B&Ming about Freaking HIPPA!!!!!

ocr - the office for civil rights is responsible for implementing and enforcing the hipaa privacy regulation --info is found at their web site

hipaa:

purpose of the administrative simplification regulations

preamble and introducion--in html format---easy to read. indludes horror stories and why these regulations developed.

http://www.hhs.gov/ocr/part1.html

links to federal reg: choose html format if you do not have acrobat reader installed. scroll down to "view each section"

http://www.hhs.gov/ocr/hipaa/finalreg.html

general overview of regulations:

http://www.hipaadvisory.com/regs/finalprivacy/goverview.htm

-----------------------------

myths and facts about the hipaa privacy regulation

http://www.hipaadvisory.com/views/patient/myths.htm

hipaa - privacy faq

http://www.hipaadvisory.com/action/faqs/faq_privacy.htm#pat

------------------------

right to inspect and receive a copy of medical records is found under regulations at 164.524.

copy this hhs press release dated may 9, 2001 (has hhs agency seal) re obtaining copy of medical record

"ensuring patient access to their medical records. patients will be able to see and get copies of their records, and request amendments. "

http://aspe.hhs.gov/admnsimp/final/pvcfact2.htm

-------------------------------------------

texas medical privacy act adopts and expands the hipaa privacy regulations

easy format lists outline regs and location in law with comparison to texas law

http://www.law.uh.edu/healthlawperspectives/privacy/010830texas.html

------------------------------------

hipaa on the job: release of information under hipaa

http://www.ahima.org/journal/features/feature.0111.07.html

nurse interaction with family, friends requires different approach under hipaa

html file:

http://216.239.39.100/search?q=cache:bvk74wtbalic:www.ebglaw.com/article_560.pdf+nurse+interaction+with+family,+friends+requires+different+approach+under+hipaa+&hl=en&ie=utf-8

pdf file:

http://www.ebglaw.com/article_560.pdf

leave message here or pm me if interested in specific aspect of law or quesiton....work time constraint leaving me limited time on web these days. karen

edited links. karen

Thank you very much Karen. I/we appreciate the time you take to search this stuff out.

btw: this link doesn't work:

Nurse Interaction With Family, Friends Requires Different Approach Under HIPAA

http://216.239.39.100/search?q=cache:bVK74wTBAlIC:www.ebglaw.com/article_560.%20pdf+Nurse+Interaction+With+Family,+Friends+Require
s+Different+Approach+Under+HIPAA+&hl=en&ie=UTF-8

Fixed link. Karen

these are examples of privacy breeches cited that lead to regulations being passed, copied from: http://www.hhs.gov/ocr/part1.html

"examples of recent privacy breaches include:

* a michigan-based health system accidentally posted the medical records of thousands of patients on the internet (the ann arbor news, february 10, 1999).

* a utah-based pharmaceutical benefits management firm used patient data to solicit business for its owner, a drug store (kiplingers, february 2000).

* an employee of the tampa, florida, health department took a computer disk containing the names of 4,000 people who had tested positive for hiv, the virus that causes aids (usa today, october 10, 1996).

* the health insurance claims forms of thousands of patients blew out of a truck on its way to a recycling center in east hartford, connecticut (the hartford courant, may 14, 1999).

* a patient in a boston-area hospital discovered that her medical record had been read by more than 200 of the hospital's employees (the boston globe, august 1, 2000).

* a nevada woman who purchased a used computer discovered that the computer still contained the prescription records of the customers of the pharmacy that had previously owned the computer. the pharmacy data base included names, addresses, social security numbers, and a list of all the medicines the customers had purchased. (the new york times, april 4, 1997 and april 12, 1997).

* a speculator bid $4000 for the patient records of a family practice in south carolina. among the businessman's uses of the purchased records was selling them back to the former patients. (new york times, august 14, 1991).

* in 1993, the boston globe reported that johnson and johnson marketed a list of 5 million names and addresses of elderly incontinent women. (aclu legislative update, april 1998).

* a few weeks after an orlando woman had her doctor perform some routine tests, she received a letter from a drug company promoting a treatment for her high cholesterol. (orlando sentinel, november 30, 1997).

no matter how or why a disclosure of personal information is made, the harm to the individual is the same. in the face of industry evolution, the potential benefits of our changing health care system, and the real risks and occurrences of harm, protection of privacy must be built into the routine operations of our health care system."

these stories are why hipaa regulations were developed...to protect our privacy.

Especially like this article:

Student Nurses Pose HIPAA Challenges: De-Identification, Minimum Necessary

http://www.aishealth.com/Compliance/Hipaa/RMCStudentnurses.html

Bizarre Experiences With Excluded MDs Show Value of Background Checks

http://www.aishealth.com/Compliance/ResearchTools/RMCBizarreExperiences.html

Billing Mid-Level Providers as MDs Alleged in Hospital Case; Issue Heats Up

http://www.aishealth.com/Compliance/ResearchTools/RMCBillingMidlevel.html

More articles on Medicare Compliance Strategies

http://www.aishealth.com/Compliance/HIPAAResource.html