Catalog Number : ncd1868
Title : HIPPA Changes and Office of Civil Rights New Guidance Memo
Speaker : Sue Dill

Webplay Recording Date : 2-11-2014
Webplay Price : $ 200 for two weeks viewing

Webinar Overview:

The Office of Civil Rights (OCR) released the long awaited final regulations that affect four things; the privacy law, the security law, the HITECH rules and Genetic Information Nondiscrimination Act (GINA). These became effective September 23, 2013. These mean big changes to hospitals. This document was 563 pages long and is referred to as the mega rule. The penalties have increased.

There are many changes to the HITECH law including the new standard that will replace the “harm standard.” Changes have been made for the use and disclosure of medical record information, commonly referred to as protected health information (PHI).

Target Audience

• HIPPA Privacy and Security Officers, In-house legal Counsel, Compliance Officer, Risk Management, Senior Leadership, CNO, CMO, Nurses, Nurse Educators, Physicians, Director of HIM, Medical Records Staff, Patient Safety Officer, CFO, Systems Managers, Operational Directors, Hospital Patient Advocate and anyone involved in providing privacy issues with patient under HIPAA and preventing breach of confidentiality

Webinar Objectives:

• Describe that hospitals need to rewrite their Notice of Privacy Practices which is provided to patients
• Recall that hospitals will have to rewrite their policies and procedures to comply with the new HIPAA changes
• Discuss that hospitals will no longer conduct a “harm analysis” to determine if the patient’s medical record information (PHI) has been breached
• Recall that staff should be trained on the new HIPAA requirements
• Describe the four penalties that apply if one violates HIPAA

Webinar Agenda/Outline:

• Introduction
• OCR Model NPP (Notice of Privacy Practices)
• OCR Business Associate Sample Contract
• Office for Civil Rights and HIPAA
• Topics discussed in Final Rules
• Topics not addressed in the Final Rules
• History
• How to locate a copy of the final rule
• Revised Notice of Privacy Practices
• New penalties and enforcement
• Patient rights to receive an electronic copy of their medical records
  • Exceptions, cost
  • Access to protected health records
  • HIPAA compliant authorization form
• PHI of deceased patients
  • OCR Guidance
• Revision of hospital policies and procedures
• Staff education
• Changes to the Breach Notification Rule
  • Definition of breach
  • No longer to do a “harm analysis”
  • Four objective factors to determine if PHI is compromised
  • Document the risk assessment o Exceptions
• Marketing, fundraising and the sale of PHI
  • Definitions
  • Exceptions
  • Case managers, care coordination
  • What costs are permitted
  • OCR Guidance on Refill Reminders and Marketing
• Immunization records
  • OCR Guidance
• GINA Genetic Information Nondiscrimination Act
• Relationship to the CMS hospital CoP grievance standard
• CMS Hospital Memo on Privacy and Confidentiality

Additional bonus slides will include the following even though it will not be covered in this webinar.

• Business Associates and BA Agreements
  • Definition
  • Subcontractors of BA Associates are Subject to HIPAA
  • Hospital will need new BA agreement o Many changes
• Research

Full tuition is refunded immediately on request if the participant has not been sent the program materials and instructions. Once the instructions (including access codes) have been sent, a full refund will be issued only after the program runs and it is verified that the participant did not access the program.