Presentation is loading. Please wait.

Presentation is loading. Please wait.

PricewaterhouseCoopers 1 Administrative Simplification: Privacy Audioconference April 14, 2003 William R. Braithwaite, MD, PhD “Doctor HIPAA” HIPAA Today.

Published byBeverly Arthur Palmer Modified over 8 years ago

Similar presentations

Presentation on theme: "PricewaterhouseCoopers 1 Administrative Simplification: Privacy Audioconference April 14, 2003 William R. Braithwaite, MD, PhD “Doctor HIPAA” HIPAA Today."— Presentation transcript:

1 PricewaterhouseCoopers 1 Administrative Simplification: Privacy Audioconference April 14, 2003 William R. Braithwaite, MD, PhD “Doctor HIPAA” HIPAA Today is a Watershed Date: - Where Should We Be - How to Get There

2 PricewaterhouseCoopers 2 Why HIPAA Privacy is Important… Privacy important to consumers a fundamental component of high-quality, patient- centered healthcare. When individuals worry about misuse of their personal health information, they take steps to circumvent the system to protect their privacy. Source: California HealthCare Foundation and Consumers Union. Promoting Health, Protecting Privacy: A Primer. Oakland, Calif: California HealthCare Foundation and Consumers Union; January 1999.

3 PricewaterhouseCoopers 3 Principles of Fair Info Practices Notice Existence and purpose of record-keeping systems must known. Choice – information is: Collected only with knowledge and permission of subject. Used only in ways relevant to the purpose for which the data was collected. Disclosed only with permission or overriding legal authority. Access Individual right to see records and assure quality of information. –accurate, complete, and timely. Security Reasonable safeguards for confidentiality, integrity, and availability of information. Enforcement Violations result in reasonable penalties and mitigation.

4 PricewaterhouseCoopers 4 Individual’s Rights Individuals have the right to: A written notice of information practices from health plans and providers. Inspect and obtain a copy of their PHI (DRS). Obtain an accounting of disclosures. Amend their records. Request restrictions on uses and disclosures. Accommodation of reasonable communication requests. Complain to the covered entity and to HHS.

5 PricewaterhouseCoopers 5 Enforcement by HHS Enforcement by investigating complaints. not HIPAA police force -- OCR not OIG for privacy. Fines by HHS are unlikely (and small). Fines and jail time possible from DOJ. Where intent can be proven. BUT, real risk comes from Civil liability from private lawsuits. Federal Trade Commission (Eli Lilly). New privacy laws (federal and state).

6 PricewaterhouseCoopers 6 Registration: What does HIPAA require? Give the patient a copy of the Notice of Privacy Practices. Make a good faith effort to obtain a patient’s written acknowledgement of receipt of the Notice. The registration clerk must have been trained in privacy. The system the registration clerk uses must have security settings to allow minimum access and to prevent unauthorized access. Public access must be limited in areas where medical records are visible. Follow verification procedures to ensure the identity and authority of individuals requesting medical records. Patient requests to exercise their rights are initiated at the Reception Area: Request for Alternative Communications Request for Access to Records Amendment Request Form Complaints Accounting of Disclosure Request for Further Restriction

7 PricewaterhouseCoopers 7 Authorization is necessary for the use or disclosure of protected health information for purposes other than treatment, payment or health care operation. Requests for access to psychotherapy notes, HIV/AIDS information will require special protections and always require an authorization. The minimum necessary standard does not apply when treating patients. The patient may approach the treating physician to request amendment or correction of information they believe to be incorrect in their medical record or other designated record set. The physician who wrote the entry can immediately amend the medical record to reflect the patient’s request if the physician considers the request valid or The physician can request the patient put the request in writing preferably using an Amendment Request form. Clinicians: What does HIPAA require?

8 PricewaterhouseCoopers 8 Keys to Compliance Data Flow Where and how is PHI is stored and transmitted. Job Descriptions Accuracy required to refine role-based access. Policies & Procedures Focus on those needed to support patient rights. All workforce members must be trained to know them & follow them. Enforcement Administrative commitment to consistently monitor and enforce privacy/security incidents.

9 PricewaterhouseCoopers 9 William.R.Braithwaite@US.PwCglobal.com Questions?

Download ppt "PricewaterhouseCoopers 1 Administrative Simplification: Privacy Audioconference April 14, 2003 William R. Braithwaite, MD, PhD “Doctor HIPAA” HIPAA Today."

Similar presentations

Todd Frech Ocius Medical Informatics 6650 Rivers Ave, Suite 137 North Charleston, SC 29406 843-576-1426 Health Insurance Portability.

Todd Frech Ocius Medical Informatics 6650 Rivers Ave, Suite 137 North Charleston, SC Health Insurance Portability.
HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.

HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.
Protecting Patient Privacy:

Protecting Patient Privacy:
HIPAA Basics Brian Fleetham Dickinson Wright PLLC.

HIPAA Basics Brian Fleetham Dickinson Wright PLLC.
HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.
Confidentiality and HIPAA

Confidentiality and HIPAA
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.

Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.

P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.
What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,

What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,
1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/2009 0.

1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/
HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)
Health Insurance Portability and Accountability Act (HIPAA) Presented by: APS Healthcare Southwestern PA Health Care Quality Unit (HCQU) December 2010.

Health Insurance Portability and Accountability Act (HIPAA) Presented by: APS Healthcare Southwestern PA Health Care Quality Unit (HCQU) December 2010.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.

HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
Jill Moore April 2013 HIPAA Update: New Rules, New Challenges.

Jill Moore April 2013 HIPAA Update: New Rules, New Challenges.

Similar presentations

Ads by Google