SlideShare ist ein Scribd-Unternehmen logo

HIPAA

•Als PPT, PDF herunterladen•
•
Chesapeake Medical Staffing
Chesapeake Medical Staffing

The document discusses the Health Insurance Portability and Accountability Act (HIPAA) and how it relates to protecting patient privacy and confidentiality. HIPAA aims to assure health insurance portability, reduce fraud, and guarantee confidentiality of health information. It requires covered entities like hospitals and healthcare providers to implement privacy protections for protected health information. HIPAA affects how patient information can be shared, used, and accessed according to regulations regarding consent, authorization, and permitted disclosures for treatment, payment, and operations. Staff must be trained on HIPAA policies and compliance is mandatory to avoid penalties for violations.

TechnologieBusiness
1 von 34
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA JCAHO Mandatory Annual Competency Chesapeake Medical Staffing
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA Initiative Health care has always tried to maintain confidentiality, but efforts have not always been successful. Public trust in health care has eroded and the health care industry needs to work hard to regain that trust. Health care institutions and providers have worked to make sharing of medical information easier to help facilitate care and payment.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA The Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 to cover three specific areas: 1. Insurance portability or the ability to move to another employer and be certain that your insurance will not be denied 2. Fraud enforcement and accountability 3. Administrative simplification The first two areas have been active since 1996, but it took until April of 2003 to enact administrative simplification.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Administrative Simplification Administrative simplification refers to the guidelines that impact healthcare providers in the communications with other providers, families, friends, and the media. It includes written, verbal, phone, fax, and email communications.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Impact on the Caregiver The essential parts of the administrative simplification section of the law have to do with: • consents • authorization • patient privacy • confidentiality • security of patient The law directs all health care providers and facilities to have standards in place to protect patient information and to educate staff on their responsibilities in this important area.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPPA is designed to:  Assure health insurance portability  Reduce health care fraud and abuse  Guarantee integrity and confidentiality of health information  Improve the operations of health care systems and reduce administrative costs
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Privacy vs. Confidentiality Privacy is the individual’s right to decide who, when, and how any information about him or herself is disclosed. Confidentiality is the obligation of another to maintain the person’s privacy.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Consents and Authorizations Upon entering the healthcare facility, the patient is given information about how the organization will protect the privacy of the patient and what types of information will be shared and under what circumstances (generally related to the current care of the patient). This is called the Notice of Privacy Practices and is required by HIPAA to be given to all patients.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA Privacy LAW HIPAA is Federal Law and compliance is mandatory. Patient information must be protected through conscious effort at all times no matter where you are! The ONLY exception is when information is shared in order to provide care, treatment and payment for services.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Consequences of NOT Protecting Patient Confidentiality There are both civil and criminal penalties associated with NOT following the HIPAA guidelines about releasing patient information. The penalties vary based on if the information was inadvertently or deliberately released, as well as the type of information released. Penalties and fines may be up to $250,000 and ten years imprisonment.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Shared Information Under HIPAA, a facility may share or disclose patient information for the following purposes: • Treatment of the patient (e.g. consulting with other healthcare providers on diagnosis and treatment) • Obtaining payment from the patient’s health plan • Operational requirements (e.g. quality improvement activities or peer review) • Complying with legally mandated reporting or disclosure The patient must provide consent or further authorize any other release of information for any other purpose. The facility must also make a good faith effort to obtain a written acknowledgement that the patient received the Privacy Notice.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Defining HIPAA Terms: • What is Portability? Portability ensures that as people move from one health plan to another they will have continuity of coverage and will not be denied coverage under pre-existing clauses. • What is Accountability? In accordance with HIPAA, accountability means an increase in the government’s fraud enforcement authority.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Covered Entities Covered entities includes hospitals, health care providers, third party payers, such as insurance companies, and anyone who processes health information. Therefore, the term “covered entities” includes everyone that uses, accesses or interacts with patients in any way. These interactions may be formal or informal, from those of direct care givers to those that enter a patient room simply to clean or deliver items.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Protected Health Information (PHI) Protected Health Information (PHI) is a new term that will be used with increasing frequency in facilities where you work. PHI refers to personal patient information that can be used to identify the patient, sometimes even inadvertently. The patient now has the right to direct when, why, and to whom PHI may be released. For instance, in the past, aggregated patient information may have been collected for research, quality improvement, or other purposes. Even though the patient’s name would be omitted, the patient may still be identifiable through specific data including date of procedure, type of procedure, gender, or any number of other details. The new bill allows patients much more control over PHI.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Protecting PHI • Information that relates to a patient’s health cannot be used unless authorized by either the patient or someone acting on the patient’s behalf, or unless permitted by regulation. • Access to information is limited to only those individuals who need the information for a legitimate purpose. • HIPAA ensures that an individual’s health information may only be used for health purposes.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of What Kind of Information is Protected? Patient information that is protected includes, but is not limited to: • the patient’s name, address & telephone number • age, diagnosis, surgery, date of procedure, and medications Beyond this, additional information that is protected includes any medical history information, results of physical examinations, laboratory and other diagnostic results, billing records and claim forms. Any information that could be used to identify the patient is protected under HIPAA. It is important to know that this information is protected in any form, be it written, electronic, or verbal.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of How Does This Law Affect Our Discussion of Patient Issues? Although there are persons with whom you need to communicate about a specific patient, be certain to consider the following: • Does the person you are communicating with “need to know” the information about the patient? In other words, is there a medical necessity to discuss the patient? • Are you discussing the patient out of the hearing of others? • Without using a patient name, are you still discussing the patient in a way that others could discern who you are speaking about? For example, perhaps there is only one male on your unit, so if you use the word “he,” others will know who you are discussing.