|
|
HIPAA Training
Download this list.
| EDA |
COURSE TITLE |
| 230-0469 |
HIPAA: Overview of the Legislation |
| |
INTRODUCTION
The final regulations establishing federal privacy protections for personal health information required under the Health Insurance Portability and Accountability Act (HIPAA) have been signed into law. The requirements address privacy, access to information, and administrative simplification. This program's presenter provides an overview of HIPAA and discusses strategies for beginning the compliance process.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Discuss the history and origin of HIPAA.
2. Define the acronym HIPAA.
3. Discuss the difference of a covered entity vs. a non-covered entity.
4. Identify from a list of elements those that are required by a covered entity. 5/01 Rev. 5/02
|
| 230-0515 |
HIPAA: An Opportunity to Evaluate Your Potential for Risk |
| |
INTRODUCTION
Today, organizations everywhere are focusing more closely on their potential for risk. Knowing where to begin and what to look at is often the most challenging part of this task. Healthcare organizations have an advantage in this process due to the requirements of the Health Insurance Portability and Accountability Act (HIPAA) of 1996. Among other stipulations, these federal regulations require all covered entities to complete a gap analysis of their systems and policies. By capitalizing on the administrative processes needed to achieve HIPAA compliance, an organization can reap unexpected benefits. By viewing these requirements as an opportunity to assess readiness for other potential exposures, healthcare professionals are better able to meet the needs of the regulations and have a framework for other potential areas of risk.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Define the intent of the HIPAA Security and Privacy Regulations.
2. Identify the appropriate members of the risk assessment task forces to achieve best practice, not just HIPAA compliance.
3. Identify who should be involved in the risk assessment process, both internally and externally.
4. Describe how to conduct a HIPAA risk assessment.
5. Identify ways to use HIPAA compliance as an opportunity to excel. 4/02
|
| 280-0233 |
The HIPAA Privacy Overview |
| |
INTRODUCTION
Healthcare providers have a duty and responsibility to keep resident information confidential—a federal law requires it. Failure to adhere to the provisions of the Health Insurance Portability and Accountability Act of 1996 can result in fines and penalties.
People often ask why this is necessary since confidentiality is the cornerstone of healthcare. However, recent studies indicate that many individuals believe that a member of the healthcare profession has violated their privacy. All members of the healthcare team, not just physicians and nurses, must keep health information confidential. Anything healthcare practitioners hear, see, or create in the course of their jobs must remain confidential.
Unlike the requirements of other regulatory bodies, the rules and sanctions imposed by this regulation are not just applicable to the healthcare institution. The intent of the law was to ensure that all individuals involved in the care of residents recognize their own responsibility for maintaining privacy and confidentiality of the protected health information (PHI) to which they have access. To ensure that this is the case, the rules require formal education of all employees and volunteers in the components of HIPAA as well as mandating that fines and penalties for violations be applied to the individual who may commit a breach.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Identify the rationale behind the creation of federal privacy rules.
2. Identify the components of the privacy rules.
3. Identify the impact of the privacy rules on daily practice.
4. Identify components of the security rule that impact privacy. 11/02
|
| 280-0234 |
HIPAA Privacy FAQ |
| |
INTRODUCTION
Section § 164.530 of the HIPAA administrative requirements states: “A covered entity must train all members of its workforce on the policies and procedures with respect to protected health information required as necessary and appropriate for the members of the workforce to carry out their function within the covered entity.” Part 1 of this series provided a vehicle to introduce your staff to the basic premises of security and privacy and provided you with examples as to why these rules are necessary. Part 2 of the series, this program addresses frequently asked questions related to HIPAA privacy.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Demonstrate a basic understanding of the HIPAA requirements.
