Maximizing Connectivity & Productivity

(HIPAA) Health Insurance Portability and Accountability Act

(HIPAA)  Health Insurance Portability and Accountability Act
HIPAA Title I deals with protecting health insurance coverage for people who lose or change jobs. 
HIPAA Title II includes an administrative simplification section which deals with the standardization of healthcare-related information systems.It is the Information Systems section what most people mean when they refer to HIPAA. Mandatory regulations are established that require extensive changes to the way health providers conduct business.In 2013 there was an update to the rule which HIPAA and greatly expanded the definition of who needed to be HIPAA compliant. Previously, only covered entities (such as doctors, hospitals, and insurers) were required to be HIPAA compliant.  The change required all entities that store, manage, record or pass Protected Health Information (we’ll just call it PHI from now on) to and from covered entities are also required to be HIPAA compliant.  These entities also known as business associates now fall under this governance.

There are four rules that govern what you do and how you do it

  • HIPAA Privacy Rule
  • HIPAA Security Rule
  • HIPAA Enforcement Rule
  • HIPAA Breach Notification Rule

What HIPAA protects more is the PHI (Protected Health Information) which is any information in a medical record that can be used to identify an individual, and that was created, used, or disclosed in the course of providing a health care service, such as a diagnosis or treatment.

Some examples of PHI are

  • Phone records
  • Blood test results
  • Billing information from your doctor
  • Email to your doctor’s office about a medication or prescription you need.
  • Appointment scheduling note with your doctor’s office
  • An MRI scan

Examples of Non PHI Records

  • Number of calories burned
  • Blood sugar readings w/out personally identifiable user information (PII) (such as an
  • account or user name)
  • Heart rate readings w/out PII

Healthcare Providers are hospitals, doctors, clinics, psychologists, dentists, chiropractors, nursing homes, and pharmacies are considered Healthcare Providers and need to be HIPAA compliant. Also Healthcare Clearinghouses who deal with patient’s health records need to be compliant.

Leave a Reply

You must be logged in to post a comment.

Mississauga, ON, Canada 905.607.3500