Included in the HIPAA Compliance Plan is an employee training guide, all the necessary HIPAA forms, an employee signature form (stating that they have been trained), and an implementation guide to make your office HIPAA compliant.You will receive a working HIPAA Plan that is easily implemented in your practice. Additionally, you receive the quarterly "Compliance Training Guide." This concise and easy to read and understand guide keeps your compliance plan current and "compliant." You will also receive our employee policy manual for free with your purchase of the HIPAA Compliance Plan. For only $235
|
Our HIPAA Compliance Program Personnel and Information
|
| Our Practice Information. | 4 |
| Our HIPAA Compliance Officer and Compliance "Hotline" | 4 |
| Our Compliance Committee | 6 |
| Our basic HIPAA Goals | 8 |
| Introduction to HIPAA | 9 |
| Definitions | 10 |
| HIPAA Schedules and Basic Guidelines | 11 |
| Covered entities | 11 |
| Compliance schedule | 11 |
| The changing and developing standards | 11 |
| Finding out about changes | 13 |
| Compliance during the development of and changes in HIPAA | 13 |
| Who is responsible for following the HIPAA Act? | 14 |
| Understanding our HIPAA Program - An Overview | 15 |
| Summary of the HIPAA Rule | 15 |
| AUTHORIZATION/NOTICE of PRIVACY PRACTICES | 16 |
| Authorization | 16 |
| Notice of Privacy Practices | 16 |
| Barriers to Communication | 17 |
| "MINIMUM NECESSARY" A key concept in disclosure of PHI. | 17 |
| Sign-in Sheets | 17 |
| When is too much information too much | 17 |
| Medical Residents, and students, nursing students and other medical training | 18 |
| Third parties | 19 |
| Disclosure to Federal and State agencies. | 19 |
| Disclosure of an entire medical record | 19 |
| Patient medical charts at bedside, empty prescription vials, X-ray light boards | 20 |
| Minimum necessary disclosure and transactions standards | 20 |
| "Reasonable Efforts" a key concept in disclosure of PHI | 20 |
| Oral Communications and Privacy | 21 |
| Basic rules for oral communications about patient health records | 21 |
| Talking to providers and patients | 21 |
| Calling out patient names | 22 |
| Private rooms and soundproof walls | 22 |
| Bringing up privacy concerns | 23 |
| Patient access to oral information. | 23 |
| We do not have to document ALL oral communications | 23 |
| Health-Related Communications and Marketing | 24 |
| Communications are not marketing | 24 |
| Marketing Communications and disclosure of PHI | 24 |
| Protecting patient privacy in marketing | 25 |
| Telemarketers | 25 |
| Requirements for disclosure of PHI for marketing | 26 |
| How to distinguish between activities for treatment, payment or health care operations vs. marketing activities | 26 |
| Disease management, health promotion, preventive care, and wellness programs | 26 |
| Business Associates and Privacy | 28 |
| HHS definition of a Business Associate | 28 |
| Business Associates have more narrow provisions of the HIPAA Rule | 28 |
| Our liability for business associates violations of the Privacy Rule | 28 |
| Parents and Minors and Privacy | 30 |
| Guidance | 30 |
| State Laws | 31 |
| Parents and their children's medical records | 31 |
| Parental Consent | 31 |
| Emergency medical care without a parent's consent. | 31 |
| Research and Privacy | 32 |
| De-identified health information | 32 |
| HHS Standards for use and disclosure of PHI for research | 32 |
| Research use/disclosure with individual authorization | 32 |
| Limited Data Sets | 34 |
| Privacy rule meant to give research patients added confidence in their privacy. | 34 |
| Fifteen clarifying statements about the privacy rule and research | 35 |
| Government Access to Health Information | 37 |
| The Government's role in the privacy rule | 37 |
| Possible OCR Investigations | 37 |
| The police and other law enforcement agencies and the privacy law | 38 |
| Reportable diseases | 38 |
| Patient Billing and Payments | 39 |
| Consumer credit reporting agencies | 39 |
| Collection agencies | 39 |
| Location information services | 39 |
| National Standards for Electronic Healthcare Transactions | 40 |
| About the National Standards | 40 |
| Enforcement of the National Standards | 40 |
| National Standards developed by Private Organizations | 40 |
| Where can I obtain implementation guides for the standards? | 40 |
| Effective date of the National Standards | 41 |
| Transactions that require us to use the standards under this regulation | 41 |
| Are the standards for everyone? | 41 |
| Health plans and non-electronic transactions | 42 |
| The Standards 42 Transactions sent over the Internet | 42 |
| Standards within our practice | 45 |
| Standards overrule State law if contrary to the Act | 46 |
| Exemptions 46 State Medicaid Programs | 46 |
| Medicare administration and interactions should get easier | 46 |
| The Standards, an evolving process | 47 |
| Use of computers and the standards | 47 |
| The standards and storing patient information | 47 |
| Can health plans require changes or additions to the standard claim? | 47 |
| Companion documents to the standard implementation | 47 |
| A very strict set of standards | 47 |
| Code Sets | 48 |
| About HIPAA code set standards | 48 |
| About International Classification of Diseases, 9th Edition Clinical Modification, (ICD-9-CM), Volume 3 Procedures | 48 |
| About Drug Codes (NDC) | 48 |
| About Code on Medical Procedures and Nomenclature | 48 |
| About the combination of Health Care Financing Administration Common Procedure Coding System (HCPCS), as updated and distributed by HHS, and Current Procedural Terminology, Fourth Edition (CPT-4) Use of HCPCS Level 3 codes on a local basis | 49 |
| More information about the code sets | 49 |
| Computer Password selection tips | 50 |
