: Consent Requirements • Myth: All disclosures require authorization or consent • Fact: HIPAA does not require authorization for disclosures or uses that are - necessary to carry out treatment, - payment, or - health care operations • However : 42 CFR Part 2 does require consent unless one of the limited exceptions applies 18

  19. Myth 2: Accessing Information • Myth : No one outside the health system can access protected health information • Fact : HIPAA permits disclosures for – o Public health activities o Threats to health or o Victim of abuse or safety o Court-ordered neglect o Judicial/administrative examinations o Correctional facilities proceedings o Law enforcement o Business agreements • Fact : 42 CFR Part 2 permits disclosures for – o Public health research o Criminal justice system if o Child abuse reporting treatment is a condition o Crimes on premises or of parole or release o Other systems with against staff patient consent or QSOA 19

  20. Myth 3: Intra-agency Information Exchange • Myth : Federal law prohibits staff from the same agency or organization from talking to each other • Fact : Both HIPAA and 42 CFR Part 2 permit intra- agency exchanges of information 20

  21. 42 CFR Part 2 Resources Applying the Substance Abuse Confidentiality Regulations to Health Information Exchange (2010) Frequently asked questions issued by SAMSHA to clarify issues relating to the federal regulations governing the confidentiality of alcohol and drug information and electronic health information exchange. Applying the Substance Abuse Confidentiality Regulations 42 CFR Part 2 (2011) Frequently Asked Questions issued by SAMSHA to clarify issues relating to the federal regulations governing the confidentiality of alcohol and drug information — known as 42 CFR Part 2. The Confidentiality of Alcohol and Drug Abuse Patient Records Regulation and the HIPAA Privacy Rule (2004) Guidance for treatment programs that are subject to and complying with Part 2 requirements. Confidentiality of Alcohol and Drug Records in the 21st Century (2010) Policy paper explaining Legal Action Center’s vision for the confidentiality of substance use treatment records in the 21 st century, including how health information technology and 42 CFR Part 2 work together. 21

  22. Overview of HIPAA and State Laws Governing the Confidentiality of Behavioral Health Information Deanna Laidler Senior Assistant Attorney General Oregon Department of Justice 22

  23. HIPAA: Covered Entities • HIPAA applies to Covered Entities & Business Associates of Covered Entities • Covered Entities include: o Health care providers who conduct financial and administrative transactions electronically o Health plans o Health care clearinghouses • A Business Associate is an entity that on behalf of a covered entity, creates, receives, maintains or transmits protected health information (PHI) 23

  24. HIPAA: Protected Health Information • Information, including demographics, that identifies an individual or could be used to identify an individual and that relates to: o The past, present or future physical or mental health of an individual o The provision of health care to an individual o Payment for health care 24

  25. HIPAA: Permitted Uses and Disclosures • To the individual • Treatment, payment, and health care operations • Opportunity to agree or object and the individual agrees or does not object • Incident to an otherwise permitted use and disclosure • Public interest and benefit activities • Limited data set for the purposes of research, public health or health care operations 25

  26. HIPAA: Psychotherapy Notes • A covered entity must obtain an individual’s authorization to use or disclose psychotherapy notes except as follows: o The covered entity who created the notes may use them for treatment o A covered entity may use or disclose psychotherapy notes in certain other instances including: - for training - in legal proceedings brought by the individual - for HHS investigations - to avert a serious and imminent threat to public health or safety 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark

Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark

Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark Zuckerberg in San Francisco, January 8, 2010 "People have really gotten comfortable not only sharing more information and different kinds, but

352 views • 21 slides
Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The

Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The

Brian Beamish Information and Privacy Commissioner of Ontario January 26, 2017 Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The Freedom of Information and Protection of Privacy Act (FIPPA) o

356 views • 17 slides
PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

Marc Langheinrich: Privacy in Ubiquitous Computing 5/29/2010 Todays Menu PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches COMPUTING Definitions Challenges 1. History and legal aspects 1.

264 views • 13 slides
Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Privacy Legislation - History 1950 Art. 8 ECHR: Everyone has the right to respect for his private and family

413 views • 4 slides
PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS

PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS

PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS The 3 rd Asia Privacy Bridge Forum @Seoul 27-06-2017 Dr. Sonny Zulhuda Civil Law Department Ahmad Ibrahim Kulliyyah of Laws International Islamic

188 views • 15 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and

ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and

5/18/2017 ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and ethical issues that derive from potential harmful uses of individual data in the pursuit of security. Adaptation of the existing and the

549 views • 5 slides
Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and the Intel-NSF Partnership for Cyber- Physical Systems Security and Privacy) Insup Lee (PI) PRECISE Center School of Engineering and Applied Science

1.11k views • 34 slides
Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo University of Pennsylvania July 12, 2018 Overview of Research Tort and products liability for CPS Privacy and cybersecurity regulation NHTSA

472 views • 25 slides
The laws of the To understand the laws that govern our Nature are physical universe The

The laws of the To understand the laws that govern our Nature are physical universe The

Why study physics ? The laws of the To understand the laws that govern our Nature are physical universe The law of Nature is written in the written in language of mathematics mathematics

606 views • 26 slides
Privacy Law & Digital Marketing for Business Lawyers Dale Skivington, Chief Privacy Officer,

Privacy Law & Digital Marketing for Business Lawyers Dale Skivington, Chief Privacy Officer,

Privacy Law & Digital Marketing for Business Lawyers Dale Skivington, Chief Privacy Officer, Dell Deborah Howitt, Director, Lewis Bess Williams & Weese Privacy Law Framework Numerous different laws and regulations govern the collection,

