What is HIPAA? Heath Insurance Portabity and Accountability Act HIPAA is a federal statute that establishes national standards for medical privacy and the security of individual's health information.

Why ls HIPAA Necessary? es passed by Congress in response to growing concerns that technology advances and the increasingly complex manner in which health care services were delivered and were coordinated were resulting in, or could result in, risks to the privacy of an individuals information maintained by healthcare providers, health plans, and their various business associates. State statutes existed, however, few provided comprehensive, reliable standards and even fewer clear as to what patients' rights were to access information in their medical records.

What is the Objective of HIPAA? HIPAA'S objective extends Federal oversight to

• Assure health insurance portability
• Protect the privacy and security of individuals' health information
• Simplify the administration of healthcare financial and administrative transactions

What Are the Privacy Rule Requirements?

• Designate a Privacy Official
• Mandatory employee education on privacy policies and practices
• Implementation of administrative, technical, and physical safeguards to ensure privacy
• Policies and procedures for the protection of health information and individuals rights
• Complaint processes that accept and record patient complaints about the entity's information practices

What is a Notice of Privacy Practices?
The Notice of Privacy Practices describes how the client's clinical information may be used or disclosed and how they may get access to that information. The Notice of Privacy Practices must be given to each patient and must be posted at our buildings. Community Health and Education Services must make a good faith attempt to obtain written acknowledgement that the patient has received a copy of the Notice of Privacy Practices, or document the reason why an acknowledgement was not obtained.

What Is Protected Health Information (PHI)?
Protected Health Information (PHI): includes 18 categories of individually identifiable health information, which is created or received by a covered entity, transmitted or maintained in any form or medium, including paper records. Such information relates to the past, present, or future physical health, mental health or condition of an individual. PHI either identifies or could be used to identify the individual.

Any Individually identifiable health information transmitted or maintained by a covered entity used or disclosed for treatment, payment, or operations. It also Includes all electronic, written, or verbal patient information.

Examples of PHI:
Name of patient, relative, etc.
Geographic information (where they live)
Zip Code
Date of birth, admission, discharge
Telephone Number
Fax Number
Email address
Social Security Number
Medicaid Number
Any full-face photo image or comparable image
Vehicle ID/ Serial number
Any device lD number

DO NOT EVER POST ANYTHING ABOUT YOUR CLIENT ON THE INTERNET IN ANY FORM OR FASHION

What Are Some Things I Can Do to Protect Our Clients’ Privacy?

Treat all information as if it were about you or your family

Do not discuss anything about your client to anyone who is not a part of providing care

Do not discuss patient information with your family, friends, or other PCA’s not directly involved in the client’s care

Do not leave files, schedules, or computer screens containing patient information in plain view

Shred PHI before discarding

Access only information you need to do your job

Do not allow others to read over your shoulder

Do not allow family and friends to visit you while you are at work with a client

Do not hold telephone conversations regarding a client in an area where others can overhear