Legal Flashcards
HIPPA
Health Insurance Portability and Accountability Act
Goal of the Security Rule
Protect privacy of people while allowing entities to adopt new technologies and improve patient care
Minimum Necessary Rule
Limit access to personal health info without sacrificing the quality of health care
Safeguards - 3 categories
- Administrative- Policies, processes, documentation process
- Technical- Electronic, hardware, software
- Physical- video, locks, server location
Administrative Safeguard
- Security management process
- Security personnel
- Info access mgt
- Workforce training and management
- Evaluation*
Physical Safeguards
- Facility access and control
* Workstation and device security
Technical Safeguards
- access control
- audit control
- Integrity control- policy/procedure
- transmission security- unauthorized access over electronic network
HIPPA privacy and security
*Coaches have 100% responsibility to follow all state and federal laws governing security, privacy and confidentiality of e-PHI (electronic protected health information)
*All client files encrypted and protected
*On a dedicated computer we only have access to
*Client info safe and documented for 6 years unless state, federal jurisdiction has other requirements
Office locked
file cabinet locked
coding of client PHI
Must have proof of HIPPA training
Posting of privacy policy to each client
crisscross shredder
Process of documentation for release of client info to authorized persons
vendors need to be hippa compliant