HIPAA (Health Insurance Portability and Accountability Act) is a federal law regulating the US healthcare system. It’s primarily purpose is to protect the privacy and security of our health/medical information (PHI: Protected Health Information) as well as give individuals certain inherent rights on that information.
The HIPAA regulations consist of two separate and distinct regulations:
HIPAA Privacy which involves protections from a people standpoint (employee training, policies and procedures, contracts, etc) &
HIPAA Security which involves protections for electronic data (federal information technology standards for healthcare)
Any organization or person who works in or with the healthcare industry or who has access to PHI (Protected Health Information) is going to fall under the HIPAA umbrella. This includes physicians, medical staff, hospitals, medical practices, medical students, pharmacies, durable medical equipment suppliers, answering services, collection agencies, marketing services, printers, IT and managed services, software companies
HOW ABADATA CAN HELP AND WHAT IS INVOLVED IN BECOMING HIPAA PRIVACY COMPLIANT?
1. Providing a HIPAA Awareness Training to all employees of the organization that have access to PHI
Part 1 is handled through our organizational training which allows you to roll out training to your employees as a self-paced online training that they can each take at their own schedule. The system trains, tests, and generates a 2 year certificate for compliance record keeping.
2. Implementing formal documents and controls for the organization to protect and safeguard PHI
3. Training of a compliance officer (someone in the organization who is going to take responsibility for HIPAA at your organization)
Parts 2 and 3 are handled by “compliance documentation kits “ While your designated compliance officer is implementing the required documents, they are also being trained through a “hands-on learn by doing” approach. The theory behind this method is if your compliance officer built it, they will be able to maintain it going forward.
Do you have questions?
We Can help
WHO NEEDS HIPAA? Any organization that provides products and/or services to healthcare providers, health insurance providers, employer group health plans, or other business associates.
Examples: Medical billing, Pharmaceutical Representatives, Document/Record storage, Insurance Brokers, TPAs, Software Companies, Collection Agencies, Attorneys, Answering services, Consultants, Actuaries, Medical Device Manufacturers, Marketing, Cleaning Services, Medical Couriers, Asset Recyclers, etc.
Hospitals, Private Clinics, Doctors, Physicians, Nurses, Medical Schools, Medical Students, Medical Office Staff, Pharmacies, Dentists, Chiropractors, Physical Therapists, Massage Therapists, Radiologists, Cardiologists, Hospice, Nursing Homes, Home Health, Durable Medical Equipment Providers, etc.