SlideShare a Scribd company logo

Understanding hipaa

Download as PPTX, PDF
S
Sharon Nemecek

Getting a better understanding of Health Insurance Portability and Accountability Act (HIPAA)

Education
1 of 14
Understanding HIPAA Training for new employees
BACKGROUND • The Health Insurance Portability and Accountability Act is a Federal law that was enacted on August 21, 1996 • It is Public Law 104-191 • It was developed by the Department of Health and Human Services • Sections 261 through 264 of this law requires the Secretary of Health and Human Services to publicize standards for the electronic exchange, privacy, and security of health information
What is HIPAA? • It is a Federal law which set up standards that protect patients medical information. • It states that patients have the right to their own personal health records. • It states that health information cannot be used or released without the patient’s authorization
More about HIPAA • It limits the use of personal health information to the minimum for only the purpose it is needed • It imposes administrative requirements that include a designated privacy officer at medical facilities • The privacy officer will conduct HIPAA training and document and implement policies and procedures that will make sure HIPAA guidelines are being followed
PRIVACY • The Privacy Act of 1974 was established to safeguard an individual’s privacy from possible misuse of federal records and to allow individuals access to records that federal agencies maintain about them. • The Privacy Protection and Safety Commission was established to monitor these rights. • Under the United States Constitution each citizen has a right to privacy and to have their personal information protected. • It also protects citizens from invasion of personal privacy.
PRIVACY GUIDELINES • Authorization: Before any health information can be released the patient must sign the “release of information form”. This pertains to the patient requesting their medical records and also requests from other entities, a form must be signed by the patient. • Minimum Necessary: When the completed release of information has been signed by a patient, only release the minimum records necessary for the request, not the complete medical record. • Confidentiality: Under no circumstance should a patient’s medical information be shared outside the office. • Protect Access: Safeguard your work area so unauthorized access to patient’s records is avoided.
Confidentiality • Confidentiality refers to the expectation that information that a patient shares with their medical provider will only be used for their care and only for that purpose • A physician may not disclose any medical information about a patient without the patient’s permission • All employees in a healthcare setting must also maintain the confidentiality of all patients records and reports. • Identification needs to be verified before releasing patient information. • To disclose any information about a patient beyond its intended purpose without the patient’s knowledge and consent is a violation of confidentiality.
SECURITY • The Health Insurance Portability and Accountability Act- HIPAA Omnibus Rule was enacted on January 25, 2013 • The Omnibus Rule broadens the application of HIPAA privacy and security requirements to include both covered entities as well as business associates. • All medical facilities need to implement a security awareness and training program for all employees • Some requirements of this program are:  Security Reminders  Protection from malicious software  Log in monitoring  Password management
SECURITY MEASURES • Always lock your computer when you leave your work area • Do not leave a patient’s medical records unsupervised where they can be accessed by an unauthorized person • Do not open e-mail from suspicious sources to avoid malicious malware from accessing the computer systems • Always wear your employee badge when at work • Choose a strong password for your computer sign-on • When e-mailing personal medical information use encryption • If there are any questions please contact your office manager
E-MAIL GUIDELINES The following guidelines need to be followed when using e-mail at the medical facility: • When a patient e-mails our provider, you will need to educate the patient on the risks of using non-encrypted e-mail • If the patient requests to have reminders e-mailed, they need to be made aware of the risks • Document if the patient gives their approval to send e-mails for communication or reminders • Use the EHR with a patient portal function which is more secure • Use the secure HIPAA compliant e-mail application • Manually encrypt transmitted files
BREACH OF INFORMATION If there has been a breach of security of unprotected health information, the Secretary of Health and Human Services will be notified. • If the breach involves more than 500 people the Secretary must be notified within 60 days. • If the breach involves less than 500 people the Secretary must be notified within 60 days of the end of this calendar year. A notice will be submitted electronically. • A breach could involve a mailing sent out that had personal information that is visible. • Patient personal information like social security, phone number, account numbers, and insurance numbers, etc. should be protected. If you discover a breach of patient information, notify your office manager who will notify the privacy officer so the breach can be verified and handled.
TRAINING VIDEO https://youtu.be/mEu6NGPA0Cg Below is a video that will give you a better understanding of HIPPA and why following the correct procedure in handling patient accounts is so important.
SUMMARY Following HIPAA guidelines is extremely important in a medical facility. Failure to do so could lead to large fines. If you are not sure about something, it is a good idea to ask your office manager or the privacy officer. Remember that the patient’s information is private and they control who see’s it. Remember that any information you handle at our facility should not be discussed when you leave the office. We strive to have our patient’s accounts be accurate and secure. In order to do this, everyone has to work together. Use all safety precautions in your work area and throughout our facility. Your job is very important. Welcome to our team
http://www.medicinenet.com/script/main/art.asp?articlekey=31785 http://www.safetynetcenter.org/sites/default/files/images/6.%20HIPAA%20Sam ple%20Training.pdf http://www.safetynetcenter.org/sites/default/files/images/6.%20HIPAA%20Sam ple% http://www.safetynetcenter.org/sites/default/files/images/6.%20HIPAA%20Sam ple%20Training.pdf http://www.hhs.gov/hipaa/for-professionals/privacy/laws-regulations http://www.hhs.gov/hipaa/for-professionals/security/guidance/index.html http://www.hhs.gov/hipaa/for-professionals/breach-notification/breach- reporting/index.html http://www.foxgrp.com/blog/hipaa-compliant-email/ Sayles, N. B., (2014). Heaht Information Management Technology: An Applied Approach Fourth Edition Resources

