Vendor and Clearinghouse Requirements for HIPAA Compliance HIPAA Summit Audio Conference Presented By: Steven S. Lazarus, PhD, FHIMSS Boundary Information.

Slides:

Advertisements

Similar presentations

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

Advertisements

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

© 2009 The McGraw-Hill Companies, Inc. All rights reserved. 1 McGraw-Hill Chapter 1 The Goal of HIPAA: Administrative Simplification HIPAA for Allied Health.

HIPAA Vendor Conference Greg Moody Executive Assistant for Health and Human Services Office of Ohio Governor Bob Taft.

HIPAA Administrative Simplification Final Rule for Transactions Code Sets Stanley Nachimson

Presents: Weekly HIPAA Teleconference Revised

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

H IPAA PRIVACY WORK GROUP FOR EYE BANKS EBAA HIPAA PRIVACY WORK GROUP Christina W. Strong, Esq., Facilitator.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

Are you ready for HIPPO??? Welcome to HIPAA

HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.

Improving Efficiency and Increasing Patient Satisfaction by Leveraging HIPAA Standards, Including Privacy and Transactions and Data Code Sets Presented.

2 HIPAA, HITECH, and Medical Records. Learning Outcomes When you finish this chapter, you will be able to: 2.1Discuss the importance of medical records.

HIPAA TRANSACTIONS HIPAA Summit IV 2002 UPDATE. HHS Office of General Counsel l Donna Eden l Office of the General Counsel l Department of Health and.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.

HIPAA Health Insurance Portability & Accountability Act of 1996.

1 VUMC Confidentiality Policy and HIPAA Implications for Clinical Research General Clinical Research Center Skills Workshop March 2, 2007 Gaye Smith Privacy.

HIPAA PRIVACY AND SECURITY AWARENESS.

Approaches to Implementation of the Transactions and Codes Sets Addendum Presented by: Steven S. Lazarus, PhD, FHIMSS President Boundary Information Group.

Health Insurance Portability and Accountability Act (HIPAA)

Update on Federal HIT Legislation Kirsten Beronio Mental Health America.

Making Health Savings Accounts Work: Interoperable with Health Plans, Providers and Patients Steven S. Lazarus, PhD, CPEHR, CPHIT, FHIMSS September 27,

STEVEN S. LAZARUS, PHD, CPEHR, CPHIT, FHIMSS PRESIDENT, BOUNDARY INFORMATION GROUP AUGUST 20, – The Twelve Year Journey is Not Over.

HIPAA Colloquium at Harvard University, August 23, 2002 Strategies in Completing the ASCA Compliance Extension Form Presented by: Margret Amatayakul, RHIA,

HIT Standards Committee Privacy and Security Workgroup: Initial Reactions Dixie Baker, SAIC Steven Findlay, Consumers Union June 23, 2009.

Transactions and Code Sets and the National Provider Identifier (NPI) By: Steven. Lazarus, PhD, CPEHR, CPHIT, FHIMSS Boundary Information Group December.

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

Copyright Boundary Information Group 2002 HIPAA CASE STUDIES: A SURVEY OF 10 HEALTH SYSTEMS’ HIPAA COMPLIANCE EFFORTS Steven S. Lazarus, PhD, FHIMSS President,

Vendor Relations Policy. Why Is There A Policy? The Patient Protection and Affordable Care Act was signed into law March 23, The new law contains.

Organizational and Legal Issues -- Developing organization and governance models for HIE Day 2 -Track 5 – SECOND SESSION – PRIVACY AND SECURITY CONNECTING.

The Fifth National HIPAA Summit – October 30, 2002 What to Do Now: Operational Implementation of HIPAA Privacy and Security Training Presented by: Steven.

HIPAA Vendor Readiness Siemens/HDX Audio Telecast July 24, 2002.

Transactions, Code Sets and Identifier Update Steven S. Lazarus, PhD, CPEHR, CPHIT, FHIMSS President, Boundary Information Group April 11, 2006.

Health Information Technology Policy and The States State Coverage Initiatives Meeting Albuquerque, New Mexico Ree Sailors NGA, Center for Best Practices.

NIST / URAC / WEDi Health Care Security Workgroup Presented by: Andrew Melczer, Ph.D. Illinois State Medical Society.

Transactions and Code Sets and the National Provider Identifier (NPI) Steven S. Lazarus, PhD, CPEHR, CPHIT, FHIMSS September 25, 2006.

Standard Unique Health Identifier for Health Care Providers April 9, th Annual HIPAA Summit Gail Kocher Highmark.

HIPAA Certified LLC 1 6th National HIPAA Summit JCAHO and NCQA and HIPAA Business Associates Friday, March 28, 2003.

HIPAA History March 3, HIPAA Ruling Health Insurance Portability Accountability Act Health Insurance Portability Accountability Act Passed by Congress.

HIT Policy Committee NHIN Workgroup HIE Trust Framework: HIE Trust Framework: Essential Components for Trust April 21, 2010 David Lansky, Chair Farzad.

A NATIONAL HIPAA SUMMIT AUDIOCONFERENCE Davis Wright Tremaine LLP Legal Requirements For Vendor And Clearinghouse HIPAA Compliance; Business Associate.

March 19, 2003 Audioconference Approaches to Compliance with the HIPAA Privacy and Security Workforce Training Requirements Presented by: Steven S. Lazarus,

HIPAA Transactions and Code Sets U.S. Healthcare Industry at a Tipping Point Steven S. Lazarus, PhD, CPHIT, CPEHR, FHIMSS April 7, :30 pm –

ASCA Transaction Extension and Resources to Help Extending Your Compliance Deadline for Transactions & Code Sets April 19, 2002 Steven S. Lazarus, PhD,

Extending Your Compliance Deadline for Transactions & Codes Sets Developing your Compliance Plan for a Smoother Transition and to Avoid Potential Medicare.

