securing patient-related data: the impact of hipaa module vi nur 603 russ mcguire
TRANSCRIPT
![Page 1: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/1.jpg)
Securing Patient-Related Data:The Impact of HIPAA
Module VI
NUR 603
Russ McGuire
![Page 2: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/2.jpg)
What is HIPAA
HIPAA – The Health Insurance Portability and Accountability Act of 1996Public Law 104-191
Requires the Department of Health and Human Services to develop standards for the maintenance and transmission of patient-related data that can be readily identified.
![Page 3: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/3.jpg)
HIPAA Standards
Designed to:“improve the efficiency and effectiveness of the
healthcare system by standardizing the interchange of electronic data for specific administrative and financial transactions; and
protect the security and confidentiality of electronic health information”.
![Page 4: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/4.jpg)
Impact on Healthcare Organizations Basic Point – All healthcare organizations MUST comply.
General failure to comply: $100 per violation. Maximum penalty: $25,000.00
Wrongful disclosure of Individually Identifiable Health Information:
Wrongful disclosure, under false pretenses, and/or intent to sell: $50,000 to $250,000 fine. Imprisonment 1 to 10 years.
Bottom line: serious implications for healthcare administrator and clinicians alike.
![Page 5: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/5.jpg)
Impact on Healthcare Organizations The impact of securing patient-related data from a
resource (cost) perspective has not been calculated. Major operational and procedural changes need to be
considered by the organization. The implementation of HIPAA regulations will be time
consuming and costly to many healthcare organizations. Bottom line: Healthcare organizations MUST implement
and monitor the effectiveness of HIPAA regulations or risk substantial fines and possible imprisonment for data security breeches.
![Page 6: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/6.jpg)
Specific Standards The healthcare consumer will have greater rights
when it comes to protecting their health information.
Healthcare providers are prohibited from using or disclosing health information except as authorized by the patient.This includes all personally identifiable health
information, irrespective of whether its in a manual or automated format.
![Page 7: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/7.jpg)
Specific Standards Healthcare organizations must inform their patients or
beneficiaries (for health insurance) of their business practices concerning the use and disclosure of health information.
Specific regulations regarding consents change how healthcare organizations will obtain the consent of their patients.
Patient are granted the opportunity to request restrictions on the use and disclosure of their health information to include who and how their information is shared with other enities.
![Page 8: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/8.jpg)
Specific Standards
Healthcare providers must create “privacy-conscious” business practices to include:Disclosure of the minimum amount of health
information. Internal protection of medical records.Employee privacy training/education.Mechanism for addressing patient complaints.Designation of a “privacy officer”.
![Page 9: Securing Patient-Related Data: The Impact of HIPAA Module VI NUR 603 Russ McGuire](https://reader036.vdocument.in/reader036/viewer/2022081700/56649ee65503460f94bf7071/html5/thumbnails/9.jpg)
Specific Standards
Data Security Standards are divided into four categories:Administrative proceduresPhysical safeguardsTechnical data security servicesTechnical security mechanisms