Monthly Archives: September 2004

Guidelines for HIPAA compliance in the works – Computerworld

Guidelines for HIPAA compliance in the works – Computerworld Health care organizations looking for more information on how to comply with HIPAA security mandates may soon get more help. URAC, a nonprofit accreditation agency for the health care industry, along with the Workgroup for Electronic Data Interchange and the National Institute of Standards and Technology,…

Articles for Caregiving: Understanding Your Admission to A Nursing Home For Rehabilitation

This article helps to humanize the process of understanding the admission process into a nursing home, including a mention of the HIPAA forms required and how if you are a patient you should save copies for your records. Very good advice! Articles for Caregiving: Understanding Your Admission to A Nursing Home For Rehabilitation Understanding Your…

HIPAA Training – Free Demo

From HIPAAClickAndComply.com: HIPAA compliance is a great challenge to health organizations. Our HIPAA compliance training software can make this a manageable task. The HIPAA Privacy Rule applies to any organization that handles protected health information. HIPAA requires mandatory training. The consequences for non-compliance include civil and criminal penalties. Basic Privacy Awareness Training – This primer…

HIPAA Training in the State of California

The HHSDC Training Center offers a variety of HIPAA training courses available for group purchase. These courses cover the following HIPAA topics: HIPAA Overview Privacy Security Transactions, Code Sets, and Identifiers Electronic Data Interchange (EDI) EDI Gap Analysis ASC X12 Syntax HIPAA Implementation Planning You may choose among four training providers – Covansys, Gartner Consulting,…

HIPAA Compliant Software

If you are new to this field, you may be wondering what exactly is “HIPAA Compliant Software.” Well, you’re not going to like the answer. Because it’s tautological. HIPAA Compliant Software is software that complies with the Health Insurance Portability and Accountability Act of 1996. That’s all. There are a wide range of software packages…

What Does HIPAA Stand for?

If you are just beginning your quest into the bastion of governmental regulation that is HIPAA, we feel for you. The fine editors here at HIPAA Blog were once like you in this fine quest to find out more about medical privacy regulation. So…drumroll… the $1,000,000 question is: What DOES HIPAA Stand for? HIPAA stands…

HIPAA Compliance Dates

Compliance Schedule All covered entities, except “small health plans,” must be compliant with the Privacy Rule by April 14, 2003.90 Small health plans, however, have until April 14, 2004 to comply. Small Health Plans. A health plan with annual receipts of not more than $5 million is a small health plan.91 Health plans that file…

HIPAA Enforcement and Penalties for Noncompliance

Compliance. Consistent with the principles for achieving compliance provided in the Rule, HHS will seek the cooperation of covered entities and may provide technical assistance to help them comply voluntarily with the Rule.87 The Rule provides processes for persons to file complaints with HHS, describes the responsibilities of covered entities to provide records and compliance…

HIPAA State Law

Preemption. In general, State laws that are contrary to the Privacy Rule are preempted by the federal requirements, which means that the federal requirements will apply.85 “Contrary” means that it would be impossible for a covered entity to comply with both the State and federal requirements, or that the provision of State law is an…

HIPAA Privacy – Personal Representatives and Minors

Personal Representatives. The Privacy Rule requires a covered entity to treat a “personal representative” the same as the individual, with respect to uses and disclosures of the individual’s protected health information, as well as the individual’s rights under the Rule.84 A personal representative is a person legally authorized to make health care decisions on an…

HIPAA Privacy – Organizational Options

The Rule contains provisions that address a variety of organizational issues that may affect the operation of the privacy protections. Hybrid Entity. The Privacy Rule permits a covered entity that is a single legal entity and that conducts both covered and non-covered functions to elect to be a “hybrid entity.”77 (The activities that make a…

HIPAA – Administrative Requirements

HHS recognizes that covered entities range from the smallest provider to the largest, multi-state health plan. Therefore the flexibility and scalability of the Rule are intended to allow covered entities to analyze their own needs and implement solutions appropriate for their own environment. What is appropriate for a particular covered entity will depend on the…

HIPAA Privacy Practice Notice

Each covered entity, with certain exceptions, must provide a notice of its privacy practices.51 The Privacy Rule requires that the notice contain certain elements. The notice must describe the ways in which the covered entity may use and disclose protected health information. The notice must state the covered entity’s duties to protect privacy, provide a…

HIPAA Privacy – Minimum Necessary Rule

Limiting Uses and Disclosures to the Minimum Necessary A central aspect of the Privacy Rule is the principle of “minimum necessary” use and disclosure. A covered entity must make reasonable efforts to use, disclose, and request only the minimum amount of protected health information needed to accomplish the intended purpose of the use, disclosure, or…

HIPAA Privacy – Pyschotherapy Authorization

A covered entity must obtain an individual’s authorization to use or disclose psychotherapy notes with the following exceptions48: – The covered entity who originated the notes may use them for treatment. – A covered entity may use or disclose, without an individual’s authorization, the psychotherapy notes, for its own training, and to defend itself in…