Recommended

Welcome to the hippa, privacy and security
Welcome to the hippa, privacy and securityWelcome to the hippa, privacy and security
Welcome to the hippa, privacy and security
veve1728
 
Hippa training 2017
Hippa training 2017Hippa training 2017
Hippa training 2017
Ashley Valenzuela
 
MHA690 confidentiality training
MHA690 confidentiality trainingMHA690 confidentiality training
MHA690 confidentiality training
sdavis49
 
Mha690 w1 d2
Mha690 w1 d2Mha690 w1 d2
Mha690 w1 d2
Lindsey Polich
 
Hippa
HippaHippa
Hippa
cameonicole
 
Hipaa slideshow
Hipaa slideshowHipaa slideshow
Hipaa slideshow
heronimus92
 
Hippa laws
Hippa lawsHippa laws
Hippa laws
Becky Bauer
 
Presentation hippa
Presentation hippaPresentation hippa
Presentation hippa
maggie_Platt
 

Recommended

Welcome to the hippa, privacy and security
Welcome to the hippa, privacy and securityWelcome to the hippa, privacy and security
Welcome to the hippa, privacy and security
veve1728
 
Hippa training 2017
Hippa training 2017Hippa training 2017
Hippa training 2017
Ashley Valenzuela
 
MHA690 confidentiality training
MHA690 confidentiality trainingMHA690 confidentiality training
MHA690 confidentiality training
sdavis49
 
Mha690 w1 d2
Mha690 w1 d2Mha690 w1 d2
Mha690 w1 d2
Lindsey Polich
 
Hippa
HippaHippa
Hippa
cameonicole
 
Hipaa slideshow
Hipaa slideshowHipaa slideshow
Hipaa slideshow
heronimus92
 
Hippa laws
Hippa lawsHippa laws
Hippa laws
Becky Bauer
 
Presentation hippa
Presentation hippaPresentation hippa
Presentation hippa
maggie_Platt
 
HIPAA Summary for Training
HIPAA Summary for Training HIPAA Summary for Training
HIPAA Summary for Training
MDManagement
 
Hipaa ppt june 6 2014
Hipaa ppt june 6 2014Hipaa ppt june 6 2014
Hipaa ppt june 6 2014
Lyndon Godsall
 
Hippa privacy and security awareness
Hippa privacy and security awarenessHippa privacy and security awareness
Hippa privacy and security awareness
Charles Taft
 
HIPPA Compliance
HIPPA ComplianceHIPPA Compliance
HIPPA Compliance
dixibee
 
Hippa powerpoint 92613
Hippa powerpoint 92613Hippa powerpoint 92613
Hippa powerpoint 92613
Ravinia Hayes-Cozier
 