The Health Insurance Portability and Accountability Act of 1996 “HIPAA” Public Law

April 14, 2003 – HIPAA Privacy Audioconference The Importance of April 14, 2003: Where you should be regarding HIPAA privacy policies and procedures and.

The Fourth National HIPAA Summit, April 26, 2002 A SURVEY OF 10 HEALTH SYSTEMS’ HIPAA COMPLIANCE STRATEGIES Presented by: Margret Amatayakul, RHIA, FHIMSS.

HIPAA/HITECH – The Final Omnibus Rule

Extending Your Compliance Deadline for Transactions & Codes Sets

Moderated by: Steven S. Lazarus, PhD, FHIMSS President

HIPAA Transactions and Code Sets Implementation Roundtable

EMPLOYER HIPAA COMPLIANCE STRATEGIES HIPAA Summit Audio Conference

Transactions and Code Sets and the National Provider Identifier (NPI) – Getting Value From the HIPAA Standards Presented by: Steven S. Lazarus, PhD, CPEHR,

HIPAA Update J. T. Ash University of Hawaii System

HIPAA Transactions and Code Sets Implementation Roundtable

Electronic Health Records: Overview, Acquisition and Implementation

Countdown to Compliance

HIPAA Privacy The Morning After

HIPAA Transactions and Code Sets Implementation June 6, 2003

American Health Information Management Association

The Eighth National HIPAA Summit March 8, pm – 5:30pm

Transactions, Code Sets and Identifiers Update

Presented by: Steven S. Lazarus, PhD, FHIMSS

OVERVIEW OF CMS GUIDANCE

The Centers for Medicare & Medicaid Services

National HIPAA Audioconference: update on Crucial HIPAA Privacy and Security Developments – 5 Years After Implementation Steven S. Lazarus, PhD, CPEHR,

The Importance of April 16, 2003: Where You Should be in HIPAA Data Code Sets/Transactions Testing and Compliance Presented by: Steven S. Lazarus, PhD,

Steven S. Lazarus, PhD, CPEHR, CPHIT, FHIMSS President

Strategies to Comply with the HPAA Privacy Rule Before the HIPAA Security and Enforcement Rules are Final Presented by: Steven S. Lazarus, PhD, FHIMSS.

Presentation transcript:

Vendor and Clearinghouse Requirements for HIPAA Compliance HIPAA Summit Audio Conference Presented By: Steven S. Lazarus, PhD, FHIMSS Boundary Information Group July 24, 2002 Copyright Boundary Information Group 2002

Vendor and Clearinghouse Requirements  July 24, 2002  Page 2 Boundary Information Group  Virtual Consortium of Health Care Information Systems Consulting Firms  Founded 1995  Internet-Based  Websites  Company:  HIPAA Resources:  Senior Consultants with Commitment to HIPAA  WEDI member  Industry leadership experience since 1992  BIG Consultants have completed more than 50 HIPAA engagements

Vendor and Clearinghouse Requirements  July 24, 2002  Page 3 Workgroup For Electronic Data Interchange (WEDI)  Founded 1992  Nonprofit Association with 213 Organization Members  Consumers, Government, Mixed Payer/Providers, Payers, Providers, Standards Organizations, Vendors  Goal: To Foster Widespread Support for the Adoption of Electronic Commerce Within Health Care  Significant Activities  Named in 1996 HIPAA Legislation as an Advisor to the Secretary of DHHS  Initiated SNIP for HIPAA Implementation (5,000 participants)  Websites: WEDI – WEDI SNIP – snip.wedi.org  Steven Lazarus, WEDI Chair ( )

Vendor and Clearinghouse Requirements  July 24, 2002  Page 4 Who Needs to Have a Business Associate Agreement?  Covered Entities  Clearinghouses  Health plans (payers)  Providers that utilize one or more Standard Transactions  Vendors  Are not Covered Entities  Will be required by Covered Entities to have Business Associate agreements

Vendor and Clearinghouse Requirements  July 24, 2002  Page 5 Operational Requirements 1. Determine who is your Business Associate  Develop a list of all contracts  Develop a list of all Accounts Payable entities  Find copies of all contracts, agreements and purchase orders  Determine if there is a Business Associate relationship  Examples of Criteria - What is the function(s) that the vendor does for you? - Does the vendor receive PHI from you? - Does the vendor create PHI for you?

Vendor and Clearinghouse Requirements  July 24, 2002  Page 6 Operational Requirements 2. Terms of the Business Associate Agreement  See Federal Register March 27, 2002, pages for model provisions (http//  Covered Entities should drive the terms

Vendor and Clearinghouse Requirements  July 24, 2002  Page 7 Operational Requirements 3. Some Interesting Considerations  Managing the termination and/or other enforcement of the Business Associate if outside the United States  What if the Covered Entity refuses to sign a Business Associate Agreement (e.g., landlord for a physician office who supplies the cleaning service after hours)  In Texas most, maybe all, vendors and State Government agencies will be Covered Entities as of September 1, 2002  Business Associate agreements are required when a Covered Entity performs a Business Associate function for a Covered Entity  BIG recommends that the Business Associate agreement includes reimbursement by the Business Associate to the Covered Entity for all fines and legal fees incurred for Privacy and Security violations due to the solo fault of the Business Associate  The Business Associate agreement could included the Chain of Trust agreement for Security

Steven S. Lazarus Contact Information Boundary Information Group 4401South Quebec Street, Suite 100 Denver, Colorado (303)