Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Defense Health Agency Privacy and Civil Liberties Office HIPAA Privacy Board Overview August 6, 2015.

Published byDouglas O’Neal’ Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Defense Health Agency Privacy and Civil Liberties Office HIPAA Privacy Board Overview August 6, 2015."— Presentation transcript:

1 1 Defense Health Agency Privacy and Civil Liberties Office HIPAA Privacy Board Overview August 6, 2015

2 2 ∎ Provide an overview of the DHA Privacy and Civil Liberties Office (Privacy Office) Privacy Board's function and operations, including:  Establishment of the DHA Privacy Board and Regulatory Requirements  Difference between Common Rule and the HIPAA Privacy Rule  Types of Privacy Rule Reviews DHA Privacy Board Overview Objectives The purpose of this presentation is to:

3 3 DHA Privacy Board Overview The DHA Privacy Board ∎ HIPAA compliance reviews and documentation are required by an IRB or Privacy Board, set up in accordance with the HIPAA regulations, when PHI is used and/or disclosed for research purposes ∎ DHA does not have an IRB; therefore, the DHA Privacy Office established a HIPAA Privacy Board, known as the DHA Privacy Board ∎ The DHA Privacy Board is critical for DHA’s compliance with the HIPAA Privacy Rule and DoD 6025.18-R ∎ The DHA Privacy Board accepts and relies on HIPAA reviews conducted by DoD or outside IRBs – provided that the IRB’s HIPAA-required documentation meets regulatory requirements

4 4 DHA Privacy Board Overview The Difference Between the Common Rule and the HIPAA Privacy Rule

5 5 ∎ Required Representations for Research on Decedent’s Information  Use or disclosure of PHI solely for research on decedents ∎ Required Representations for Review Preparatory to Research  Use or disclosure of PHI solely for preparing a research protocol or for similar purposes  Researchers agree not to remove the PHI from MHS in the course of the review ∎ Studies that must obtain HIPAA Authorizations ∎ Studies that Require a Waiver of Authorization or an Altered Authorization DHA Privacy Board Overview Four Types of DHA Privacy Board Reviews

6 6 ∎ Researchers are required to obtain a written and signed HIPAA Authorization from every participant in the research study ∎ Authorizations must contain all core elements and required statements set forth in the HIPAA Privacy Rule and DoD 6025.18-R ∎ PIs are required to initial and sign a certification assuring  That the signed authorization of each research participant whose PHI is used or disclosed will be maintained electronically and/or in hard copy for a period of six years from the date the Authorization expires; and,  That any and all of the signed Authorizations will be provided to DHA immediately upon request DHA Privacy Board Overview HIPAA Authorizations – Presumed to be Required

7 7 ∎ Where it is impossible or impracticable to obtain a written Authorization from each and every research participant ∎ Two types of waivers  Full: waiving authorizations for the entire study  Partial: waiving authorizations for part of the project (e.g., for recruiting or screening potential research participants), thereafter PHI is no longer needed or Authorizations can be obtained at that point from each research participant ∎ Documentation by an IRB or Privacy Board of approval of a waiver must contain all required criteria set forth in the HIPAA Privacy Rule, 45 CFR 164.512(i)(2) and DoD 6025.18-R, C.7.9.2 DHA Privacy Board Overview Waiver of HIPAA Authorization

8 8 ∎ Appropriate when a research study requires a modification or removal of some, but not all, required elements from an Authorization (e.g., to remove the core element that describes each purpose of the requested use or disclosure where the identification of the specific study would affect the results of the project) ∎ Documentation by an IRB or Privacy Board of approval of an alteration to the Authorization must contain all required criteria set forth in the HIPAA Privacy Rule, 45 CFR 164.512(i)(2) and DoD 6035.18-R, C.7.9.2 ∎ An approved alteration only applies to the study for which it is requested and cannot be used for any subsequent use or disclosure of PHI in a different project DHA Privacy Board Overview Altered Authorization

9 9 ∎ DHA Privacy Board approvals document HIPAA compliance in support of a specific research-related DSA ∎ When a DSA is modified, the DHA Privacy Board is contacted and will email the PI to determine if the study has changed and if the responses or representations in any documents/templates approved or accepted by the DHA Privacy Board remain the same.  Any substantial changes in the previous information reviewed and relied upon by the DHA Privacy Board will require further review in support of a modification ∎ When a DSA is extended or renewed, the applicant certifies that there have been no changes to the study, and thus it does not need DHA Privacy Board review again DHA Privacy Board Overview Modifications, Extensions and Renewals

10 10 ∎ When a research-related DSA expires or is otherwise terminated, any related Privacy Board approvals will also expire or be terminated ∎ When a research-related DSA expires or is otherwise terminated and a new DSAA is submitted, the PI is required to complete a new submission to the Board DHA Privacy Board Overview Impact of Termination or Expiration of a DSA

11 11 DHA Privacy Board Overview QUESTIONS

12 12 ∎ Privacy Office Web site: http://www.health.mil/Military-Health-Topics/Privacy-and- Civil-Liberties/Privacy-Board ∎ Email DHAPrivacyBoard@mail.mil for HIPAA research related questionsDHAPrivacyBoard@mail.mil DHA Privacy Board Overview Additional Resources

Download ppt "1 Defense Health Agency Privacy and Civil Liberties Office HIPAA Privacy Board Overview August 6, 2015."