616 views • 38 slides
Understanding users' requirements with respect to privacy: A

Understanding users' requirements with respect to privacy: A

Understanding users' requirements with respect to privacy: A mixed-method research methodology Elahe Kani-Zabihi (Royal Holloway, University of London) &

606 views • 19 slides
Health Information Privacy Laws Maine Statutory Law : 22 M.R.S.A. 1711-C Confidentiality

Health Information Privacy Laws Maine Statutory Law : 22 M.R.S.A. 1711-C Confidentiality

Confidentiality Laws Health Information Privacy Laws Maine Statutory Law : 22 M.R.S.A. 1711-C Confidentiality of Health Care Information 2018 HIPAA & FERPA Update HIPAA : 42 U.S.Code 300gg and 29 U.S.Code 1181 et seq. and

364 views • 8 slides
Conclusion Announcements Society Privacy Policies and Laws Mark Zuckerberg in San Francisco,

Conclusion Announcements Society Privacy Policies and Laws Mark Zuckerberg in San Francisco,

Conclusion Announcements Society Privacy Policies and Laws Mark Zuckerberg in San Francisco, January 8, 2010 "People have really gotten comfortable not only sharing more information and different kinds, but more openly and with more

478 views • 9 slides
Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S.,

Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S.,

Presenting a live 90-minute webinar with interactive Q&A Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S., Europe and Asia WEDNESDAY, MARCH 5, 2014 1pm Eastern | 12pm Central | 11am

524 views • 41 slides
Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data Management Panel, TdW Conference Max Mhlhuser Technische Universitt Darmstadt Information Self-Determination EU Charter of fundamental rights:

251 views • 7 slides
Arnold v. Sarn and the Implementation of SAMHSA Fidelity Tools in Maricopa County Kelli M.

Arnold v. Sarn and the Implementation of SAMHSA Fidelity Tools in Maricopa County Kelli M.

Arnold v. Sarn and the Implementation of SAMHSA Fidelity Tools in Maricopa County Kelli M. Donley, MPH Project Manager Arizona Department of Health Services Division of Behavioral Health Arnold v. Sarn is a class action lawsuit filed on

420 views • 9 slides
Faith-Based and Community-Based Advisory Council Meeting May 23, 2017 Laurie Blades, Deputy

Faith-Based and Community-Based Advisory Council Meeting May 23, 2017 Laurie Blades, Deputy

Faith-Based and Community-Based Advisory Council Meeting May 23, 2017 Laurie Blades, Deputy Director Substance Abuse and Mental Health, DCF Overview 1. Governors Executive Order Opioid Epidemic State Targeted Treatment (STR) grant

447 views • 21 slides
Ive$e Torres Associate Director Office of Consumer Affairs

Ive$e Torres Associate Director Office of Consumer Affairs

5/19/15 Ive$e Torres Associate Director Office of Consumer Affairs Center for Substance Abuse Treatment US Department of Health and Human Services Substance Abuse and Mental Health

278 views • 13 slides
SAMHSAs Mission ReCAST Minneapolis Update SAMHSA Site Visit May 17, 2017 Program Background

SAMHSAs Mission ReCAST Minneapolis Update SAMHSA Site Visit May 17, 2017 Program Background

SAMHSAs Mission ReCAST Minneapolis Update SAMHSA Site Visit May 17, 2017 Program Background 5-year grant funded initiative through the Department of Health and Human Services Substance Abuse and Mental Health Services Administration

678 views • 31 slides
G RANTEE K ICK -O FF W EBINAR November 13, 2014 W ELCOME AND P URPOSE Gary M. Blau, Ph.D.

G RANTEE K ICK -O FF W EBINAR November 13, 2014 W ELCOME AND P URPOSE Gary M. Blau, Ph.D.

G RANTEE K ICK -O FF W EBINAR November 13, 2014 W ELCOME AND P URPOSE Gary M. Blau, Ph.D. Branch Chief Child, Adolescent and Family Branch Center for Mental Health Services (CMHS) SAMHSA S S TRATEGIC I NITIATIVES 2015-2018 Prevention

744 views • 73 slides
JESSIES LAW & 42 CFR PART 2 Dana Richter Senator Shelley Moore Capito JESSICA GRUBB 1986

JESSIES LAW & 42 CFR PART 2 Dana Richter Senator Shelley Moore Capito JESSICA GRUBB 1986

JESSIES LAW & 42 CFR PART 2 Dana Richter Senator Shelley Moore Capito JESSICA GRUBB 1986 - 2016 JESSICA GRUBB 1986 - 2016 In early 2016, Jessica Grubb developed a bacterial infection because of a running injury. She had surgery Feb.

421 views • 18 slides
Efficient Correlation-Free Many-States Lattice Monte Carlo on GPUs Jeffrey Kelling, Gza dor,

Efficient Correlation-Free Many-States Lattice Monte Carlo on GPUs Jeffrey Kelling, Gza dor,

Efficient Correlation-Free Many-States Lattice Monte Carlo on GPUs Jeffrey Kelling, Gza dor, Martin Weigel, Sibylle Gemming 8th May 2017 Member of the Helmholtz Association Jeffrey Kelling, Gza dor, Martin Weigel, Sibylle Gemming | FWIO

372 views • 25 slides
1 Under the SOX (2002), the PCAOB is required to conduct inspections of a sample of conducted

1 Under the SOX (2002), the PCAOB is required to conduct inspections of a sample of conducted

1 Under the SOX (2002), the PCAOB is required to conduct inspections of a sample of conducted audits Significant deficiencies are reported to investors in public portion of report Engagements are selected using a risk-weighted approach

518 views • 24 slides

More recommend