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Discussing Patient Information with Family and Personal Representatives A personal representative is defined as any person who is legally authorized to act on behalf of the patient. This can be someone with a legal document, such as a general power of attorney or a more limited medical power of attorney, or simply someone who has the authority to act on behalf of the patient. PHI can be shared with a personal representative.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Allowed Disclosure HIPAA allows disclosure of PHI to spouses, parents, legal guardians, and others involved in a patient’s care without obtaining the patient’s formal, written permission. If you are in a patient room and need to discuss their care or treatment when others are present, simply ask the patient if there is any objection.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Using and Sharing Information Most likely, all the personal information that you use and share in your daily duties is covered under HIPAA for “treatment” purposes. These include: • Discussing diagnosis and treatment with other nurses and physicians. • Performing diagnostic tests and providing this information to other providers. • Providing laboratory samples or imaging tests to those who perform diagnostics on them. • Referring a patient to another provider or facility, and discussing the treatment and/or diagnosis. • Telephone prescription information to a pharmacy.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Requests for Access to Records Each facility will determine the specific policies but the following will be routine: • Clear identification that the person requesting the medical record is either the patient or has the correct authorization to view the record. • Only the parts of the record included in the authorization can be viewed. • The patient may request changes to the record and the facility and parties involved must respond to the request within a preset time frame. Note that this does not imply that the record must be changed, only that the patient’s request has a response. • Clear guidelines exist as to which staff members may have access to records and for what reasons.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Faxes HIPAA also covers fax communications with specific patient information. Although each facility will have different specific policies, general guidelines will most likely include the following: • Locating fax machines in private and secure areas, away from patients and the public. • Fax cover sheets will include disclaimer to indicate what to do if sent inadvertently to the wrong number. • Whether faxes can or cannot be sent during “off hours” when the receiving fax papers will not be picked up immediately. • Protection of “sent” faxes left unattended on the fax machine.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Computers Computers are now commonplace in hospital units and include a vast amount of patient information that must be secured. Be vigilant about your computer use, following these guidelines: • Computers should be set up so that the screens are not easily visible to the patient or visitors. • The computer user should “log off” when finished with the computer, so the screen is not left “on” and “visible” to others. • Each computer user should have their own password so that each person using the computer and the screens they go to can be identified. • Do not share your password with others.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Confidentiality The mandates of HIPAA require each of us to: • maintain confidentiality of computer access codes • position computer screens away from public access or view • log off computers when you have finished.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Audit of Computer Access • Audits may be conducted on a regular basis to identify inappropriate access to medical record information. • Audits may be conducted on all records for patients who are hospital employees, medical staff, admitted under an alias or recognized as high profile. • Random samples of records may be audited on a regular basis. • This procedure is outlined in hospital policy and is overseen by the Privacy Officer.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Information Released to Family/Friends and/or the Press If the patient elects to be listed in a facility patient directory, the information in the directory may be released to family, friends, or the press. Other information must come from the patient or another clearly identified person based on the specific situation and the facility policy.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of When NO Information is Released In general, any patient receiving care for substance abuse, psychiatric disorder, HIV, pregnancy, sexual abuse, or rape is treated with an even greater level of confidentiality. Confirmation of the patient’s treatment is generally prohibited. This means that if a call is received asking about a particular patient, no comment should be made as to whether the patient is even seeking treatment or being treated. Check with the facility’s HIPAA policy for exact terminology. Additionally, a patient may request to NOT be in the patient directory and the same standard would be in place. This is a critical feature and each facility will have very specific standards for you to follow (http://www.hipaa.org, 2003).
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Who Must Comply with HIPAA? HIPAA’s privacy and security provisions apply to all members of the workforce of a health care facility. This means all employees, such as nurses and physicians, and administrative, clerical, food service, or environmental services staff, as well as volunteers or any others under the facility’s direct supervision, must adhere to HIPAA policies.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Unauthorized Disclosures Ensuring the security of patient information relies on your diligence. Unauthorized disclosures of protected information can occur if: • You fail to ensure information you are sending is going to someone who is authorized to receive that information • You neglect to review a patient’s record to find restriction on the use of their information • You hear discussions occurring in non-secure locations that disclose patient information If you are aware of an incident that may have resulted in an unauthorized disclosure, you should report it immediately. A facility may have a method to report unauthorized disclosures in a confidential manner.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Incidental Exposure Incidental exposure can happen even when everything possible has been done to avoid it. It is a disclosure that cannot be reasonably prevented, is limited in nature, and occurs as a by-product of otherwise permitted use or disclosure. An example of incidental exposure: a patient walking down the hall accidentally hears part of a conversation that takes place while a therapist speaks to a physician.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Patient Rights Patients have rights protected under HIPAA legislation which include the: • right of access to copies of their medical record • right to request the “Amendment of the Medical Record” • right to request restriction of uses and disclosures • right to request confidential communication
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Required Reporting If you suspect there has been an actual or attempted privacy breach to any form or protected information, whether electronic, paper or recorded, you are required to report it to the Privacy Officer for the involved facility.
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Policy Review It is recommended all CMS Associates review the following policies at the facilities you frequently work: confidentiality disclosure privacy patient rights chart audits patient’s access to their PHI
This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Conclusion As of 2003, HIPAA is a mandated law. All health care facilities and providers are obligated to comply. All CMS associates need to be knowledgeable of the contents and ramifications of this law. Although you may see variations in policies from facility to facility, you will recognize that the overall intent is to improve the protection of patient confidentiality in a healthcare environment that includes a great deal of technological advances. Please call the office to speak with the CMS compliance officer if you have any additional questions. Every hospital has a privacy officer dedicated to maintaining compliance of HIPAA.