2. Explain some of the most frequently asked questions about HIPAA.
3. Describe the importance of staff education in the process of HIPAA compliance.
4. Discuss the widespread impact of HIPAA on the healthcare community.
5. Define some of the common terminology used in HIPAA. 12/02 |
| 202-0232 |
HIPAA: Protecting Confidentiality Part I |
| |
INTRODUCTION
Patients have the right to confidentiality of personal information. Today, with the Health Insurance Portability and Accountability Act (HIPAA) regulations, confidentiality is receiving heightened emphasis. This program's presenter discusses confidentiality and answers the questions: How can confidentiality and privacy be protected? What are the consequences if confidentiality is breached?
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Discuss how the ethics of confidentiality originated.
2. Discuss the Health Insurance Portability and Accountability Act.
3. Describe the role of the CNA in maintaining resident confidentiality.
4. Define communication. 5/02 |
| 202-0233 |
HIPAA: Protecting Confidentiality Part II |
| |
INTRODUCTION
Part 2 of this series offers a detailed review of the Health Insurance Portability and Accountability Act (HIPAA) and how it pertains to privacy. This program's presenter discusses what constitutes a breach under the new rules, reviews the consequences for non-compliance, and describes how easy it can be to "break the law."
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Discuss the goals of Congress in passing HIPAA.
2. Discuss what your rights are in terms of your own protected health information.
3. Differentiate between consent and authorization.
4. Recognize the consequences of not protecting resident confidentiality. 6/02
|
| 230-0529 |
HIPAA: Identifying and Contracting with Your Business Associates |
| |
INTRODUCTION
The intent of the HIPAA Security and Privacy Regulations is to require covered entities to protect and secure the protected health information (PHI) they create or receive. Health care is a complex industry with many relationships among its members and businesses outside of health care. As a result, PHI may be disclosed to those over which the HIPAA regulations have no authority. The regulations do, however, recognize the need for specific business relationships within and outside the healthcare industry. These relationships are Defined as Business Associate relationships. These agreements must be in writing, must contain specific language, and must provide the covered entity with satisfactory assurances that the PHI they disclose will be protected. Covered entities must accurately Identify and enter into agreements with those associates to meet the intent of the regulations. Further, since the actions of business associates relating to PHI are generally considered to be the actions of the covered entity who engaged them, covered entities must not take the challenge presented by this piece of the HIPAA puzzle lightly and must begin now to implement these agreements. The requirements are so specific that existing contracts will not meet the requirements under HIPAA.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Discuss the intent of the HIPAA Security and Privacy Regulations.
2. Define a business associate.
3. Identify who is and who is not considered a business associate.
4. Explain the responsibilities of a covered entity regarding monitoring the compliance of business associates.
5. Explain how to develop and implement a business associate agreement.
6. Identify how to handle situations that do not require a business associate agreement. 7/02
|
| 230-0492 |
HIPAA: Which Comes First – Operations or Compliance? |
| |
INTRODUCTION
As healthcare providers, we are aware of our responsibility to maintain the confidentiality of patient information. Federal legislation will soon mandate that all patient-identifiable information be kept secure, confidential, and private. The Health Insurance Portability and Accountability Act (HIPAA) not only provides for sanctions against institutions but also stipulates penalties for individuals who access or disclose personal health information on anything other than a need-to-know basis. Healthcare executives are faced with the challenge of developing and implementing policies and procedures to ensure HIPAA compliance. The importance of effecting change that is congruent with the organization's mission and culture cannot be overemphasized or overlooked. By looking at HIPAA compliance as a chance to achieve best practice, an organization can reap unexpected benefits. It is possible to meet this challenge; you just have to know what to look for and where to look.
LEARNING OBJECTIVES
After completing this activity, the participant should be able to:
1. Discuss the intent of the Health Insurance Portability and Accountability Act.
2. Identify the workable HIPAA project structure for his or her organization.
3. Identify who should be involved in the HIPAA compliance process internally and externally.
4. Describe how to develop strategies that ensure top down buy-in.
5. Discuss how to conduct an HIPAA risk assessment.
6. Identify ways to incorporate HIPAA compliance into daily operations. 10/01
|
|
|