HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services.

Slides:



Advertisements
Similar presentations
Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance.
Advertisements

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
HIPAA AWARENESS TRAINING
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
Lesson 1 Overview of the 837 and Section 1: Overview Introduction How did we get to where we are now? What do electronic transactions mean to you.
1 HIPAA Security Final Rule Overview April 9, 2003Karen Trudel.
"I haven't heard of HIPAA, but I can hip hop.". Some Tips & Updates for HME/Rehab Providers HIPAA Security Standards Final Rule Some Tips & Updates for.
HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
HIPAA Administrative Simplification Final Rule for Transactions Code Sets Stanley Nachimson
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
Presents: Weekly HIPAA Teleconference Revised
Project Status January HIPAA 5010 CMS Updates CMS recently released a communication which outlined a “contigency” window for 5010 compliance.
Reviewing the World of HIPAA Stephanie Anderson, CPC October 2006.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
Health Insurance Portability and Accountability Act (HIPAA)
Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.
HIPAA TRANSACTIONS HIPAA Summit IV 2002 UPDATE. HHS Office of General Counsel l Donna Eden l Office of the General Counsel l Department of Health and.
1 HIPAA Security Overview Centers for Medicare & Medicaid Services (CMS)
IT’S OFFICIAL: GOVERNMENT AUDITING OF SECURITY RULE COMPLIANCE Nancy Davis, MS, RHIA Director of Privacy/Security Officer, Ministry Health Care & Catherine.
What is HIPAA? H ealth I nsurance P ortability and A ccountability A ct (Kennedy-Kassenbaum Bill) nAdministrative Simplification –Privacy –Transactions.
Presented by Joan Kossow Data Compliance Manager The Changing Face of Claims Processing &
“ Technology Working For People” Intro to HIPAA and Small Practice Implementation.
PricewaterhouseCoopers Transaction Compliance Date Extension & Privacy Standards NPRM Audioconference April 19, 2002 HIPAA Administrative Simplification.
Copyright Fleisher & Associates A HIPAA PRIMER FOR PUBLIC HEALTH PEOPLE CPHA-N Conference 2003 January 30, 2003 Presented by: Steven M. Fleisher,
Health Insurance Portability and Accountability Act (HIPAA)
HIPAA – Developing an Understanding
Copyright ©2011 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved. Health Information Technology and Management Richard.
Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.
HIPAA TRANSACTIONS 2002 UPDATE. HHS Office of General Counsel l Donna Eden l Office of the General Counsel l Department of Health and Human Services.
HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.
Understanding HIPAA (Health Insurandce Portability and Accountability Act)
Eliza de Guzman HTM 520 Health Information Exchange.
The Culture of Healthcare Privacy, Confidentiality, and Security Lecture d This material (Comp2_Unit9d) was developed by Oregon Health and Science University,
Security and Privacy Workgroup SMALL PRACTICE IMPLEMENTATION WEDI/SNIP Security and Privacy Workgroup White Paper Version 2.0 – Dated April 2004.
1 HIPAA Administrative Simplification Standards Yesterday, Today, and Tomorrow Stanley Nachimson CMS Office of HIPAA Standards.
HIPAA Transactions Testing Update Kepa Zubeldia, M.D. September 13, 2004.
HIPAA Health Insurance Portability and Accountability Act of 1996.
Health Insurance portability and Accountability Act (HIPAA)‏
Facilitators: Kit Cairns, Dean Health Greg Margrett, Netwerkes/Ingenix.
Standard Unique Health Identifier for Health Care Providers April 9, th Annual HIPAA Summit Gail Kocher Highmark.
Confidential 1 HIPAA Compliance at Blue Cross Blue Shield of Minnesota: A Case Study Tim Wittenburg Director of Corporate Architecture & Data Management.
HIPAA History March 3, HIPAA Ruling Health Insurance Portability Accountability Act Health Insurance Portability Accountability Act Passed by Congress.
HIPAA Security Final Rule Overview
Copyright © 2015 by Saunders, an imprint of Elsevier Inc. All rights reserved. Chapter 3 Privacy, Confidentiality, and Security.
HIPAA Health Insurance Portability and Accountability Act.
1 © CHC Healthcare Solutions 2004 All rights reserved HIPAA Issues for Counties – PHI, Prisoners, Disaster Preparedness and Homeland Security March 9,
HIPAA Security Final Rule Overview for HIPAA Summit West June 5, 2003Karen Trudel.
Copyright The Kearney Group LLC All Rights Reserved 1 5th National HIPAA Summit JCAHO and NCQA and HIPAA Business Associates Friday, November 1,
ICD-10 Operational and Revenue Cycle Impacts Wendy Haas, MBA, RN Dell Services Healthcare Consulting.
The Health Insurance Portability and Accountability Act of 1996 “HIPAA” Public Law
Provider Perspective on Medicare’s COB Edits By George Arges.
HIPAA: So You Think You’re Compliant September 1, 2011 Carolyn Heyman-Layne, J.D.
1 HIPAA’s Impact on Depository Financial Institutions 2 nd National Medical Banking Institute Rick Morrison, CEO Remettra, Inc.
In-depth look at the security risk analysis
Electronic Data Interchange (EDI)
HIPAA PRIVACY AWARENESS, COMPLIANCE and ENFORCEMENT
Disability Services Agencies Briefing On HIPAA
The Centers for Medicare & Medicaid Services
The Centers for Medicare & Medicaid Services
HIPAA Security Standards Final Rule
National Congress on Health Care Compliance
THE 13TH NATIONAL HIPAA SUMMIT HEALTH INFORMATION PRIVACY & SECURITY IN SHARED HEALTH RECORD SYSTEMS SEPTEMBER 26, 2006 Paul T. Smith, Esq. Partner,
HIPAA Compliance Services CTG HealthCare Solutions, Inc.
HIPAA Compliance Services CTG HealthCare Solutions, Inc.
Transaction, Code Sets and Identifier Update
Presentation transcript:

HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services

Vision of HIPAA Single set of information for all payers Standard, easily understood coding rules Standard responses from payers Little, if any human intervention for billing, remittance, posting, eligibility inquiries, coordination of benefits Secure data, well understood privacy protection

Vision of HIPAA Additional patient medical records information easily (and securely) exchanged between Entities easily and clearly identified in transactions How have we done?

Brief History Law – 1996 Final Rules Transactions – 2000 (finally effective October 2003) Privacy – 2000 (effective April 2003) Employer ID – 2002 Transactions Modifications – 2003 Security – 2003 National Provider ID -2004

Transactions Status Effective October 16, 2003 CMS Contingency Plan Guidance on enforcement published in July 2003 CMS/Medicare However, entities should be compliant

Transactions Status Enforcement in Place Complaint based Aim is to get to compliance Will look at good faith efforts Web site available

Complaint statistics Over 200 Transaction/Code Set Complaints Approximately 58 remain open Most regarding claim payment Adverse impact to cash flow Small providers against health plans and clearinghouse. 5 corrective action plans submitted

Where is the Industry Today? Many covered entities are still operating under contingency plans Many moving into compliance Medicare rate above 80% for claims Why not compliant? New data elements Reliance on vendors Started implementation too late

What Will/Should be Happening? Contingency plans will end Entities must be compliant, or payments may stop Need to embrace other transactions – automated eligibility, remittance, claims status Need to participate in standards revision process Medicare began slow pay in July 2004 – non-compliant transactions are treated as paper

Some Positive Impacts Realization that standards impact business process Industry getting together to implement Different provider groups coming forward to participate in standards

What Should You Be Doing? Be compliant – follow the HIPAA rules Keep aware of future HIPAA standards rules Participate in industry organizations – make your voice heard

Next on the Horizon Security National Provider ID

Regulation Dates Published February 20, 2003 Effective Date April 21, 2003 Compliance Date: April 21, 2005 for all covered entities except small health plans April 21, 2006 for small health plans (as HIPAA requires)

General Requirements ( (a)) Ensure Confidentiality (only the right people see it) Integrity (the information is what it is supposed to be – it hasn’t been changed) Availability (the right people can see it when needed)

General Requirements Applies to Electronic Protected Health Information That a Covered Entity Creates, Receives, Maintains, or Transmits

General Requirements Protect against reasonably anticipated threats or hazards to the security or integrity of information Protect against reasonably anticipated uses and disclosures not permitted by privacy rules Ensure compliance by workforce

Regulation Themes Scalability/Flexibility Covered entities can take into account: Size Complexity Capabilities Technical Infrastructure Cost of procedures to comply Potential security risks

Regulation Themes Technologically Neutral What needs to be done, not how Comprehensive Not just technical aspects, but behavioral as well

Standards Standards are required Implementation specifications provide more detail and can be either required or addressable.

National Provider Identifier Final Rule Published January 23 rd Adopt the standard for a single identifier for every provider No need for different identifiers for different health plans

NPI: Important Dates Final Rule published on January 23, 2004 Effective date is May 23, 2005 Providers can begin applying for NPIs Compliance dates are: May 23, 2007 for all covered entities except small health plans May 23, 2008 for small health plans By these dates, covered entities must use NPIs to identify providers in standard transactions.

CMS and Other Resources CMS HIPAA Web Site – FAQs Guidance Documents box Teleconferences

Other Resources NIST – Crosswalk document published for public comment WEDI/SNIP – Security white papers

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.