Empfohlen

HIPAA
HIPAAHIPAA
HIPAAPaul D. Friedman, M.A., Ph.D., J.D.
 
Hipaa training
Hipaa trainingHipaa training
Hipaa trainingmmcravin218
 
Hipaa inservice
Hipaa inserviceHipaa inservice
Hipaa inserviceKelly Snyder
 
MHS NOPP - 1 OCT 13
MHS NOPP - 1 OCT 13MHS NOPP - 1 OCT 13
MHS NOPP - 1 OCT 131 SOMDG
 
HIPAA Basics by Brian Fleetham
HIPAA Basics by Brian FleethamHIPAA Basics by Brian Fleetham
HIPAA Basics by Brian FleethamAtlantic Training, LLC.
 
HIPAA INSERVICE 2017
HIPAA INSERVICE 2017 HIPAA INSERVICE 2017
HIPAA INSERVICE 2017 Meg Oser
 
HIPAA Basics
HIPAA BasicsHIPAA Basics
HIPAA BasicsKarna *
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information securityHiggi123
 

Empfohlen

HIPAA
HIPAAHIPAA
HIPAAPaul D. Friedman, M.A., Ph.D., J.D.
 
Hipaa training
Hipaa trainingHipaa training
Hipaa trainingmmcravin218
 
Hipaa inservice
Hipaa inserviceHipaa inservice
Hipaa inserviceKelly Snyder
 
MHS NOPP - 1 OCT 13
MHS NOPP - 1 OCT 13MHS NOPP - 1 OCT 13
MHS NOPP - 1 OCT 131 SOMDG
 
HIPAA Basics by Brian Fleetham
HIPAA Basics by Brian FleethamHIPAA Basics by Brian Fleetham
HIPAA Basics by Brian FleethamAtlantic Training, LLC.
 
