building a privacy foundation. setting the standard for privacy health insurance portability and...
TRANSCRIPT
![Page 1: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/1.jpg)
Building a Privacy Foundation
![Page 2: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/2.jpg)
Setting the Standard for Privacy
• Health Insurance Portability and Accountability Act (HIPAA)
• Patient Bill of Rights• Federal and State
Regulations• Accreditation Standards• Case Law• Professional Standards of
Practice
![Page 3: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/3.jpg)
What Must Be Kept Confidential?
PHI:Protected Health Information
![Page 4: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/4.jpg)
Understanding PHI
• Individually identifiable information
• Demographics• Any form or medium
– Oral
– Written
– Electronic
Medical RecordsBilling Records
Databases
![Page 5: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/5.jpg)
Use of PHI
• Sharing, application, utilization, examination, or analysis of PHI within the organization
![Page 6: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/6.jpg)
Disclosure of PHI
• The release, transfer, access, or divulging of PHI to an outside person or entity.
![Page 7: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/7.jpg)
Minimum Necessary
• What can I access?– Information you
“need to know” to do your job
• Does it apply in every situation?– Treatment
– Patient
![Page 8: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/8.jpg)
Minimum Necessary
![Page 9: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/9.jpg)
HIPAA Requirement –
• Identify members of the workforce who need access to confidential information
• Identify what information can be accessed
• Limit access
![Page 10: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/10.jpg)
How Do I Know…
…When information is considered private?– Did you learn it through your job?
If yes, then it is considered private
![Page 11: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/11.jpg)
How Do I Handle…
…An individual asking for access to their record?– Individuals have a
right of access
– Route requests to appropriate department or staff
![Page 12: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/12.jpg)
How Do I Handle…
…An individual’s request to change their medical record?– Individuals have the right to amend or
correct their record
Requests will be investigated
– Route requests to appropriate department or staff
![Page 13: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/13.jpg)
How Do I Handle…
– Directory informationName, location, condition in
general terms
– Other type of clinical or billing information
Obtain permission
Disclose appropriate information
Use judgment if permission cannot be obtained
…A family member or close friend asking about a patient?
![Page 14: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/14.jpg)
How Do I Handle…
…Another member of the workforce inquiring into a patient’s condition or treatment?– Determine if it is necessary to their position– Is it related to treatment?
![Page 15: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/15.jpg)
“Privacy-Friendly” Practices
• Abide by the organization’s Notice of Privacy Practices
• Shred or destroy • Fax and copy machine
location• Talking in public areas• Keep patient information
out of public areas
![Page 16: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/16.jpg)
“Privacy-Friendly” Practices
• Secure records in all locations
• Passwords• Computer screens• Remember individuals’
right to privacy during treatments
![Page 17: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/17.jpg)
What Happens If…
…a privacy policy is violated?– Organization-specific
sanctions
– Right to file a complaint
– Civil and criminal penalties
![Page 18: Building a Privacy Foundation. Setting the Standard for Privacy Health Insurance Portability and Accountability Act (HIPAA) Patient Bill of Rights Federal](https://reader030.vdocument.in/reader030/viewer/2022032612/56649edf5503460f94befbe6/html5/thumbnails/18.jpg)
Take pride and ownership in the fact that your organization is concerned about privacy and recognizes its importance inproviding quality healthcare.