Presentation is loading. Please wait.

Presentation is loading. Please wait.

Office of Audit, Compliance & Privacy

Published byBeverly Gray Modified over 4 years ago

Similar presentations

Presentation on theme: "Office of Audit, Compliance & Privacy"— Presentation transcript:

1 Office of Audit, Compliance & Privacy
HIPAA Office of Audit, Compliance & Privacy Division of Institutional Compliance & Privacy

2 Why should HIPAA matter to me?
First of all, what is HIPAA? Health Insurance Portability and Accountability Act of 1996. Heath Information Technology for Economic & Clinical Health Act (HITECH) a part of the American Recovery and Reinvestment Act (ARRA) 2009 amended HIPAA. Created a number of regulations dealing with: Administrative Simplification (billing codes, etc.) Privacy Security Breach Division of Institutional Compliance & Privacy

3 Why should HIPAA matter to me?
Do you work with Personally Identifiable Information, PII? Do you work with Protected Health Information, PHI? Conduct research with PII or PHI? or Work in a department that works with or conducts research with PII or PHI? Protected Health Information, PHI, is a specific type of Personally Identifiable Information, PII. If you do, it is important to understand HIPAA or know enough information to ask for help and guidance! There may be additional steps that you have to take to keep PHI private and secure as a part of your job or for your research project. If you are considered to be a covered entity under HIPAA, then you are currently involved in HIPAA compliance on a daily basis. Division of Institutional Compliance & Privacy

4 What is Protected Health Information, PHI?
PHI is individually identifiable health information held or transmitted by a covered entity or a business associate, that relates to: The individual’s past, present or future physical or mental health or condition The provision of health care to the individual or The past, present, or future payment for the provision of health care to the individual. Reference: Division of Institutional Compliance & Privacy

5 What are examples of PHI?
Names Addresses & geographic subdivisions DOB Telephone numbers VIN, DL number, Passport number Fax Number address Web Universal Resource Locator (URLs) Division of Institutional Compliance & Privacy

6 What are examples of PHI?
Social security numbers Internet Protocol (IP) address Medical Record Number Biometric Identifiers Health plan beneficiary numbers Full face photos Account numbers Professional license numbers, or other unique identifiers Division of Institutional Compliance & Privacy

7 Doesn’t the university take care of privacy and security for me?
The situation is a bit more complicated than “yes” or “no” The University does have multiple sites with resources on line: Vice President for Research and Development: AU Research Compliance: Office of Audit, Compliance & Privacy Division of Institutional Compliance & Privacy

8 Your Research partners may require additional documentation
Depending on the nature of the PHI you receive, the entity providing the data may require additional documentation as to: Cyber insurance (a/k/a breach insurance); Computer security; HIPAA & Security training for your and your staff; and Signed verification that you will comply with the Privacy Rule and the Security Rule to the extent it applies to you by executing a Business Associate Agreement (BAA). Division of Institutional Compliance & Privacy

9 Division of Institutional Compliance & Privacy
We Need you to be a partner in making sure PHI is maintained & used in a secure manner We are NOT asking you to be an expert on HIPAA regulations! We ARE asking you to: Understand major concepts about HIPAA & identify if you are working with PHI (PII); Reach out if you have questions regarding privacy & security; Also, if you are not sure if the information is protected by HIPAA or FERPA, please reach out to us! Division of Institutional Compliance & Privacy

10 Division of Institutional Compliance & Privacy
We need you to be a partner in making sure PHI is maintained & used in a secure manner Understand that new IRB approvals may require additional questions to be answered regarding PHI & PII to comply with federal regulations; Allow us to be a resource for you and your department (and research partners); and If there is unauthorized access to PHI to reach out to us immediately. Or if you suspect there has been unauthorized access! Division of Institutional Compliance & Privacy