HIPAA INSERVICE 2017
HIPAA INSERVICE 2017 HIPAA INSERVICE 2017
HIPAA INSERVICE 2017 Meg Oser
 
HIPAA Basics
HIPAA BasicsHIPAA Basics
HIPAA BasicsKarna *
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information securityHiggi123
 
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)Sanjeev Bharwan
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employeesaminahallen
 
HIPAA
HIPAAHIPAA
HIPAAkgriffin62
 
Corporate Compliance (Physicians)
Corporate Compliance (Physicians)Corporate Compliance (Physicians)
Corporate Compliance (Physicians)justinschreiber
 
HIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowHIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowCompliancy Group
 
Personal Health Records & HIPAA
Personal Health Records & HIPAAPersonal Health Records & HIPAA
Personal Health Records & HIPAAMargery Lynn
 
Advance directive01
Advance directive01Advance directive01
Advance directive01Kelly Snyder
 
2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research Training2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research TrainingCynthia Holland
 
HIPAA Complaince
HIPAA ComplainceHIPAA Complaince
HIPAA ComplainceFarhatParveen10
 
Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Lance King
 
HIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical CenterHIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical CenterAtlantic Training, LLC.
 
Hipaa notice of privacy practices
Hipaa notice of privacy practicesHipaa notice of privacy practices
Hipaa notice of privacy practicesJo Ann Aleman
 
Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)bholmes
 
Presentation hippa
Presentation hippaPresentation hippa
Presentation hippamaggie_Platt
 
HIPAA Audio Presentation
HIPAA Audio PresentationHIPAA Audio Presentation
HIPAA Audio PresentationLisa Shannon, RN, BSN, JD.
 
UNA HIPAA Training 8-13
UNA HIPAA Training 8-13UNA HIPAA Training 8-13
UNA HIPAA Training 8-13University of North Alabama - Academic Affairs
 
HIPAA
HIPAAHIPAA
HIPAAKarna *
 
Welcome to HIPAA Training
Welcome to HIPAA TrainingWelcome to HIPAA Training
Welcome to HIPAA TrainingJonathan Montes
 
HIPAA Compliance
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceManny Oliverez
 
Hippa laws
Hippa lawsHippa laws
Hippa lawsBecky Bauer
 
Confidentiality powerpoint
Confidentiality powerpointConfidentiality powerpoint
Confidentiality powerpointAshford University
 
HIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of HawaiiHIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of HawaiiAtlantic Training, LLC.
 

Weitere ähnliche Inhalte

Was ist angesagt?

HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)Sanjeev Bharwan
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employeesaminahallen
 
Corporate Compliance (Physicians)
Corporate Compliance (Physicians)Corporate Compliance (Physicians)
Corporate Compliance (Physicians)justinschreiber
 
HIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowHIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowCompliancy Group
 
Personal Health Records & HIPAA
Personal Health Records & HIPAAPersonal Health Records & HIPAA
Personal Health Records & HIPAAMargery Lynn
 
Advance directive01
Advance directive01Advance directive01
Advance directive01Kelly Snyder
 
2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research Training2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research TrainingCynthia Holland
 
Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Lance King
 
HIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical CenterHIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical CenterAtlantic Training, LLC.
 
Hipaa notice of privacy practices
Hipaa notice of privacy practicesHipaa notice of privacy practices
Hipaa notice of privacy practicesJo Ann Aleman
 
Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)bholmes
 
Presentation hippa
Presentation hippaPresentation hippa
Presentation hippamaggie_Platt
 
HIPAA
HIPAAHIPAA
HIPAAKarna *
 
Welcome to HIPAA Training
Welcome to HIPAA TrainingWelcome to HIPAA Training
Welcome to HIPAA TrainingJonathan Montes
 
HIPAA Compliance
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceManny Oliverez
 
Hippa laws
Hippa lawsHippa laws
Hippa lawsBecky Bauer
 

Was ist angesagt? (20)

HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
HIPPA COMPLIANCE (SANJEEV.S.BHARWAN)
 
Hippa training for healthcare employees
Hippa training for healthcare employeesHippa training for healthcare employees
Hippa training for healthcare employees
 
HIPAA
HIPAAHIPAA
HIPAA
 
Corporate Compliance (Physicians)
Corporate Compliance (Physicians)Corporate Compliance (Physicians)
Corporate Compliance (Physicians)
 
HIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowHIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to know
 
Personal Health Records & HIPAA
Personal Health Records & HIPAAPersonal Health Records & HIPAA
Personal Health Records & HIPAA
 
Advance directive01
Advance directive01Advance directive01
Advance directive01
 
2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research Training2017 HIPAA Clinical Research Training
2017 HIPAA Clinical Research Training
 
HIPAA Complaince
HIPAA ComplainceHIPAA Complaince
HIPAA Complaince
 
Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016Leading your HIPAA Compliance Culture in 2016
Leading your HIPAA Compliance Culture in 2016
 
HIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical CenterHIPAA Training by Greater Baltimore Medical Center
HIPAA Training by Greater Baltimore Medical Center
 
