compliance training and hotline should also be discussed for privacy and security training

1. Confidentiality and Privacy Employee training Guide

2. Introduction Employees of the hospital do have access to confidential personal and private information. The content of this information may not be limited to patients, provider information, commercially sensitive information and patients and hospital financial information. This training program is design to protect individual information and individual right to privacy and the confidentially of patients and hospital information which is in accordance to any state and federal laws and regulations.

3. Training day 1 Discussion of Health Insurance Portability Privacy Act Federal and my state government use the Federal Health Insurance Portability Privacy Act to regulate confidentiality and privacy concern regarding health organizations medical practices and hospitals. The patient information must be kept confidential and every year the New York State Department of health makes all employees who work in the health care industry take a HIPPA course and sign off that you have complied with this order or the organization could be fined and one could lose their job. The HIPPA law implies that health insurers and health care providers and the medical community pay attention to the rules and regulation about the misuse of health information and its electronic transmission. HIPPA was established to provide privacy standard s and define the following: HIPPA defined the limit and under which circumstance an entity could use private and information and set standard when an entity could disclose information. HIPPA provided patients rights regarding their protected health information. HIPPA made it a requirement for the Health community and it entities to make sure safeguards were in place to protect privacy and confidentially and made the medical community protect patient health information. Essentials 2007 p84-87

4. This discussion is the most essential part of an employee training program and should be taught to every employee upon employment and refresher training sessions and testing done at least once a year for all employee. Information on patients should be shared on a need to know basis. E mails should be sent securely when containing patient information. The employees at UCLA should be disciplined and retrained on HIPPA and patient confidentially.

5. Reasonable steps should be taken to limit the use of and the disclosure of information Employees should not reveal any medical or business information without patient authorization court order or state agency order and must comply with all rules and regulations and laws the hospital must maintain security on all electronic information or any information transmitted on the hospital computer

6. An employee could be terminated if found guilty of disclosing private information. . If an health entity is non compliant HIPPA provides penalties of a civil fine of 25,000 per calendar year doe each violation which the Department of Health and Human Services will enforce. In extreme cases if information is sold for personal gain the penalties increase in severity. A 250,000 fine would be imposed in the most severe cases and a judge could order imprisonment of 10 years. In the past medical records statutes only covered the paper records and the information within the records. HIPPA went further to cover information on faxes, telephones, computers, electronic handheld devices (PDA’s). HIPPA also covers orally communicated information and protects the information that can be disclosed.

7. References Cleverly, O,. William and Cameron, E., Andrew (2007) Essentials of Health Care Finance P 41 Sixth Edition