SlideShare a Scribd company logo

HIPAA Training

Download as PPTX, PDF
Karen Meyer
Karen Meyer
Business
1 of 10
Health Insurance Portability and Accountability Act (HIPAA) Training Karen Meyer, RN, BSN, CIC MHA690 – Healthcare Capstone Ashford University Instructor: Hwang-Ji Lu February 28, 2013
What is HIPAA? O HIPAA requires health care providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared (California Department of Healthcare Services, n.d.). O This applies to all forms of PHI, including written, oral, electronic, photographic images, audio, and video.
What is PHI? O Any individually identifiable health information: O Created or received by covered entity or business associate. O Relates to past, present, or future physical or mental health or condition of an individual. O Transmitted in any form or medium.
Examples of PHI Device identifiers and serial numbers Social Email security Account addresses URLs numbers numbers Names Photographs Medical Fax IP record License numbers address Geographical numbers numbers identifiers numbers Any other unique Health identifying Phone Insurance Vehicle Biometric number Dates numbers numbers identifiers identifiers
HIPAA Enforcement and Penalties O The Department of Health and Human Services, Office for Civil Rights (OCR) is responsible for enforcing privacy rule standards. O Criminal Penalties: Wrongfully accessing or disclosing PHI Up to $50,000 Up to 1 year imprisonment Obtaining PHI under false pretenses Up to $100,000 Up to 5 years imprisonment If wrongful conduct involves the intent Up to $250,000 Up to 10 years imprisonment to sell, transfer, or use PHI for commercial advantage, personal gain, or malicious harm Reference: U.S. Department of Health & Human Services (2003).
HIPAA Permitted Uses and Disclosures of PHI O PHI may be used and disclosed to facilitate treatment, payment, and healthcare operations which means: O HI may be disclosed to other providers for treatment. O PHI may be disclosed to other covered entities for payment. O PHI may be disclosed to other covered entities that have a relationship with the patient for certain healthcare operations such as quality improvement, credentialing, and compliance. O PHI may be disclosed to individuals involved in a patient’s care or payment for care unless the patient objects.
Rules for Access O Access to computer systems and information is based on your work duties and responsibilities. O Access privileges are limited to only the minimum necessary information you need to do your work. O Access to an information system does not automatically mean that you are authorized to view or use all the data in that system. O If job duties change, clearance levels for access to ePHI is re-evaluated. O Access is eliminated if employee is terminated. O Accessing ePHI for which you are not cleared or for which there is no job-related purpose will subject you to sanctions.
Rules for Protecting Information O Do not allow unauthorized persons into restricted areas where access to PHI or ePHI could occur. O Arrange computer screens so they are not visible to unauthorized persons and/or patients; use security screens in areas accessible to public. O Log in with password, log off prior to leaving work area, and do not leave computer unattended. O Close files not in use/turn over paperwork containing PHI. O Do not duplicate, transmit, or store PHI without appropriate authorization. O Storage of PHI on unencrypted removable devices (Disk/CD/DVD/Thumb Drives) is prohibited without prior authorization.
Conclusion O All employees are required to follow HIPAA and will be held accountable for their actions. O ALWAYS follow the rules for access and rules for protecting information.
References California Department of Healthcare Services. (n.d.). Health insurance portability and accountability act. Retrieved from http://www.dhcs.ca.gov/formsandpubs/laws/hipaa /Pages/1.00%20WhatisHIPAA.aspx U.S. Department of Health and Human Services. (2003). Summary of the HIPAA privacy rule. Retrieved from http://www.hhs.gov/ocr/privacy/hipaa/understandi ng/summary/privacysummary.pdf

Recommended

Wk1 discussion 2
Wk1 discussion 2Wk1 discussion 2
Wk1 discussion 2
jodimw
 
Hp pultik 1000x1000_out_en
Hp pultik 1000x1000_out_enHp pultik 1000x1000_out_en
Hp pultik 1000x1000_out_en
Hewlett Packard Enterprise Business Value Exchange
 
HIPAA Email Compliance & Privacy
HIPAA Email Compliance & PrivacyHIPAA Email Compliance & Privacy
HIPAA Email Compliance & Privacy
appriver
 