Hipaa notice of privacy practices
Hipaa notice of privacy practicesHipaa notice of privacy practices
Hipaa notice of privacy practices
 
Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)Sylvia hipaa powerpoint presentation 2010(2)
Sylvia hipaa powerpoint presentation 2010(2)
 
Presentation hippa
Presentation hippaPresentation hippa
Presentation hippa
 
HIPAA Audio Presentation
HIPAA Audio PresentationHIPAA Audio Presentation
HIPAA Audio Presentation
 
UNA HIPAA Training 8-13
UNA HIPAA Training 8-13UNA HIPAA Training 8-13
UNA HIPAA Training 8-13
 
HIPAA
HIPAAHIPAA
HIPAA
 
Welcome to HIPAA Training
Welcome to HIPAA TrainingWelcome to HIPAA Training
Welcome to HIPAA Training
 
HIPAA Compliance
HIPAA ComplianceHIPAA Compliance
HIPAA Compliance
 
Hippa laws
Hippa lawsHippa laws
Hippa laws
 

Ähnlich wie HIPAA

Confidentiality powerpoint
Confidentiality powerpointConfidentiality powerpoint
Confidentiality powerpointAshford University
 
HIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of HawaiiHIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of HawaiiAtlantic Training, LLC.
 
PROTECTED HEALTH INFORMATION_PATIENT PRIVACY
PROTECTED HEALTH INFORMATION_PATIENT PRIVACYPROTECTED HEALTH INFORMATION_PATIENT PRIVACY
PROTECTED HEALTH INFORMATION_PATIENT PRIVACYDenise Masella
 
The importance of confidentiality
The importance of confidentialityThe importance of confidentiality
The importance of confidentialityswilson0050
 
Introduction to HIPAA for Healthcare Professionals by OUP
Introduction to HIPAA for Healthcare Professionals by OUPIntroduction to HIPAA for Healthcare Professionals by OUP
Introduction to HIPAA for Healthcare Professionals by OUPAtlantic Training, LLC.
 
HIPPA-Health Insurance Portability and Accountability Act
HIPPA-Health Insurance Portability and Accountability ActHIPPA-Health Insurance Portability and Accountability Act
HIPPA-Health Insurance Portability and Accountability ActHarshit Trivedi
 
Annual HIPAA Training
Annual HIPAA TrainingAnnual HIPAA Training
Annual HIPAA TrainingCynthia Holland
 
Privacy & security training.pptx
Privacy & security training.pptxPrivacy & security training.pptx
Privacy & security training.pptxQmcleod
 
Privacy & security training.pptx
Privacy & security training.pptxPrivacy & security training.pptx
Privacy & security training.pptxQmcleod
 
Hipaa training
Hipaa trainingHipaa training
Hipaa trainingschmoikel987
 
Patient Privacy and Safety in Healthcare
Patient Privacy and Safety in HealthcarePatient Privacy and Safety in Healthcare
Patient Privacy and Safety in HealthcareQueen Myers
 
Protected health information
Protected health informationProtected health information
Protected health informationmiszkeeta
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information securityHiggi123
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information securityHiggi123
 
Confidentiality & privacy
Confidentiality & privacyConfidentiality & privacy
Confidentiality & privacykendale
 

Ähnlich wie HIPAA (20)

Confidentiality powerpoint
Confidentiality powerpointConfidentiality powerpoint
Confidentiality powerpoint
 
HIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of HawaiiHIPAA Privacy Training by University of Hawaii
HIPAA Privacy Training by University of Hawaii
 
Phi masella
Phi masellaPhi masella
Phi masella
 
PROTECTED HEALTH INFORMATION_PATIENT PRIVACY
PROTECTED HEALTH INFORMATION_PATIENT PRIVACYPROTECTED HEALTH INFORMATION_PATIENT PRIVACY
PROTECTED HEALTH INFORMATION_PATIENT PRIVACY
 
The importance of confidentiality
The importance of confidentialityThe importance of confidentiality
The importance of confidentiality
 
Introduction to HIPAA for Healthcare Professionals by OUP
Introduction to HIPAA for Healthcare Professionals by OUPIntroduction to HIPAA for Healthcare Professionals by OUP
Introduction to HIPAA for Healthcare Professionals by OUP
 
HIPPA-Health Insurance Portability and Accountability Act
HIPPA-Health Insurance Portability and Accountability ActHIPPA-Health Insurance Portability and Accountability Act
HIPPA-Health Insurance Portability and Accountability Act
 
Annual HIPAA Training
Annual HIPAA TrainingAnnual HIPAA Training
Annual HIPAA Training
 