11 Commitment to Excellence
You are a vital part of HIPAA Compliance! Your commitment to learning about HIPAA and reaching out for assistance; and We need your commitment to compliance with these regulations; If those values seem familiar, they are: “I believe in education, which gives me the knowledge to work wisely and trains my mind and hands to work skillfully”. “I believe in obedience to law because it protects the rights of all”. The Auburn Creed, George Petrie (1943). Division of Institutional Compliance & Privacy

12 Commitment to Excellence
The University is committed to a culture of compliance and excellence-by leading and shaping the future of higher education. I welcome the opportunity to work with each of you. Division of Institutional Compliance & Privacy

13 Additional Reference Links
Summary of the HIPAA Privacy Rule Summary of the HIPAA Security Rule HIPAA & Research NIH-Protecting PHI in Research Division of Institutional Compliance & Privacy

14 Division of Institutional Compliance & Privacy
Thank you! Ronda H. Lacey, J.D. Compliance Manager, HIPAA Privacy Officer Office of Audit, Compliance & Privacy/Division of Institutional Compliance & Privacy Division of Institutional Compliance & Privacy

15 Division of Institutional Compliance & Privacy
Contact Information Ronda H. Lacey, J.D. Compliance Manager, HIPAA Privacy Officer Institutional Compliance & Privacy 022 James E. Foy Hall 1310 Wilmore Drive Auburn University, AL 36849 Office: Division of Institutional Compliance & Privacy

Download ppt "Office of Audit, Compliance & Privacy"

Similar presentations

Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.

Independent Contractor Orientation HIPAA What Is HIPAA? Health Insurance Portability and Accountability Act of 1996 The Health Insurance Portability.
1 The Health Insurance Portability and Accountability Act (HIPAA) A guided tutorial for GVSU employees.

1 The Health Insurance Portability and Accountability Act (HIPAA) A guided tutorial for GVSU employees.
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
COBB/DOUGLAS COMMUNITY SERVICES BOARD Confidentiality and Privacy of Consumer Information.

COBB/DOUGLAS COMMUNITY SERVICES BOARD Confidentiality and Privacy of Consumer Information.
The Health Insurance Portability and Accountability Act Basic HIPAA Training For CMU workforce with access to PHI.

The Health Insurance Portability and Accountability Act Basic HIPAA Training For CMU workforce with access to PHI.
HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.

HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.
HIPAA Training for Pharmaceutical Industry Representatives University of Utah Hospitals & Clinics.

HIPAA Training for Pharmaceutical Industry Representatives University of Utah Hospitals & Clinics.
WORKFORCE CONFIDENTIALITY HIPAA Reminders. HIPAA 101 The Health Insurance Portability and Accountability Act (HIPAA) protects patient privacy. HIPAA is.

WORKFORCE CONFIDENTIALITY HIPAA Reminders. HIPAA 101 The Health Insurance Portability and Accountability Act (HIPAA) protects patient privacy. HIPAA is.
What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,

What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna 412-396-4419.

Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
HIPAA Privacy Keys to Success Education for Nursing and all other Clinical Students Effective January 2010 HIPAA Job Specific Education1.

HIPAA Privacy Keys to Success Education for Nursing and all other Clinical Students Effective January 2010 HIPAA Job Specific Education1.
HIPAA Basics A Matter of Integrity. Introduction “A Matter of Integrity” defines HIPAA and protecting patient health information. Success depends on our.

HIPAA Basics A Matter of Integrity. Introduction “A Matter of Integrity” defines HIPAA and protecting patient health information. Success depends on our.
Informed Consent.

Informed Consent.
 The Health Insurance Portability and Accountability Act of 1996.  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.

 The Health Insurance Portability and Accountability Act of  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.
HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.

HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.
Professional Nursing Services.  Privacy and Security Training explains:  The requirements of the federal HIPAA/HITEC regulations, state privacy laws.

Professional Nursing Services.  Privacy and Security Training explains:  The requirements of the federal HIPAA/HITEC regulations, state privacy laws.

Similar presentations

Ads by Google