Presentation is loading. Please wait.

Presentation is loading. Please wait.

HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services.

Published byBaldwin Wade Modified over 8 years ago

Similar presentations

Presentation on theme: "HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services."— Presentation transcript:

1 HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services

2 Vision of HIPAA Single set of information for all payers Standard, easily understood coding rules Standard responses from payers Little, if any human intervention for billing, remittance, posting, eligibility inquiries, coordination of benefits Secure data, well understood privacy protection

3 Vision of HIPAA Additional patient medical records information easily (and securely) exchanged between Entities easily and clearly identified in transactions How have we done?

4 Brief History Law – 1996 Final Rules Transactions – 2000 (finally effective October 2003) Privacy – 2000 (effective April 2003) Employer ID – 2002 Transactions Modifications – 2003 Security – 2003 National Provider ID -2004

5 Transactions Status Effective October 16, 2003 CMS Contingency Plan Guidance on enforcement published in July 2003 CMS/Medicare However, entities should be compliant

6 Transactions Status Enforcement in Place Complaint based Aim is to get to compliance Will look at good faith efforts Web site available

7 Complaint statistics Over 200 Transaction/Code Set Complaints Approximately 58 remain open Most regarding claim payment Adverse impact to cash flow Small providers against health plans and clearinghouse. 5 corrective action plans submitted

8 Where is the Industry Today? Many covered entities are still operating under contingency plans Many moving into compliance Medicare rate above 80% for claims Why not compliant? New data elements Reliance on vendors Started implementation too late

9 What Will/Should be Happening? Contingency plans will end Entities must be compliant, or payments may stop Need to embrace other transactions – automated eligibility, remittance, claims status Need to participate in standards revision process Medicare began slow pay in July 2004 – non-compliant transactions are treated as paper

10 Some Positive Impacts Realization that standards impact business process Industry getting together to implement Different provider groups coming forward to participate in standards

11 What Should You Be Doing? Be compliant – follow the HIPAA rules Keep aware of future HIPAA standards rules Participate in industry organizations – make your voice heard

12 Next on the Horizon Security National Provider ID

13 Regulation Dates Published February 20, 2003 Effective Date April 21, 2003 Compliance Date: April 21, 2005 for all covered entities except small health plans April 21, 2006 for small health plans (as HIPAA requires)

14 General Requirements (164.306(a)) Ensure Confidentiality (only the right people see it) Integrity (the information is what it is supposed to be – it hasn’t been changed) Availability (the right people can see it when needed)

15 General Requirements Applies to Electronic Protected Health Information That a Covered Entity Creates, Receives, Maintains, or Transmits

16 General Requirements Protect against reasonably anticipated threats or hazards to the security or integrity of information Protect against reasonably anticipated uses and disclosures not permitted by privacy rules Ensure compliance by workforce

17 Regulation Themes Scalability/Flexibility Covered entities can take into account: Size Complexity Capabilities Technical Infrastructure Cost of procedures to comply Potential security risks

18 Regulation Themes Technologically Neutral What needs to be done, not how Comprehensive Not just technical aspects, but behavioral as well

19 Standards Standards are required Implementation specifications provide more detail and can be either required or addressable.

20 National Provider Identifier Final Rule Published January 23 rd Adopt the standard for a single identifier for every provider No need for different identifiers for different health plans

21 NPI: Important Dates Final Rule published on January 23, 2004 Effective date is May 23, 2005 Providers can begin applying for NPIs Compliance dates are: May 23, 2007 for all covered entities except small health plans May 23, 2008 for small health plans By these dates, covered entities must use NPIs to identify providers in standard transactions.

22 CMS and Other Resources CMS HIPAA Web Site – www.cms.hhs.gov/hipaa/hipaa2 FAQs Guidance Documents AskHIPAA@cms.hhs.gov email box AskHIPAA@cms.hhs.gov Teleconferences

23 Other Resources NIST – Crosswalk document published for public comment http://csrc.nist.gov/publications/drafts.html WEDI/SNIP – Security white papers

Download ppt "HIPAA Yesterday, Today and Tomorrow? Dianne S. Faup Office of HIPAA Standards Centers for Medicare & Medicaid Services."

Similar presentations

Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance.

Tamtron Users Group April 2001 Preparing Your Laboratory for HIPAA Compliance.
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
HIPAA AWARENESS TRAINING

HIPAA AWARENESS TRAINING
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
Lesson 1 Overview of the 837 and 835. 2 Section 1: Overview Introduction How did we get to where we are now? What do electronic transactions mean to you.

Lesson 1 Overview of the 837 and Section 1: Overview Introduction How did we get to where we are now? What do electronic transactions mean to you.
1 HIPAA Security Final Rule Overview April 9, 2003Karen Trudel.

1 HIPAA Security Final Rule Overview April 9, 2003Karen Trudel.
I haven't heard of HIPAA, but I can hip hop.. Some Tips & Updates for HME/Rehab Providers HIPAA Security Standards Final Rule Some Tips & Updates for.

"I haven't heard of HIPAA, but I can hip hop.". Some Tips & Updates for HME/Rehab Providers HIPAA Security Standards Final Rule Some Tips & Updates for.
HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) 252-9321; Victoria Nemerson.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group 209-754-9130

Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
HIPAA Administrative Simplification Final Rule for Transactions Code Sets Stanley Nachimson

HIPAA Administrative Simplification Final Rule for Transactions Code Sets Stanley Nachimson
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna 412-396-4419.

Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
Presents: Weekly HIPAA Teleconference Revised 10-16-02.

Presents: Weekly HIPAA Teleconference Revised
1 5010 Project Status January 2012. 2 HIPAA 5010 CMS Updates CMS recently released a communication which outlined a “contigency” window for 5010 compliance.

Project Status January HIPAA 5010 CMS Updates CMS recently released a communication which outlined a “contigency” window for 5010 compliance.
Reviewing the World of HIPAA Stephanie Anderson, CPC October 2006.

Reviewing the World of HIPAA Stephanie Anderson, CPC October 2006.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.

HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.

© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
Health Insurance Portability and Accountability Act (HIPAA)

Health Insurance Portability and Accountability Act (HIPAA)

Similar presentations

Ads by Google