Privacy & security training.pptx
Privacy & security training.pptxPrivacy & security training.pptx
Privacy & security training.pptx
 
Privacy & security training.pptx
Privacy & security training.pptxPrivacy & security training.pptx
Privacy & security training.pptx
 
HIPAA & PHI Training
HIPAA & PHI TrainingHIPAA & PHI Training
HIPAA & PHI Training
 
HIPAA, PHI, & 42 CFR Part 2
HIPAA, PHI, & 42 CFR Part 2HIPAA, PHI, & 42 CFR Part 2
HIPAA, PHI, & 42 CFR Part 2
 
Hippa training v2
Hippa training v2Hippa training v2
Hippa training v2
 
Hipaa training
Hipaa trainingHipaa training
Hipaa training
 
Hippa
HippaHippa
Hippa
 
Patient Privacy and Safety in Healthcare
Patient Privacy and Safety in HealthcarePatient Privacy and Safety in Healthcare
Patient Privacy and Safety in Healthcare
 
Protected health information
Protected health informationProtected health information
Protected health information
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information security
 
Mandatory hippa and information security
Mandatory hippa and information securityMandatory hippa and information security
Mandatory hippa and information security
 
Confidentiality & privacy
Confidentiality & privacyConfidentiality & privacy
Confidentiality & privacy
 

Mehr von Chesapeake Medical Staffing

Mehr von Chesapeake Medical Staffing (9)

Emergency Preparedness
Emergency Preparedness Emergency Preparedness
Emergency Preparedness
 
Safety and Hazard Communication
Safety and Hazard Communication Safety and Hazard Communication
Safety and Hazard Communication
 
Violence and Abuse
Violence and Abuse Violence and Abuse
Violence and Abuse
 
Cultural Diversity
Cultural Diversity Cultural Diversity
Cultural Diversity
 
Infection Control
Infection Control Infection Control
Infection Control
 
Bloodborne Pathogens
Bloodborne PathogensBloodborne Pathogens
Bloodborne Pathogens
 
Airborne Pathogens
Airborne Pathogens Airborne Pathogens
Airborne Pathogens
 
Age Specific Guidelines
Age Specific Guidelines Age Specific Guidelines
Age Specific Guidelines
 
2013 JCAHO Patient Safety Goals
2013 JCAHO Patient Safety Goals2013 JCAHO Patient Safety Goals
2013 JCAHO Patient Safety Goals
 

KĂźrzlich hochgeladen

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsRoshan Dwivedi
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel AraĂşjo
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 

KĂźrzlich hochgeladen (20)

