Health Information
| You Decide | Activity | Assignment Responses | Part I | From the Chief Compliance Officer (CCO) perspective on HIPAA, contemplate the three basic areas which HIT professionals must be most concerned with are: (1) Privacy Rules
(2) Security Rules, and
(3) Standardized transaction code sets | Write a paragraph on each of the 3 critical areas of HIPAA for a training session of your staff. Explain what they are, why they are important and how they impact staff duties and the organization. | HIPAA Rules (1) A major goal of the Privacy Rule is to assure that individuals’ health information is properly protected while allowing the flow of health information needed to provide and promote high quality health care and to protect the public 's health and well-being. (2) The HIPAA Security Rule establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. (3) The HIPAA transactions and code set standards are rules to standardize the electronic exchange of patient-identifiable, health-related information. They are based on electronic data interchange (EDI) standards, which allow the electronic exchange of information from computer to computer without human involvement. | Part II | Leading experts in HIPAA implementation agree that the first step toward HIPAA compliance is to Inventory the organization’s data | Fill out the attached HIPAA inventory form for your organization. List the various departments from where you have retrieved data. Indicate how the data will be used. | Department HIPAA Inventory (1) Health Information Management Services: a. Ability to protect all the inpatient, outpatient, day surgery patient personal information in the private records, set
(2) Security Rules, and
(3) Standardized transaction code sets | Write a paragraph on each of the 3 critical areas of HIPAA for a training session of your staff. Explain what they are, why they are important and how they impact staff duties and the organization. | HIPAA Rules (1) A major goal of the Privacy Rule is to assure that individuals’ health information is properly protected while allowing the flow of health information needed to provide and promote high quality health care and to protect the public 's health and well-being. (2) The HIPAA Security Rule establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. (3) The HIPAA transactions and code set standards are rules to standardize the electronic exchange of patient-identifiable, health-related information. They are based on electronic data interchange (EDI) standards, which allow the electronic exchange of information from computer to computer without human involvement. | Part II | Leading experts in HIPAA implementation agree that the first step toward HIPAA compliance is to Inventory the organization’s data | Fill out the attached HIPAA inventory form for your organization. List the various departments from where you have retrieved data. Indicate how the data will be used. | Department HIPAA Inventory (1) Health Information Management Services: a. Ability to protect all the inpatient, outpatient, day surgery patient personal information in the private records, set
References: Boulder County Public Health. http://www.bouldercounty.org/find/library/jobsvolunteer/hipaatrain.pdf. Retrieved August 19, 2012. What nurses must know about HIPAA. www.mscc.edu/nursing/hippa.ppt . Retrieved August 19, 2012. HealthLeaders Media. Breach Prevention is Critical as HIPAA Compliance Worlds Collide. http://www.healthleadersmedia.com/page-1/TEC-246458/Breach-Prevention-is-Critical-as-HIPAA-Compliance-Worlds-Collide. Retrieved August 19, 2012.