Similar presentations

SIMPLIFYING PRIVACY: HIPAA PRIVACY STANDARDS AND RESEARCH Angela M. Vieira General Counsel Childrens Hospital and Health Center June 5, 2004.

SIMPLIFYING PRIVACY: HIPAA PRIVACY STANDARDS AND RESEARCH Angela M. Vieira General Counsel Childrens Hospital and Health Center June 5, 2004.
All you always wanted to know about Assurances Office of Research Protections (ORP) U.S. Army Medical Research and Materiel Command (USAMRMC) Fort Detrick,

All you always wanted to know about Assurances Office of Research Protections (ORP) U.S. Army Medical Research and Materiel Command (USAMRMC) Fort Detrick,
Open Library June 4, 2004 Informed Consent Process and Federal Regulations That Must Be Met to Waive Informed Consent Tracey Craddock Regulatory Compliance.

Open Library June 4, 2004 Informed Consent Process and Federal Regulations That Must Be Met to Waive Informed Consent Tracey Craddock Regulatory Compliance.
HIPAA Privacy Rule “Standards for Privacy of Individually Identifiable Health Information” 45 CFR 160 and 164* *http://www.hhs.gov/ocr/combinedregtext.pdf.

HIPAA Privacy Rule “Standards for Privacy of Individually Identifiable Health Information” 45 CFR 160 and 164* *
1 The HIPAA Privacy Rule and Research This presentation will probably involve audience discussion, which will create action items. Use PowerPoint to keep.

1 The HIPAA Privacy Rule and Research This presentation will probably involve audience discussion, which will create action items. Use PowerPoint to keep.
NATIONAL FORUM ON YOUTH VIOLENCE PREVENTION: HIPAA PRIVACY RULE CONSIDERATIONS November 1, 2011 Iliana L. Peters, JD, LLM HHS Office for Civil Rights.

NATIONAL FORUM ON YOUTH VIOLENCE PREVENTION: HIPAA PRIVACY RULE CONSIDERATIONS November 1, 2011 Iliana L. Peters, JD, LLM HHS Office for Civil Rights.
ICF & HIPAA waivers Human Subject Protection Office UConn Health Center Monika Haugstetter, MHA, RN, MSN & HSPO/IRB Staff.

ICF & HIPAA waivers Human Subject Protection Office UConn Health Center Monika Haugstetter, MHA, RN, MSN & HSPO/IRB Staff.
HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.

HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.
National Cancer Institute Cancer Therapy Evaluation Program (CTEP) presents: How to Obtain Protected Health Information (PHI) from an Outside Healthcare.

National Cancer Institute Cancer Therapy Evaluation Program (CTEP) presents: How to Obtain Protected Health Information (PHI) from an Outside Healthcare.
RESEARCH COMPLIANCE Agenda 1. No Destruction of local research documents after scanning 2. Training for shipping biological samples/specimens 3. Regulatory.

RESEARCH COMPLIANCE Agenda 1. No Destruction of local research documents after scanning 2. Training for shipping biological samples/specimens 3. Regulatory.
HIPAA Requirements for Patient Oriented Research

HIPAA Requirements for Patient Oriented Research
Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.
Implementation of Privacy Board Reviews at PCMC Mary Thomason, Intermountain Healthcare Privacy Board Chair.

Implementation of Privacy Board Reviews at PCMC Mary Thomason, Intermountain Healthcare Privacy Board Chair.
University of Miami1 HIPAA Survival Skills An Introduction to HIPAA and Research University of Miami Human Subjects Research Office October 31, 2006 Evelyne.

University of Miami1 HIPAA Survival Skills An Introduction to HIPAA and Research University of Miami Human Subjects Research Office October 31, 2006 Evelyne.
Recently Issued OHRP Documents: Guidance on Subject Withdrawal and Draft Revised FWA Secretary’s Advisory Committee on Human Research Protections October.

Recently Issued OHRP Documents: Guidance on Subject Withdrawal and Draft Revised FWA Secretary’s Advisory Committee on Human Research Protections October.
Exempt Research Mary Banks BS, BSN IRB Director CRC IRB and BUMC IRB.

Exempt Research Mary Banks BS, BSN IRB Director CRC IRB and BUMC IRB.
IRB 101: Informed Consent Columbia University Medical Center IRB September 22, 2005.

IRB 101: Informed Consent Columbia University Medical Center IRB September 22, 2005.
1 HIPAA, Researchers and the IRB: Part Two Alan Homans, IRB Chair and Nancy Stalnaker, IRB Administrator.

1 HIPAA, Researchers and the IRB: Part Two Alan Homans, IRB Chair and Nancy Stalnaker, IRB Administrator.
HIPAA, Researchers and the IRB Alan Homans, IRB Chair and Nancy Stalnaker, IRB Administrator.

HIPAA, Researchers and the IRB Alan Homans, IRB Chair and Nancy Stalnaker, IRB Administrator.
CUMC IRB Investigator Meeting November 9, 2004 Research Use of Stored Data and Tissues.

CUMC IRB Investigator Meeting November 9, 2004 Research Use of Stored Data and Tissues.

Similar presentations

Ads by Google