Presentation is loading. Please wait.

Presentation is loading. Please wait.

Paul T. Smith Davis Wright Tremaine LLP

Published byCynthia Griffith Modified over 5 years ago

Similar presentations

Presentation on theme: "Paul T. Smith Davis Wright Tremaine LLP"— Presentation transcript:

1 Paul T. Smith Davis Wright Tremaine LLP
HIPAA Training HIPAA Workforce Training Paul T. Smith Davis Wright Tremaine LLP

2 Privacy Training The Regulation “A covered entity must train all members of its workforce on the policies and procedures with respect to PHI required by this subpart, as necessary and appropriate for the members of the workforce to carry out their function.” (45 CFR (b))

3 Deadlines Training must be provided: Retraining must be provided
No later than April 14, 2003 (2004 for small health plans) To new hires within a reasonable period Retraining must be provided After change in job functions After change in policies and procedures

4 Documentation Training must be documented-- What is not required
Maintained in written or electronic form for 6 years. What is not required Employee acknowledgment or certification Refresher training

5 What The Regulation Requires
The security requires security awareness and training for all personnel, including management, with the following “addressable” implementation specifications: Periodic security reminders Education on virus (“malicious software”) protection Log-in monitoring Password management (45 CFR (a)(5))

6 Who Must be Trained? Privacy Workforce must be trained Employees
Volunteers Students Independent contractors with assigned workstations (if CE chooses) What about others? Medical staff Business associates

7 Who Must be Trained? Security
Was employees, agents and contractors, now just workforce (including management). Role-based training optional. Contractors must be aware of security policies, but do not need training.

8 Policy and Procedure Training
Responsibility of Privacy Official is “development and implementation of the policies and procedures of the entity.” Cover— Privacy administration Physical protection Technical safeguards Use and disclosure Sanctions and mitigation Individual rights

9 Policy and Procedure Development
Business Rules More stringent state law Organizational Ethics Policies and Procedures Workforce Training HIPAA

10 Policy and Procedure Development
A HIPAA-Based Policy: “We restrict the use and disclosure of all individually identifiable health information. Individually identifiable health information is information that identifies or could be used to identify an individual, and that contains information about the individual’s health condition or health care, including payment for health care.” An Alternative: “We treat all health care related information as confidential, whether or not it identifies an individual, or could be used to identify an individual.”

11 Policy and Procedure Training
HIPAA Education Privacy Awareness Training Role-Based Policy and Procedure Training

12 Requirements Flexible and scalable You decide content and delivery
Classroom instruction Videos On-line training Handbooks One hour per employee, on average

Download ppt "Paul T. Smith Davis Wright Tremaine LLP"

Similar presentations

Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,

Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.

Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.
HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group 209-754-9130

Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.

HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.

HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
Overview of HIPAA Administrative Simplification and Privacy Regulations Darrel J. Grinstead, Partner Amy B. Kiesel, Associate Hogan & Hartson L.L.P.

Overview of HIPAA Administrative Simplification and Privacy Regulations Darrel J. Grinstead, Partner Amy B. Kiesel, Associate Hogan & Hartson L.L.P.
August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.

August 10, 2001 NESNIP PRIVACY WORKGROUP HIPAA’s Minimum Necessary Standard Presented by: Mildred L. Johnson, J.D.
Version 6.0 Approved by HIPAA Implementation Team April 14, 2003 1 HIPAA Learning Module The following is an educational Powerpoint presentation on the.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.
HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.
HIPAA Basic Training for Privacy and Information Security Vanderbilt University Medical Center VUMC HIPAA Website: www.mc.vanderbilt.edu/HIPAA HIPAA Basic.

HIPAA Basic Training for Privacy and Information Security Vanderbilt University Medical Center VUMC HIPAA Website: HIPAA Basic.
HIPAA PRIVACY AND SECURITY AWARENESS.

HIPAA PRIVACY AND SECURITY AWARENESS.

Similar presentations

Ads by Google