HIPAA Compliance For Small Practices
HIPAA Compliance For Small PracticesHIPAA Compliance For Small Practices
HIPAA Compliance For Small Practices
Nisos Health
 
C:\Fakepath\Secprimodule
C:\Fakepath\SecprimoduleC:\Fakepath\Secprimodule
C:\Fakepath\Secprimodule
Brenda Kershaw
 
Hipaa presentation
Hipaa presentationHipaa presentation
Hipaa presentation
cjkonsella
 
E mail fraud
E mail fraudE mail fraud
E mail fraud
slire
 
HIPAA Compliance Checklist
HIPAA Compliance ChecklistHIPAA Compliance Checklist
HIPAA Compliance Checklist
Leigh-Ann Renz
 

Recommended

Wk1 discussion 2
Wk1 discussion 2Wk1 discussion 2
Wk1 discussion 2
jodimw
 
Hp pultik 1000x1000_out_en
Hp pultik 1000x1000_out_enHp pultik 1000x1000_out_en
Hp pultik 1000x1000_out_en
Hewlett Packard Enterprise Business Value Exchange
 
HIPAA Email Compliance & Privacy
HIPAA Email Compliance & PrivacyHIPAA Email Compliance & Privacy
HIPAA Email Compliance & Privacy
appriver
 
HIPAA Compliance For Small Practices
HIPAA Compliance For Small PracticesHIPAA Compliance For Small Practices
HIPAA Compliance For Small Practices
Nisos Health
 
C:\Fakepath\Secprimodule
C:\Fakepath\SecprimoduleC:\Fakepath\Secprimodule
C:\Fakepath\Secprimodule
Brenda Kershaw
 
Hipaa presentation
Hipaa presentationHipaa presentation
Hipaa presentation
cjkonsella
 
E mail fraud
E mail fraudE mail fraud
E mail fraud
slire
 
HIPAA Compliance Checklist
HIPAA Compliance ChecklistHIPAA Compliance Checklist
HIPAA Compliance Checklist
Leigh-Ann Renz
 
HIPAA Summary for Training
HIPAA Summary for Training HIPAA Summary for Training
HIPAA Summary for Training
MDManagement
 
Hipaa basics pp2
Hipaa basics pp2Hipaa basics pp2
Hipaa basics pp2
martykoepke
 
Patient confidentiality
Patient confidentialityPatient confidentiality
Patient confidentiality
Lily Isaacson
 
Basic HIPAA Training by CMU
Basic HIPAA Training by CMUBasic HIPAA Training by CMU
Basic HIPAA Training by CMU
Atlantic Training, LLC.
 
Mha 690 ppt hipaa for healthcare professionals
Mha 690 ppt hipaa for healthcare professionalsMha 690 ppt hipaa for healthcare professionals
Mha 690 ppt hipaa for healthcare professionals
lee5lee
 
Confidentiality & HIPAA Training Week 1 Discussion 2
Confidentiality & HIPAA Training Week 1 Discussion 2Confidentiality & HIPAA Training Week 1 Discussion 2
Confidentiality & HIPAA Training Week 1 Discussion 2
Melissa Morris
 
HIPAA presentation GAHU v7
HIPAA presentation GAHU v7HIPAA presentation GAHU v7
HIPAA presentation GAHU v7
Jason Karn
 
Confidentiality Training
Confidentiality Training Confidentiality Training
Confidentiality Training
Kendra Guyton-Sheppard
 
Chapter 3: Ethics
Chapter 3: EthicsChapter 3: Ethics
Chapter 3: Ethics
HeatherSeghi
 
Hipaa
HipaaHipaa
Hipaa
bxdesiree
 
Week 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy trainingWeek 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy training
vrgill22
 
Wk 1 discussion 2
Wk 1 discussion 2Wk 1 discussion 2
Wk 1 discussion 2
ShariNettles
 
Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2
tiffhall
 
Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2
tiffhall
 
Medical Records Destruction Guide
Medical Records Destruction GuideMedical Records Destruction Guide
Medical Records Destruction Guide
Shred Nations
 