What is hipaa
What is hipaaWhat is hipaa
What is hipaa
digitalpractice
 
Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016
Lance King
 
HIPAA week1
HIPAA week1HIPAA week1
HIPAA week1
wbryant1
 
UNA HIPAA Training 8-13
UNA HIPAA Training 8-13UNA HIPAA Training 8-13
UNA HIPAA Training 8-13
University of North Alabama - Academic Affairs
 
Dustin HIPAA
Dustin HIPAADustin HIPAA
Dustin HIPAA
Dustin Kinzinger
 
HIPAA Training MHA 690 7-31-2013
HIPAA Training MHA 690 7-31-2013HIPAA Training MHA 690 7-31-2013
HIPAA Training MHA 690 7-31-2013
Ashford University
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employees
aminahallen
 
Mha690 wk 1 fletcher
Mha690 wk 1 fletcherMha690 wk 1 fletcher
Mha690 wk 1 fletcher
Emed32
 
Employee confidentiality training
Employee confidentiality trainingEmployee confidentiality training
Employee confidentiality training
Jessi Morris
 
Hippa training on confidentiality
Hippa training on confidentialityHippa training on confidentiality
Hippa training on confidentiality
craig45365
 
HIPAA
HIPAAHIPAA
HIPAA
kgriffin62
 
Patient confidentiality.ppt
Patient confidentiality.pptPatient confidentiality.ppt
Patient confidentiality.ppt
chwiso8418
 
HIPAA Presentation
HIPAA PresentationHIPAA Presentation
HIPAA Presentation
LyubovKarnaukh
 
Understanding the HIPPA Act
Understanding the HIPPA ActUnderstanding the HIPPA Act
Understanding the HIPPA Act
Alice Bell, M.B.A.
 
Confidentiality Training
Confidentiality TrainingConfidentiality Training
Confidentiality Training
ridley27
 
Are You HIPAA Safe?
Are You HIPAA Safe?Are You HIPAA Safe?
Are You HIPAA Safe?
TriageLogic
 
Mha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacyMha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacy
Jacquelyn Treadway
 

More Related Content

What's hot

HIPPA Compliance
HIPPA ComplianceHIPPA Compliance
HIPPA Compliance
dixibee
 
HIPAA week1
HIPAA week1HIPAA week1
HIPAA week1
wbryant1
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employees
aminahallen
 
Mha690 wk 1 fletcher
Mha690 wk 1 fletcherMha690 wk 1 fletcher
Mha690 wk 1 fletcher
Emed32
 
Employee confidentiality training
Employee confidentiality trainingEmployee confidentiality training
Employee confidentiality training
Jessi Morris
 
Hippa training on confidentiality
Hippa training on confidentialityHippa training on confidentiality
Hippa training on confidentiality
craig45365
 
Patient confidentiality.ppt
Patient confidentiality.pptPatient confidentiality.ppt
Patient confidentiality.ppt
chwiso8418
 

What's hot (20)

HIPAA Summary for Training
HIPAA Summary for Training HIPAA Summary for Training
HIPAA Summary for Training
 
Hipaa ppt june 6 2014
Hipaa ppt june 6 2014Hipaa ppt june 6 2014
Hipaa ppt june 6 2014
 
Hippa privacy and security awareness
Hippa privacy and security awarenessHippa privacy and security awareness
Hippa privacy and security awareness
 
HIPPA Compliance
HIPPA ComplianceHIPPA Compliance
HIPPA Compliance
 
Hippa powerpoint 92613
Hippa powerpoint 92613Hippa powerpoint 92613
Hippa powerpoint 92613
 
What is hipaa
What is hipaaWhat is hipaa
What is hipaa
 
Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016
 
HIPAA week1
HIPAA week1HIPAA week1
HIPAA week1
 
UNA HIPAA Training 8-13
UNA HIPAA Training 8-13UNA HIPAA Training 8-13
UNA HIPAA Training 8-13
 
