Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Health Insurance Portability and Accountability Act

Published byCalvin Copeland Modified over 5 years ago

Similar presentations

Presentation on theme: "The Health Insurance Portability and Accountability Act"— Presentation transcript:

1 The Health Insurance Portability and Accountability Act
©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

2 ©2008 CareTrack Resources: HIPAA
Objectives Explain the purpose of the Health Insurance Portability and Accountability Act (HIPAA) Describe the privacy and confidentiality policies and procedures required by law Implement procedures to protect client information ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

3 ©2008 CareTrack Resources: HIPAA
What is HIPAA? Congress passed the Health Insurance Portability and Accountability Act (HIPAA). HIPPA Requires the security, confidentiality, and privacy of every person’s health information. Privacy Who should and should not have access to health information Confidentiality Preventing someone from hearing or seeing a person’s private health records and information unless they have the proper authorization ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

4 ©2008 CareTrack Resources: HIPAA
What is HIPAA? (cont.) Security Means used to provide privacy and confidentiality Purpose is to ensure that only those persons having authorization may access personal health information ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

5 ©2008 CareTrack Resources: HIPAA
Why Do We Need HIPAA? More health information is in the form of electronic data. We must protect data sent from state to state over telephone wires or the Internet. Federal laws make sure every state and every provider follow the same rules for privacy, confidentiality, and security. Compliance with the HIPAA Privacy Rule was required by April 14, 2003. ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

6 Who Has to Follow the HIPPA Rules?
Health plans and health insurance companies Health maintenance organizations (HMO) Preferred provider organizations (PPO) Healthcare clearinghouses Billing services ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

7 Who Has to Follow the HIPPA Rules? (cont.)
Healthcare providers Doctors Dentists Chiropractors Therapists Hospitals Nursing facilities Clinics Pharmacies Home health agencies Hospices Long-term care or personal care facilities of any type or size HIPAA rules call these organizations “Covered Entities.” ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

8 Information HIPAA Protects
HIPPA rules apply to “protected health information” or PHI. Protected health information is: Information created or received by a Covered Entity or an employer that relates to a person’s past, present, or future: Health condition Health treatment Payment for healthcare services ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

9 Information HIPAA Protects (cont.)
Information that could identify an individual. Name Address Telephone number Date of birth Diagnosis PHI can be in any format. Paper Electronic Oral Most common example of PHI is the client record. Medical record number Social security number Employer Position ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

10 How the HIPAA Privacy Rule Protects Client Records
If a provider wants to disclose a person’s PHI for purposes of providing care, the provider needs that person’s consent. Includes routine healthcare-related uses If a Covered Entity wants to disclose a person’s PHI for purposes other than providing care, the Covered Entity needs that person’s specific authorization. ©2008 CareTrack Resources: HIPAA

11 Consent and Authorization
Client must sign a consent form. Client only needs to sign the consent one time for each provider. Consent will apply whenever that provider discloses the person’s PHI for purposes of providing healthcare. Authorization This is required when a Covered Entity wants to use or disclose a person’s PHI for purposes not related to providing healthcare. Person must sign an authorization form for each specific instance. ©2008 CareTrack Resources: HIPAA

12 Exceptions to the HIPAA Privacy Rule
Covered Entities may disclose healthcare information without that person’s specific authorization in certain situations, depending upon state or local law, such as: Emergencies Public health needs Mandatory reporting of child or elder abuse and neglect Judicial and administrative proceedings When there are substantial communication barriers ©2008 CareTrack Resources: HIPAA

13 Exceptions to the HIPAA Privacy Rule (cont.)
If there is no state or local law specifically requiring disclosure of information in the prior instances, Covered Entities are required to use “professional judgment” in deciding whether to disclose information and how much to disclose. ©2008 CareTrack Resources: HIPAA

14 Seeing and Making Changes to Personal PHI
Covered Entity must allow a person to view and photocopy his/her PHI if that person submits a request. Organization may charge the person for copies of his/her PHI. In a few special circumstances, entity does not have to give a person access to PHI. Covered Entity has compiled information for use in a civil, criminal, or administrative proceeding. ©2008 CareTrack Resources: HIPAA

