Presentation is loading. Please wait.

Presentation is loading. Please wait.

Permitted Uses & Disclosures of PHI

Published byErin Evans Modified over 6 years ago

Similar presentations

Presentation on theme: "Permitted Uses & Disclosures of PHI"— Presentation transcript:

1 Permitted Uses & Disclosures of PHI
To the Individual Treatment, Payment, and Health Care Operations Opportunity to Agree or Object Incidental Use or Disclosure Public Interest & Benefit Limited Data Set for research/public health/health care operations June 2014 HIPAA - General Principles

2 HIPAA - General Principles
1. To the Individual Self-explanatory June 2014 HIPAA - General Principles

3 2. Treatment, Payment, and Health Care Operations
A covered entity may use & disclose PHI for any of the above activities conducted on its own June 2014 HIPAA - General Principles

4 2. Treatment, Payment, and Health Care Operations
A covered entity may also disclose PHI for: the treatment activities of any HCP the payment activities of another covered entity or any HCP the health care ops of another covered entity (involving either quality / competency assurance OR fraud/abuse detection & compliance activities) Caveat = both covered entities must HAVE or HAVE HAD a relationship with the individual and the PHI pertains to the relationship June 2014 HIPAA - General Principles

5 HIPAA - General Principles
Treatment “ The provision, coordination, or management of health care and related services for an individual by one or more HCP, including consultation between providers and referral…” June 2014 HIPAA - General Principles

6 HIPAA - General Principles
Payment “ Activities of a health plan to… and activities of a health care provider to obtain payment or be reimbursed for the provision of health care to an individual” June 2014 HIPAA - General Principles

7 Health Care Operations
Quality assessment/improvement (incl. case mgmt / care coordination) Competency assurance (performance eval, credentialing, accreditation) Medical reviews/audits/legal services (fraud & abuse detection/compliance) Insurance – underwriting/risk rating Business planning/development/mgmt/admin General administrative activities of the entity June 2014 HIPAA - General Principles

8 Must I obtain consent for this?
Consent = written permission from individuals to use/disclose their PHI Is OPTIONAL under the Privacy Rule If you elect to obtain consent for this use, the content of the form and the process are at YOUR discretion June 2014 HIPAA - General Principles

9 3. Opportunity to Agree or Object
Informal permission by patient, obtained by asking them outright or by circumstance Covered entities may use professional judgment for best interest of patient when: Patient is incapacitated Emergency situation Patient not available Examples Pharmacy dispenses meds to a family member Provider informs family of patient’s general condition or location June 2014 HIPAA - General Principles

10 4. Incidental Use or Disclosure
Privacy Rule recognizes that every risk of an incidental use/disclosure cannot be eliminated Use/disclosure as a result of another permitted use/disclosure is permitted if: Covered entity has reasonable safeguards as required in place PHI shared was limited to “minimum necessary” June 2014 HIPAA - General Principles

11 5. Public Interest & Benefit
Required by Law – statute/regulation/court order Public Health activities Victims of abuse/neglect/domestic violence Health oversight activities Judicial & administrative proceedings Law enforcement June 2014 HIPAA - General Principles

12 5. Public Interest & Benefit
Decedents – funeral directors / medical examiners Organ/tissue donation Research Serious threat to health or safety Essential government functions Workers’ compensation June 2014 HIPAA - General Principles

13 6. Limited Data Set for Research/Public Health/Health Care Operations
Limited data set = PHI where specific direct identifiers have been removed Recipient of PHI must enter into a “data use agreement” promising specific safeguards for the PHI in the data set June 2014 HIPAA - General Principles

Download ppt "Permitted Uses & Disclosures of PHI"

Similar presentations

Responding to Subpoenas and Law Enforcement Demands for PHI: An Overview Janet A. Newberg Chair, Health Law Section Felhaber Larson Fenlon & Vogt, P.A.

Responding to Subpoenas and Law Enforcement Demands for PHI: An Overview Janet A. Newberg Chair, Health Law Section Felhaber Larson Fenlon & Vogt, P.A.
Minimum Necessary Standard Version 1.0

Minimum Necessary Standard Version 1.0
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.

HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.
The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.
P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.

P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.
North Carolina State University Health Information Privacy 4/16/03.

North Carolina State University Health Information Privacy 4/16/03.
TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.
Copyright 2006 Rubin Law Firm, LLC Drafting HIPAA Compliant Subpoenas & Discovery Presented by:RACHEL B. RUBIN Kansas Bar Association Annual Meeting June.

Copyright 2006 Rubin Law Firm, LLC Drafting HIPAA Compliant Subpoenas & Discovery Presented by:RACHEL B. RUBIN Kansas Bar Association Annual Meeting June.
 The Health Insurance Portability and Accountability Act of 1996.  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.

 The Health Insurance Portability and Accountability Act of  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.
Health Insurance Portability and Accountability Act (HIPAA)

Health Insurance Portability and Accountability Act (HIPAA)
Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.
August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.

August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.
HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.

HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.
Who Must Comply? When is a patient authorization NOT required?  As needed for the protection of federal and state elective constitutional officers and.

Who Must Comply? When is a patient authorization NOT required?  As needed for the protection of federal and state elective constitutional officers and.
©2006 All rights reserved. Health Information Management Technology — Second Edition — An Applied Approach Chapter 15 Legal Issues in Health Information.

©2006 All rights reserved. Health Information Management Technology — Second Edition — An Applied Approach Chapter 15 Legal Issues in Health Information.
HIPAA Health Insurance Portability & Accountability Act of 1996.

HIPAA Health Insurance Portability & Accountability Act of 1996.
Permitted Disclosures Under GLB & HIPAA Miriam J. Paramore PCI 9001 Shelbyville Road iTRC Building Louisville, KY 40222 502-429-8555 www.hipaasurvival.com.

Permitted Disclosures Under GLB & HIPAA Miriam J. Paramore PCI 9001 Shelbyville Road iTRC Building Louisville, KY
HIPAA – Health Insurance Portability & Accountability Act and the Privacy Act MSgt Nechele M. Chambers Senior Enlisted Liaison TRICARE Area Office-Europe.

HIPAA – Health Insurance Portability & Accountability Act and the Privacy Act MSgt Nechele M. Chambers Senior Enlisted Liaison TRICARE Area Office-Europe.
HIPAA PRIVACY AND SECURITY AWARENESS.

HIPAA PRIVACY AND SECURITY AWARENESS.

Similar presentations

Ads by Google