Dustin HIPAA
Dustin HIPAADustin HIPAA
Dustin HIPAA
 
HIPAA Training MHA 690 7-31-2013
HIPAA Training MHA 690 7-31-2013HIPAA Training MHA 690 7-31-2013
HIPAA Training MHA 690 7-31-2013
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employees
 
Mha690 wk 1 fletcher
Mha690 wk 1 fletcherMha690 wk 1 fletcher
Mha690 wk 1 fletcher
 
Employee confidentiality training
Employee confidentiality trainingEmployee confidentiality training
Employee confidentiality training
 
Hippa training on confidentiality
Hippa training on confidentialityHippa training on confidentiality
Hippa training on confidentiality
 
HIPAA
HIPAAHIPAA
HIPAA
 
Patient confidentiality.ppt
Patient confidentiality.pptPatient confidentiality.ppt
Patient confidentiality.ppt
 
HIPAA Presentation
HIPAA PresentationHIPAA Presentation
HIPAA Presentation
 
Understanding the HIPPA Act
Understanding the HIPPA ActUnderstanding the HIPPA Act
Understanding the HIPPA Act
 
Confidentiality Training
Confidentiality TrainingConfidentiality Training
Confidentiality Training
 

Similar to Understanding hipaa

Mha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacyMha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacy
Jacquelyn Treadway
 
Patient confidentiality power point
Patient confidentiality power pointPatient confidentiality power point
Patient confidentiality power point
chwiso8418
 
Patient confidentiality power point
Patient confidentiality power pointPatient confidentiality power point
Patient confidentiality power point
chwiso8418
 
Mha690wk1d2 nor
Mha690wk1d2 norMha690wk1d2 nor
Mha690wk1d2 nor
RiriMc
 
Hipaa basics.pp2
Hipaa basics.pp2Hipaa basics.pp2
Hipaa basics.pp2
martykoepke
 

Similar to Understanding hipaa (20)

Are You HIPAA Safe?
Are You HIPAA Safe?Are You HIPAA Safe?
Are You HIPAA Safe?
 
Mha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacyMha 690 week 1 discussion 2 patient privacy
Mha 690 week 1 discussion 2 patient privacy
 
Hipaa-2015
Hipaa-2015Hipaa-2015
Hipaa-2015
 
Final copy 7
Final copy 7Final copy 7
Final copy 7
 
5 hipaa training
5 hipaa training5 hipaa training
5 hipaa training
 
Data Security and Privacy Practices
Data Security and Privacy PracticesData Security and Privacy Practices
Data Security and Privacy Practices
 
Hcc_hipaa hitech training_Basic www.hcctecnologies.com
Hcc_hipaa hitech training_Basic www.hcctecnologies.comHcc_hipaa hitech training_Basic www.hcctecnologies.com
Hcc_hipaa hitech training_Basic www.hcctecnologies.com
 
Patient confidentiality power point
Patient confidentiality power pointPatient confidentiality power point
Patient confidentiality power point
 
Patient confidentiality
Patient confidentialityPatient confidentiality
Patient confidentiality
 
Patient confidentiality power point
Patient confidentiality power pointPatient confidentiality power point
Patient confidentiality power point
 
Better understanding HIPPA and our responsibility as Providers: Avoidance Tec...
Better understanding HIPPA and our responsibility as Providers: Avoidance Tec...Better understanding HIPPA and our responsibility as Providers: Avoidance Tec...
Better understanding HIPPA and our responsibility as Providers: Avoidance Tec...
 
HIPAA and Privacy Training
HIPAA and Privacy TrainingHIPAA and Privacy Training
HIPAA and Privacy Training
 
Hipaa overview 073118
Hipaa overview 073118Hipaa overview 073118
Hipaa overview 073118
 
Mha690wk1d2 nor
Mha690wk1d2 norMha690wk1d2 nor
Mha690wk1d2 nor
 
Hippa privacy
Hippa privacyHippa privacy
Hippa privacy
 
Hipaa basics.pp2
Hipaa basics.pp2Hipaa basics.pp2
Hipaa basics.pp2
 
5 hipaa training
5 hipaa training5 hipaa training
5 hipaa training
 
Hot materials hippa
Hot materials hippaHot materials hippa
Hot materials hippa
 
Mha 690 W1 D2
Mha 690 W1 D2Mha 690 W1 D2
Mha 690 W1 D2
 
Patient privacy 2.0 slides
Patient privacy 2.0 slidesPatient privacy 2.0 slides
Patient privacy 2.0 slides
 