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 

HIPAA

  • 1. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA JCAHO Mandatory Annual Competency Chesapeake Medical Staffing
  • 2. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA Initiative Health care has always tried to maintain confidentiality, but efforts have not always been successful. Public trust in health care has eroded and the health care industry needs to work hard to regain that trust. Health care institutions and providers have worked to make sharing of medical information easier to help facilitate care and payment.
  • 3. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA The Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 to cover three specific areas: 1. Insurance portability or the ability to move to another employer and be certain that your insurance will not be denied 2. Fraud enforcement and accountability 3. Administrative simplification The first two areas have been active since 1996, but it took until April of 2003 to enact administrative simplification.
  • 4. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Administrative Simplification Administrative simplification refers to the guidelines that impact healthcare providers in the communications with other providers, families, friends, and the media. It includes written, verbal, phone, fax, and email communications.
  • 5. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Impact on the Caregiver The essential parts of the administrative simplification section of the law have to do with: • consents • authorization • patient privacy • confidentiality • security of patient The law directs all health care providers and facilities to have standards in place to protect patient information and to educate staff on their responsibilities in this important area.
  • 6. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPPA is designed to:  Assure health insurance portability  Reduce health care fraud and abuse  Guarantee integrity and confidentiality of health information  Improve the operations of health care systems and reduce administrative costs
  • 7. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Privacy vs. Confidentiality Privacy is the individual’s right to decide who, when, and how any information about him or herself is disclosed. Confidentiality is the obligation of another to maintain the person’s privacy.
  • 8. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Consents and Authorizations Upon entering the healthcare facility, the patient is given information about how the organization will protect the privacy of the patient and what types of information will be shared and under what circumstances (generally related to the current care of the patient). This is called the Notice of Privacy Practices and is required by HIPAA to be given to all patients.
  • 9. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of HIPAA Privacy LAW HIPAA is Federal Law and compliance is mandatory. Patient information must be protected through conscious effort at all times no matter where you are! The ONLY exception is when information is shared in order to provide care, treatment and payment for services.
  • 10. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Consequences of NOT Protecting Patient Confidentiality There are both civil and criminal penalties associated with NOT following the HIPAA guidelines about releasing patient information. The penalties vary based on if the information was inadvertently or deliberately released, as well as the type of information released. Penalties and fines may be up to $250,000 and ten years imprisonment.
  • 11. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Shared Information Under HIPAA, a facility may share or disclose patient information for the following purposes: • Treatment of the patient (e.g. consulting with other healthcare providers on diagnosis and treatment) • Obtaining payment from the patient’s health plan • Operational requirements (e.g. quality improvement activities or peer review) • Complying with legally mandated reporting or disclosure The patient must provide consent or further authorize any other release of information for any other purpose. The facility must also make a good faith effort to obtain a written acknowledgement that the patient received the Privacy Notice.
  • 12. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Defining HIPAA Terms: • What is Portability? Portability ensures that as people move from one health plan to another they will have continuity of coverage and will not be denied coverage under pre-existing clauses. • What is Accountability? In accordance with HIPAA, accountability means an increase in the government’s fraud enforcement authority.
  • 13. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Covered Entities Covered entities includes hospitals, health care providers, third party payers, such as insurance companies, and anyone who processes health information. Therefore, the term “covered entities” includes everyone that uses, accesses or interacts with patients in any way. These interactions may be formal or informal, from those of direct care givers to those that enter a patient room simply to clean or deliver items.
  • 14. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Protected Health Information (PHI) Protected Health Information (PHI) is a new term that will be used with increasing frequency in facilities where you work. PHI refers to personal patient information that can be used to identify the patient, sometimes even inadvertently. The patient now has the right to direct when, why, and to whom PHI may be released. For instance, in the past, aggregated patient information may have been collected for research, quality improvement, or other purposes. Even though the patient’s name would be omitted, the patient may still be identifiable through specific data including date of procedure, type of procedure, gender, or any number of other details. The new bill allows patients much more control over PHI.
  • 15. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Protecting PHI • Information that relates to a patient’s health cannot be used unless authorized by either the patient or someone acting on the patient’s behalf, or unless permitted by regulation. • Access to information is limited to only those individuals who need the information for a legitimate purpose. • HIPAA ensures that an individual’s health information may only be used for health purposes.
  • 16. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of What Kind of Information is Protected? Patient information that is protected includes, but is not limited to: • the patient’s name, address & telephone number • age, diagnosis, surgery, date of procedure, and medications Beyond this, additional information that is protected includes any medical history information, results of physical examinations, laboratory and other diagnostic results, billing records and claim forms. Any information that could be used to identify the patient is protected under HIPAA. It is important to know that this information is protected in any form, be it written, electronic, or verbal.
  • 17. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of How Does This Law Affect Our Discussion of Patient Issues? Although there are persons with whom you need to communicate about a specific patient, be certain to consider the following: • Does the person you are communicating with “need to know” the information about the patient? In other words, is there a medical necessity to discuss the patient? • Are you discussing the patient out of the hearing of others? • Without using a patient name, are you still discussing the patient in a way that others could discern who you are speaking about? For example, perhaps there is only one male on your unit, so if you use the word “he,” others will know who you are discussing.
  • 18. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Discussing Patient Information with Family and Personal Representatives A personal representative is defined as any person who is legally authorized to act on behalf of the patient. This can be someone with a legal document, such as a general power of attorney or a more limited medical power of attorney, or simply someone who has the authority to act on behalf of the patient. PHI can be shared with a personal representative.