Abc hospital
Abc hospitalAbc hospital
Abc hospital
luivan7894
 
there are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdfthere are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdf
arasanlethers
 
HIPAA
HIPAAHIPAA
HIPAA
sa3669
 
HIPAA
HIPAAHIPAA
HIPAA
sa3669
 
Mha690 week 1 disc2 10 3-2019
Mha690 week 1 disc2 10 3-2019Mha690 week 1 disc2 10 3-2019
Mha690 week 1 disc2 10 3-2019
TTD001
 
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al MizharAl Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
allensay1
 
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfTVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
believeminhh
 

More Related Content

Similar to HIPAA Training

Hipaa basics pp2
Hipaa basics pp2Hipaa basics pp2
Hipaa basics pp2
martykoepke
 
Patient confidentiality
Patient confidentialityPatient confidentiality
Patient confidentiality
Lily Isaacson
 
Week 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy trainingWeek 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy training
vrgill22
 
Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2
tiffhall
 
there are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdfthere are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdf
arasanlethers
 

Similar to HIPAA Training (20)

HIPAA Summary for Training
HIPAA Summary for Training HIPAA Summary for Training
HIPAA Summary for Training
 
Hipaa basics pp2
Hipaa basics pp2Hipaa basics pp2
Hipaa basics pp2
 
Patient confidentiality
Patient confidentialityPatient confidentiality
Patient confidentiality
 
Basic HIPAA Training by CMU
Basic HIPAA Training by CMUBasic HIPAA Training by CMU
Basic HIPAA Training by CMU
 
Mha 690 ppt hipaa for healthcare professionals
Mha 690 ppt hipaa for healthcare professionalsMha 690 ppt hipaa for healthcare professionals
Mha 690 ppt hipaa for healthcare professionals
 
Confidentiality & HIPAA Training Week 1 Discussion 2
Confidentiality & HIPAA Training Week 1 Discussion 2Confidentiality & HIPAA Training Week 1 Discussion 2
Confidentiality & HIPAA Training Week 1 Discussion 2
 
HIPAA presentation GAHU v7
HIPAA presentation GAHU v7HIPAA presentation GAHU v7
HIPAA presentation GAHU v7
 
Confidentiality Training
Confidentiality Training Confidentiality Training
Confidentiality Training
 
Chapter 3: Ethics
Chapter 3: EthicsChapter 3: Ethics
Chapter 3: Ethics
 
Hipaa
HipaaHipaa
Hipaa
 
Week 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy trainingWeek 1 discussion 2 hipaa and privacy training
Week 1 discussion 2 hipaa and privacy training
 
Wk 1 discussion 2
Wk 1 discussion 2Wk 1 discussion 2
Wk 1 discussion 2
 
Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2
 
Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2Tiffany hall mha 690 week 1 discussion 2
Tiffany hall mha 690 week 1 discussion 2
 
Medical Records Destruction Guide
Medical Records Destruction GuideMedical Records Destruction Guide
Medical Records Destruction Guide
 
Abc hospital
Abc hospitalAbc hospital
Abc hospital
 
there are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdfthere are laws and regulations that would pertain to an online breac.pdf
there are laws and regulations that would pertain to an online breac.pdf
 
HIPAA
HIPAAHIPAA
HIPAA
 
HIPAA
HIPAAHIPAA
HIPAA
 
Mha690 week 1 disc2 10 3-2019
Mha690 week 1 disc2 10 3-2019Mha690 week 1 disc2 10 3-2019
Mha690 week 1 disc2 10 3-2019
 

Recently uploaded

Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al MizharAl Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
allensay1
 
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
DUBAI (+971)581248768 BUY ABORTION PILLS IN ABU dhabi...Qatar
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
Roofing Contractor
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
daisycvs
 
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pillsMifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
ZurliaSoop
 
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in OmanMifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
instagramfab782445
 

Recently uploaded (20)

Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al MizharAl Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
 
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfTVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
 
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
 
Power point presentation on enterprise performance management
Power point presentation on enterprise performance managementPower point presentation on enterprise performance management
Power point presentation on enterprise performance management
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investors
 
Falcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business Potential
 
BeMetals Investor Presentation_May 3, 2024.pdf
BeMetals Investor Presentation_May 3, 2024.pdfBeMetals Investor Presentation_May 3, 2024.pdf
BeMetals Investor Presentation_May 3, 2024.pdf
 
Buy gmail accounts.pdf buy Old Gmail Accounts
Buy gmail accounts.pdf buy Old Gmail AccountsBuy gmail accounts.pdf buy Old Gmail Accounts
Buy gmail accounts.pdf buy Old Gmail Accounts
 
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 MonthsSEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pillsMifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in OmanMifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
 

HIPAA Training

  • 1. Health Insurance Portability and Accountability Act (HIPAA) Training Karen Meyer, RN, BSN, CIC MHA690 – Healthcare Capstone Ashford University Instructor: Hwang-Ji Lu February 28, 2013
  • 2. What is HIPAA? O HIPAA requires health care providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared (California Department of Healthcare Services, n.d.). O This applies to all forms of PHI, including written, oral, electronic, photographic images, audio, and video.
  • 3. What is PHI? O Any individually identifiable health information: O Created or received by covered entity or business associate. O Relates to past, present, or future physical or mental health or condition of an individual. O Transmitted in any form or medium.
  • 4. Examples of PHI Device identifiers and serial numbers Social Email security Account addresses URLs numbers numbers Names Photographs Medical Fax IP record License numbers address Geographical numbers numbers identifiers numbers Any other unique Health identifying Phone Insurance Vehicle Biometric number Dates numbers numbers identifiers identifiers
  • 5. HIPAA Enforcement and Penalties O The Department of Health and Human Services, Office for Civil Rights (OCR) is responsible for enforcing privacy rule standards. O Criminal Penalties: Wrongfully accessing or disclosing PHI Up to $50,000 Up to 1 year imprisonment Obtaining PHI under false pretenses Up to $100,000 Up to 5 years imprisonment If wrongful conduct involves the intent Up to $250,000 Up to 10 years imprisonment to sell, transfer, or use PHI for commercial advantage, personal gain, or malicious harm Reference: U.S. Department of Health & Human Services (2003).
  • 6. HIPAA Permitted Uses and Disclosures of PHI O PHI may be used and disclosed to facilitate treatment, payment, and healthcare operations which means: O HI may be disclosed to other providers for treatment. O PHI may be disclosed to other covered entities for payment. O PHI may be disclosed to other covered entities that have a relationship with the patient for certain healthcare operations such as quality improvement, credentialing, and compliance. O PHI may be disclosed to individuals involved in a patient’s care or payment for care unless the patient objects.
  • 7. Rules for Access O Access to computer systems and information is based on your work duties and responsibilities. O Access privileges are limited to only the minimum necessary information you need to do your work. O Access to an information system does not automatically mean that you are authorized to view or use all the data in that system. O If job duties change, clearance levels for access to ePHI is re-evaluated. O Access is eliminated if employee is terminated. O Accessing ePHI for which you are not cleared or for which there is no job-related purpose will subject you to sanctions.
  • 8. Rules for Protecting Information O Do not allow unauthorized persons into restricted areas where access to PHI or ePHI could occur. O Arrange computer screens so they are not visible to unauthorized persons and/or patients; use security screens in areas accessible to public. O Log in with password, log off prior to leaving work area, and do not leave computer unattended. O Close files not in use/turn over paperwork containing PHI. O Do not duplicate, transmit, or store PHI without appropriate authorization. O Storage of PHI on unencrypted removable devices (Disk/CD/DVD/Thumb Drives) is prohibited without prior authorization.
  • 9. Conclusion O All employees are required to follow HIPAA and will be held accountable for their actions. O ALWAYS follow the rules for access and rules for protecting information.
  • 10. References California Department of Healthcare Services. (n.d.). Health insurance portability and accountability act. Retrieved from http://www.dhcs.ca.gov/formsandpubs/laws/hipaa /Pages/1.00%20WhatisHIPAA.aspx U.S. Department of Health and Human Services. (2003). Summary of the HIPAA privacy rule. Retrieved from http://www.hhs.gov/ocr/privacy/hipaa/understandi ng/summary/privacysummary.pdf