Presentation is loading. Please wait.

Presentation is loading. Please wait.

HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?

Published byDrusilla Casey Modified over 8 years ago

Similar presentations

Presentation on theme: "HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?"— Presentation transcript:

1 HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?

2 Objectives Today Overview of the HIPAA Privacy Rules HIPAA Privacy Legislative Guide What are Plan Sponsors required to do? Areas where clarification is needed

3 Overview of the HIPAA Privacy Rules Regulates Protected Health Information (PHI) Requires that patients be told how their PHI will be used and disclosed Sets limits on how patients’ PHI may be used and disclosed Imposes fines where the requirements contained within the regulations are not followed

4 Zywave Legislative Guides

5 What Are Plan Sponsors Required to Do? The rules do not directly regulate plan sponsors or employers Compliance obligations indirectly imposed upon plan sponsors will vary depending on access to PHI Plan sponsor functions Plan administration functions

6 Plan Sponsor Functions Assist employees with claim disputes pursuant to a written authorization Receive Summary Health Information (SHI) for purposes of obtaining premium bids or modifying, amending or terminating the plan Conducting enrollment and disenrollment activities = Minimal HIPAA Privacy compliance obligations

7 Plan Administration Functions Claims processing Quality improvement Fraud detection activities = Considerable HIPAA Privacy compliance obligations

8 Plan Sponsors that have access to PHI for plan administration must: Amend the plan document to allow the plan sponsor to have access to PHI Certify to the group health plan that it will limit its use and disclosure of PHI as required by the Privacy Rule Comply with all of the administrative requirements of the Privacy Rule

9 HIPAA Privacy Rules – Administrative Requirements Appoint a privacy officer Train members of workforce with access to PHI Create written policies and procedures related to handling PHI Create and distribute notice of privacy practices Provide plan members with a right to access, copy and amend PHI in your possession Create internal firewalls Enter into written contracts with business associates

10 What is a Business Associate? A person or entity that receives PHI from a Covered Entity in order to perform services on behalf of the Covered Entity Services may include treatment, payment or health care operations The Covered Entity must enter into a contract with the Business Associate The contract extends HIPAA’s protections to the information exchanged

11 Areas Where Clarification is Needed Are authorizations required when an employer or broker needs access to PHI to advocate on behalf of an employee? Is enrollment/disenrollment information held by the plan sponsor considered PHI? How can employers deal with fraud against the health plan and abide by restrictions on use of PHI?

Download ppt "HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?"

Similar presentations

H OGAN & H ARTSON, L.L.P.

H OGAN & H ARTSON, L.L.P.
The HIPAA Privacy Rule And Its Impact On Agents And Employers National Association of Health Underwriters Capitol Conference March 23, 2003 Joseph T. Holahan,

The HIPAA Privacy Rule And Its Impact On Agents And Employers National Association of Health Underwriters Capitol Conference March 23, 2003 Joseph T. Holahan,
HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.

HIPAA Privacy Practices. Notice A copy of the current DMH Notice must be posted at each service site where persons seeking DMH services will be able to.
Pennsylvania Bureau of Workers’ Compensation Conference December 4, 2003 Beth L. Rubin  2003 Dechert LLP HIPAA Privacy Rule Basics.

Pennsylvania Bureau of Workers’ Compensation Conference December 4, 2003 Beth L. Rubin  2003 Dechert LLP HIPAA Privacy Rule Basics.
Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.

Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.
1 The HIPAA Privacy Rule and Research This presentation will probably involve audience discussion, which will create action items. Use PowerPoint to keep.

1 The HIPAA Privacy Rule and Research This presentation will probably involve audience discussion, which will create action items. Use PowerPoint to keep.
HIPAA Basics Brian Fleetham Dickinson Wright PLLC.

HIPAA Basics Brian Fleetham Dickinson Wright PLLC.
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.

HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.
HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.

HIPAA Privacy Training Your Name Here. © 2004 MHM Resources Inc.2 HIPAA Background Health Insurance Portability and Accountability Act of 1996.
National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.

National Health Information Privacy and Security Week Understanding the HIPAA Privacy and Security Rule.
HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) 252-9321; Victoria Nemerson.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.
HIPAA The Hidden Beast June Kissinger Director, Risk Management Support Services March 12, 2003.

HIPAA The Hidden Beast June Kissinger Director, Risk Management Support Services March 12, 2003.
Presented by the Office of the General Counsel An Overview of HIPAA.

Presented by the Office of the General Counsel An Overview of HIPAA.
TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.
HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.

HIPAA Privacy Rule Compliance Training for YSU April 9, 2014.
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.

COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
2014 HIPAA Refresher Omnibus Rule & HIPAA Security.

2014 HIPAA Refresher Omnibus Rule & HIPAA Security.

Similar presentations

Ads by Google