The HIPPA Privacy Rule creates national standards to protect patients' medical records and personal health information. It gives patients control over their health information and sets limits on how health records can be used and disclosed. The rule establishes safeguards that providers must follow to protect patient privacy and defines protected health information as any identifiable health information. It guarantees patients certain rights regarding their health information and authorizes healthcare providers to access information for treatment, payment, and operations. Violations can result in civil penalties up to $25,000 per person per year or criminal penalties such as fines and imprisonment depending on the type of violation. The document provides tips for safeguarding protected health information.

1. HIPPA
YOUR RESPONSIBITY IN THE
WORKPLACE

2. What Is The HIPPA Privacy
Rule?
 The privacy rule creates national standards to
protect patient medical records and personal
health information. The rule:
 gives patients control over their health
information
 Sets limitations on the use and release of
health records and information
 Establishes safeguards that providers must
follow to protect patient privacy

3. Protected Health Information
 HIPPA protects any identifiable information
related to the past, present, or future physical
or metal health of a person
 In any form or medium (oral, written, or
electronic)
 Examples of protected information include:
zip codes, telephone numbers, fax numbers,
e-mail addresses, pictures, dates of service,
patient history, discharge summary, phone
notes, inpatient or outpatient progress notes,
census, and allergies.

4. Who Is Authorized To See
protected Health Information?
 Health care providers who are directly
involved in providing treatment, payment,
or involved with health operations.
 Efforts must be made to limit protected
health information to the minimum
necessary to accomplish the intended
purpose of the use, disclosure, or request.

5. HIPPA Rights Guaranteed To
Patients
 Patients can:
 See their records or get a copy
 Request amendments to their records if
they feel the records are incorrect
 Request a list of who their records have
been disclosed to
 Complain of privacy problems

6. Provider Rights
 Use patient information for treatment,
payment, and health care operations
 Disclose information to family members or
other patient representatives if the patient
cannot speak for himself

7. Fines And Penalties
 Civil: $100 each violation up to $25,000
per person per year
 Criminal: Knowing – up to $50,000, 1 year
in prison
 Under false pretences - $100,000 , 5 years
in prison
 With malice or personal gain - $250,000, 10
years in prison

8. How To Safeguard Protected
Health Information
 Avoid discussion about patients in public areas
 Do not leave messages on an answering machine
concerning a patient’s condition
 Secure storage and transportation of patient
information
 Display precautions such as public view of
computer screens
 Log off computers when away from work station
 Records are locked except to people who need
access to information
 If you have any questions ask the company’s
safety officer.