  • 19. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Allowed Disclosure HIPAA allows disclosure of PHI to spouses, parents, legal guardians, and others involved in a patient’s care without obtaining the patient’s formal, written permission. If you are in a patient room and need to discuss their care or treatment when others are present, simply ask the patient if there is any objection.
  • 20. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Using and Sharing Information Most likely, all the personal information that you use and share in your daily duties is covered under HIPAA for “treatment” purposes. These include: • Discussing diagnosis and treatment with other nurses and physicians. • Performing diagnostic tests and providing this information to other providers. • Providing laboratory samples or imaging tests to those who perform diagnostics on them. • Referring a patient to another provider or facility, and discussing the treatment and/or diagnosis. • Telephone prescription information to a pharmacy.
  • 21. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Requests for Access to Records Each facility will determine the specific policies but the following will be routine: • Clear identification that the person requesting the medical record is either the patient or has the correct authorization to view the record. • Only the parts of the record included in the authorization can be viewed. • The patient may request changes to the record and the facility and parties involved must respond to the request within a preset time frame. Note that this does not imply that the record must be changed, only that the patient’s request has a response. • Clear guidelines exist as to which staff members may have access to records and for what reasons.
  • 22. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Faxes HIPAA also covers fax communications with specific patient information. Although each facility will have different specific policies, general guidelines will most likely include the following: • Locating fax machines in private and secure areas, away from patients and the public. • Fax cover sheets will include disclaimer to indicate what to do if sent inadvertently to the wrong number. • Whether faxes can or cannot be sent during “off hours” when the receiving fax papers will not be picked up immediately. • Protection of “sent” faxes left unattended on the fax machine.
  • 23. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Computers Computers are now commonplace in hospital units and include a vast amount of patient information that must be secured. Be vigilant about your computer use, following these guidelines: • Computers should be set up so that the screens are not easily visible to the patient or visitors. • The computer user should “log off” when finished with the computer, so the screen is not left “on” and “visible” to others. • Each computer user should have their own password so that each person using the computer and the screens they go to can be identified. • Do not share your password with others.
  • 24. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Confidentiality The mandates of HIPAA require each of us to: • maintain confidentiality of computer access codes • position computer screens away from public access or view • log off computers when you have finished.
  • 25. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Audit of Computer Access • Audits may be conducted on a regular basis to identify inappropriate access to medical record information. • Audits may be conducted on all records for patients who are hospital employees, medical staff, admitted under an alias or recognized as high profile. • Random samples of records may be audited on a regular basis. • This procedure is outlined in hospital policy and is overseen by the Privacy Officer.
  • 26. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Information Released to Family/Friends and/or the Press If the patient elects to be listed in a facility patient directory, the information in the directory may be released to family, friends, or the press. Other information must come from the patient or another clearly identified person based on the specific situation and the facility policy.
  • 27. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of When NO Information is Released In general, any patient receiving care for substance abuse, psychiatric disorder, HIV, pregnancy, sexual abuse, or rape is treated with an even greater level of confidentiality. Confirmation of the patient’s treatment is generally prohibited. This means that if a call is received asking about a particular patient, no comment should be made as to whether the patient is even seeking treatment or being treated. Check with the facility’s HIPAA policy for exact terminology. Additionally, a patient may request to NOT be in the patient directory and the same standard would be in place. This is a critical feature and each facility will have very specific standards for you to follow (http://www.hipaa.org, 2003).
  • 28. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Who Must Comply with HIPAA? HIPAA’s privacy and security provisions apply to all members of the workforce of a health care facility. This means all employees, such as nurses and physicians, and administrative, clerical, food service, or environmental services staff, as well as volunteers or any others under the facility’s direct supervision, must adhere to HIPAA policies.
  • 29. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Unauthorized Disclosures Ensuring the security of patient information relies on your diligence. Unauthorized disclosures of protected information can occur if: • You fail to ensure information you are sending is going to someone who is authorized to receive that information • You neglect to review a patient’s record to find restriction on the use of their information • You hear discussions occurring in non-secure locations that disclose patient information If you are aware of an incident that may have resulted in an unauthorized disclosure, you should report it immediately. A facility may have a method to report unauthorized disclosures in a confidential manner.
  • 30. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Incidental Exposure Incidental exposure can happen even when everything possible has been done to avoid it. It is a disclosure that cannot be reasonably prevented, is limited in nature, and occurs as a by-product of otherwise permitted use or disclosure. An example of incidental exposure: a patient walking down the hall accidentally hears part of a conversation that takes place while a therapist speaks to a physician.
  • 31. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Patient Rights Patients have rights protected under HIPAA legislation which include the: • right of access to copies of their medical record • right to request the “Amendment of the Medical Record” • right to request restriction of uses and disclosures • right to request confidential communication
  • 32. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Required Reporting If you suspect there has been an actual or attempted privacy breach to any form or protected information, whether electronic, paper or recorded, you are required to report it to the Privacy Officer for the involved facility.
  • 33. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Policy Review It is recommended all CMS Associates review the following policies at the facilities you frequently work: confidentiality disclosure privacy patient rights chart audits patient’s access to their PHI
  • 34. This material is the private property of Chesapeake Medical Staffing. Any duplication or use by anyone other than an employee of Conclusion As of 2003, HIPAA is a mandated law. All health care facilities and providers are obligated to comply. All CMS associates need to be knowledgeable of the contents and ramifications of this law. Although you may see variations in policies from facility to facility, you will recognize that the overall intent is to improve the protection of patient confidentiality in a healthcare environment that includes a great deal of technological advances. Please call the office to speak with the CMS compliance officer if you have any additional questions. Every hospital has a privacy officer dedicated to maintaining compliance of HIPAA.