15 Seeing and Making Changes to Personal PHI (cont.)
Covered Entity may deny access to PHI if they have reason to believe that access would create a risk of danger to that person’s health. Person may ask the Covered Entity to make changes, if he/she believes that the PHI contains information that is incorrect. They may deny the request if they believe the current information is accurate and complete, or if they did not create the information. ©2008 CareTrack Resources: HIPAA

16 Other Requirements of Covered Entities
Notify clients about their privacy rights and give clear, written explanation of how the provider may use and disclose the client’s health information. Adopt written privacy procedures that: Define who has access to protected information How the entity will use the information When the entity might disclose the information to others Train employees in privacy procedures. ©2008 CareTrack Resources: HIPAA

17 Other Requirements of Covered Entities (cont.)
Implement safeguards to prevent intentional or accidental misuse of PHI. Appoint an individual to make sure that employees follow the privacy procedures. Give an accounting of instances where the entity has disclosed PHI for purposes other than treatment, payment, or healthcare operations. ©2008 CareTrack Resources: HIPAA

18 Protection of Client Privacy and Confidentiality
Computers, the Internet, s, and faxes make it easier to share client records. Information is often readily available to anyone who walks by a fax machine or logs on to a computer. Some people fear that the exposure of their personal health information could result in job discrimination, personal embarrassment, or the loss or denial of health insurance. ©2008 CareTrack Resources: HIPAA

19 Protection of Client Privacy and Confidentiality (cont.)
Considerations for safeguarding confidentiality Confidentiality of information, whether in written, electronic, or verbal form, is a priority. Handle all client records as confidential at all times. Do not leave them open where unauthorized persons can see them. Remember this Rule: The right information, to the right person, for the right reasons. ©2008 CareTrack Resources: HIPAA

20 Protection of Client Privacy and Confidentiality (cont.)
Learn the safeguards your organization requires for the use, disclosure, and storage of personal health information. Individuals have the right to decide and to know who may have access to their health information and under what circumstances they may have it. Discuss client information in a private place so others cannot overhear the conversation. A cover sheet marked Confidential should accompany all faxed information. ©2008 CareTrack Resources: HIPAA

21 Protection of Client Privacy and Confidentiality (cont.)
When ing information about a client, remove any detailed identifying information. Only authorized personnel should enter confidential medical information into a computer- based client record. Computer systems should be password-protected Use only objective, precise language when documenting in the client record. Avoid casual remarks and abbreviations that might be misunderstood. ©2008 CareTrack Resources: HIPAA

22 Protection of Client Privacy and Confidentiality (cont.)
Always take the utmost care to protect the privacy and confidentiality of all health information. Think about how you would want your personal health information treated, and give your clients that much protection and more. ©2008 CareTrack Resources: HIPAA

23 ©2008 CareTrack Resources: HIPAA
Please Complete Test and Evaluation. Thank You. ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

24 ©2008 CareTrack Resources: HIPAA
©CareTrack Resources, Inc, All Rights Reserved. May Not Be Used or Reproduced Without Permission. Contact for Assistance. ©2008 CareTrack Resources: HIPAA ©2008 CareTrack Resources: HIPAA

Download ppt "The Health Insurance Portability and Accountability Act"

Similar presentations

Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.

Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.
HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.
HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website: www.mc.vanderbilt.edu/HIPAA.

HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website:
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.

HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.
P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.

P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.
1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/2009 0.

1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/
© 2009 The McGraw-Hill Companies, Inc. All rights reserved 3-1 LEGAL AND ETHICAL ISSUES in Medical Practice, Including HIPAA PowerPoint® presentation.

© 2009 The McGraw-Hill Companies, Inc. All rights reserved 3-1 LEGAL AND ETHICAL ISSUES in Medical Practice, Including HIPAA PowerPoint® presentation.
Health Insurance Portability and Accountability Act (HIPAA) Presented by: APS Healthcare Southwestern PA Health Care Quality Unit (HCQU) December 2010.

Health Insurance Portability and Accountability Act (HIPAA) Presented by: APS Healthcare Southwestern PA Health Care Quality Unit (HCQU) December 2010.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.

HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
 The Health Insurance Portability and Accountability Act of 1996.  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.

 The Health Insurance Portability and Accountability Act of  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
HIPAA THE PRIVACY RULE Reviewed December 2012 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti-

HIPAA THE PRIVACY RULE Reviewed December HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti-

Similar presentations

Ads by Google