More from Sharon Nemecek

More from Sharon Nemecek (6)

Complete feasibility report
Complete feasibility reportComplete feasibility report
Complete feasibility report
 
Fighting alzheimer’s
Fighting alzheimer’sFighting alzheimer’s
Fighting alzheimer’s
 
Eliminating human errors in medical coding
Eliminating human errors in medical codingEliminating human errors in medical coding
Eliminating human errors in medical coding
 
Hipaa training plan organizational resources
Hipaa training plan organizational resourcesHipaa training plan organizational resources
Hipaa training plan organizational resources
 
All about hypothyroidism
All about hypothyroidismAll about hypothyroidism
All about hypothyroidism
 
Nemecek presentation
Nemecek presentationNemecek presentation
Nemecek presentation
 

Recently uploaded

The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
heathfieldcps1
 

Recently uploaded (20)

The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 
AIM of Education-Teachers Training-2024.ppt
AIM of Education-Teachers Training-2024.pptAIM of Education-Teachers Training-2024.ppt
AIM of Education-Teachers Training-2024.ppt
 
Towards a code of practice for AI in AT.pptx
Towards a code of practice for AI in AT.pptxTowards a code of practice for AI in AT.pptx
Towards a code of practice for AI in AT.pptx
 
Details on CBSE Compartment Exam.pptx1111
Details on CBSE Compartment Exam.pptx1111Details on CBSE Compartment Exam.pptx1111
Details on CBSE Compartment Exam.pptx1111
 
OS-operating systems- ch05 (CPU Scheduling) ...
OS-operating systems- ch05 (CPU Scheduling) ...OS-operating systems- ch05 (CPU Scheduling) ...
OS-operating systems- ch05 (CPU Scheduling) ...
 
Our Environment Class 10 Science Notes pdf
Our Environment Class 10 Science Notes pdfOur Environment Class 10 Science Notes pdf
Our Environment Class 10 Science Notes pdf
 
How to Add a Tool Tip to a Field in Odoo 17
How to Add a Tool Tip to a Field in Odoo 17How to Add a Tool Tip to a Field in Odoo 17
How to Add a Tool Tip to a Field in Odoo 17
 
How to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptxHow to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptx
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptx
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)
 
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POS
 
Graduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - EnglishGraduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - English
 
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdfUGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
 
dusjagr & nano talk on open tools for agriculture research and learning
dusjagr & nano talk on open tools for agriculture research and learningdusjagr & nano talk on open tools for agriculture research and learning
dusjagr & nano talk on open tools for agriculture research and learning
 
Play hard learn harder: The Serious Business of Play
Play hard learn harder: The Serious Business of PlayPlay hard learn harder: The Serious Business of Play
Play hard learn harder: The Serious Business of Play
 
Tatlong Kwento ni Lola basyang-1.pdf arts
Tatlong Kwento ni Lola basyang-1.pdf artsTatlong Kwento ni Lola basyang-1.pdf arts
Tatlong Kwento ni Lola basyang-1.pdf arts
 
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
 
How to Manage Call for Tendor in Odoo 17
How to Manage Call for Tendor in Odoo 17How to Manage Call for Tendor in Odoo 17
How to Manage Call for Tendor in Odoo 17
 
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptxOn_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
 

