2. Training will be done yearly and for all new hires
Training will be a online module power point of information with a quiz at the end
to ensure that the individual understood the topics being discussed for
compliance.
Training will automatically be reassigned to the individual yearly on their start
date with the company
Training will be approximately 2 hours in length and the individual will be paid
for the time it takes them to complete the training and quiz to follow.
Individuals must get a 100% score on the quiz to satisfy an understanding of the
material
The quiz will be made up of 15 questions to ensure every aspect of HIPAA and the
laws and regulations are understood.
3. WHAT IS HIPAA?
The Health Insurance Portability and Accountability Act (HIPAA) is a federal law passed in 1996.
Among other things, HIPAA required the Department of Health and Human Services (HHS) to create a
federal “Privacy Rule” for health providers and health plans, governing how these entities must protect
the privacy of an individual’s medical information (Kernisan. N.d).
WHY DO WE NEED TO KNOW ABOUT HIPAA?
Overall, HIPAA is intended to balance a person’s right to privacy with the need for health providers to
communicate with others, in order to properly care for a patient and act in the patient’s best interest
(Kernisan, n.d).
WHO DO HIPAA RULES APPLY TO?
HIPAA rules apply to all protected patient health information and those individuals using this
information to provide care to patients and assist in administrative aspects of the patient care process
(HHS,n.d.).
WHAT TRAINING IS NEEDED?
HIPAA laws and regulations have changed over the years and yearly HIPAA compliance training is
recommended along with training for all new hires prior to practice within the organization.
4. WHEN CAN I USE AND DISCLOSE PHI AS A HEALTHCARE PROFESSIONAL:
To the patient as requested and necessary
To carry out treatment, payment, and health care operations
When data is de-identified
When public good permits the use or disclosure-AS TO CDC; HEALTH SERVICES
WHO CAN OBTAIN PHI WITHOUT PRIOR CONSENT:
Law enforcement officials with the proper legal materials in hand
Medical examiner or coroner following the patients death
NEVER ACCESS PATIENT INFORMATION FOR A PATIENT THAT YOU ARE NOT DIRECTLY
CARING FOR OR PERFORMING ANY OF THE ABOVE LISTED DUTIES FOR OR THERE
WILL BE CONSEQUENCES TO INLCUDE TERMINATION AND POSSIBLE LEGAL ACTION.
5. KERNISAN, L. (N.D.). 10 Things to Know About HIPAA & Access to a Relative’s
Health Information. Retrieved from https://betterhealthwhileaging.net/hipaa-
basics-and-faqs-for-family-caregivers/
HHS.gov. (n.d.). HIPAA for Professionals. Retrieved from
https://www.hhs.gov/hipaa/for-professionals/index.html