WHO DOES HIPAA APPLY TO?
Any organization that transmits or maintains protected health information
either at their location or through a third party organization.
This includes:
Medical Providers
Health Plans
Clearinghouses
Employers
Public Health authorities
Life Insurance
Billing Agencies
Information Systems
Services Organizations
Universities
What Information is Protected?
Any health information that is individually
identifiable to a patient is protected by the HIPAA privacy rule. This includes
information in written, oral & electronic formats:
What is Involved in HIPAA Compliance?
Compliance with the HIPAA Administrative
Simplification will require your organization to meet the following
requirements:
Implement operation changes to ensure the security & confidentiality of
health information
Development of policies & procedures to facilitate HIPAA requirements by
having a manual in the office.
Notify patients of their rights under HIPAA & your organizations legal
responsibilities
Implement Administrative, Technical & Physical Safeguards to secure
electronic PHI
Transmit electronic transactions using HIPAA compliant formats (as adopted by
ANSI)
Obtain written assurances from vendors that they will safeguard health
information
Train members of the work force on HIPAA & the organization’s policies
& procedures.