Understanding hipaa

  • 2. BACKGROUND • The Health Insurance Portability and Accountability Act is a Federal law that was enacted on August 21, 1996 • It is Public Law 104-191 • It was developed by the Department of Health and Human Services • Sections 261 through 264 of this law requires the Secretary of Health and Human Services to publicize standards for the electronic exchange, privacy, and security of health information
  • 3. What is HIPAA? • It is a Federal law which set up standards that protect patients medical information. • It states that patients have the right to their own personal health records. • It states that health information cannot be used or released without the patient’s authorization
  • 4. More about HIPAA • It limits the use of personal health information to the minimum for only the purpose it is needed • It imposes administrative requirements that include a designated privacy officer at medical facilities • The privacy officer will conduct HIPAA training and document and implement policies and procedures that will make sure HIPAA guidelines are being followed
  • 5. PRIVACY • The Privacy Act of 1974 was established to safeguard an individual’s privacy from possible misuse of federal records and to allow individuals access to records that federal agencies maintain about them. • The Privacy Protection and Safety Commission was established to monitor these rights. • Under the United States Constitution each citizen has a right to privacy and to have their personal information protected. • It also protects citizens from invasion of personal privacy.
  • 6. PRIVACY GUIDELINES • Authorization: Before any health information can be released the patient must sign the “release of information form”. This pertains to the patient requesting their medical records and also requests from other entities, a form must be signed by the patient. • Minimum Necessary: When the completed release of information has been signed by a patient, only release the minimum records necessary for the request, not the complete medical record. • Confidentiality: Under no circumstance should a patient’s medical information be shared outside the office. • Protect Access: Safeguard your work area so unauthorized access to patient’s records is avoided.
  • 7. Confidentiality • Confidentiality refers to the expectation that information that a patient shares with their medical provider will only be used for their care and only for that purpose • A physician may not disclose any medical information about a patient without the patient’s permission • All employees in a healthcare setting must also maintain the confidentiality of all patients records and reports. • Identification needs to be verified before releasing patient information. • To disclose any information about a patient beyond its intended purpose without the patient’s knowledge and consent is a violation of confidentiality.
  • 8. SECURITY • The Health Insurance Portability and Accountability Act- HIPAA Omnibus Rule was enacted on January 25, 2013 • The Omnibus Rule broadens the application of HIPAA privacy and security requirements to include both covered entities as well as business associates. • All medical facilities need to implement a security awareness and training program for all employees • Some requirements of this program are:  Security Reminders  Protection from malicious software  Log in monitoring  Password management
  • 9. SECURITY MEASURES • Always lock your computer when you leave your work area • Do not leave a patient’s medical records unsupervised where they can be accessed by an unauthorized person • Do not open e-mail from suspicious sources to avoid malicious malware from accessing the computer systems • Always wear your employee badge when at work • Choose a strong password for your computer sign-on • When e-mailing personal medical information use encryption • If there are any questions please contact your office manager
  • 10. E-MAIL GUIDELINES The following guidelines need to be followed when using e-mail at the medical facility: • When a patient e-mails our provider, you will need to educate the patient on the risks of using non-encrypted e-mail • If the patient requests to have reminders e-mailed, they need to be made aware of the risks • Document if the patient gives their approval to send e-mails for communication or reminders • Use the EHR with a patient portal function which is more secure • Use the secure HIPAA compliant e-mail application • Manually encrypt transmitted files
  • 11. BREACH OF INFORMATION If there has been a breach of security of unprotected health information, the Secretary of Health and Human Services will be notified. • If the breach involves more than 500 people the Secretary must be notified within 60 days. • If the breach involves less than 500 people the Secretary must be notified within 60 days of the end of this calendar year. A notice will be submitted electronically. • A breach could involve a mailing sent out that had personal information that is visible. • Patient personal information like social security, phone number, account numbers, and insurance numbers, etc. should be protected. If you discover a breach of patient information, notify your office manager who will notify the privacy officer so the breach can be verified and handled.
  • 12. TRAINING VIDEO https://youtu.be/mEu6NGPA0Cg Below is a video that will give you a better understanding of HIPPA and why following the correct procedure in handling patient accounts is so important.
  • 13. SUMMARY Following HIPAA guidelines is extremely important in a medical facility. Failure to do so could lead to large fines. If you are not sure about something, it is a good idea to ask your office manager or the privacy officer. Remember that the patient’s information is private and they control who see’s it. Remember that any information you handle at our facility should not be discussed when you leave the office. We strive to have our patient’s accounts be accurate and secure. In order to do this, everyone has to work together. Use all safety precautions in your work area and throughout our facility. Your job is very important. Welcome to our team