HIPAA stands for health and wellness tips Insurance Portability and Accountability Act. When I hear people talking about HIPAA, they are usually not talking about the original Act. They are talking about the Privacy Rule that was issued as a result of the HIPAA in the form of a Notice of Health Information Practices.
The United States Department of Health & Human Services official Summary of the HIPAA Privacy Rule is 25 pages long, and that is just a summary of the key elements. So as you can imagine, it covers a lot of ground. What I would like to offer you here is a summary of the basics of the Privacy Rule.
When it was enacted in 1996, the Privacy Rule established guidelines for the protection of individuals’s health information. The guidelines are written such that they make sure that an individual’s health records are protected while at the same time allowing needed information to be released in the course of providing health care and protecting the public’s health and well being. In other words, not just anyone can see a person’s health records. But, if you want someone such as a health provider to see your records, you can sign a release giving them access to your records.
So just what is your health information and where does it come from? Your health information is held or transmitted by health plans, health care clearinghouses, and health care providers. These are called covered entities in the wording of the rule.
These guidelines also apply to what are called business associates of any health plans, health care clearinghouses, and health care providers. Business associates are those entities that offer legal, actuarial, accounting, consulting, data aggregation, management, administrative, accreditation, or financial services.
Tool with which the plan sponsor can assess and continually work to improve the benefits offered by the group healthcare plan. Understanding what is in your record and how your health information is used helps you to:
Accommodate reasonable requests you may have to communicate health information by alternative means or at alternative locations. The plan will restrict access to personal information about you only to those individuals who need to know that information to manage the plan and its benefits. The plan will maintain physical, electronic, and procedural safeguards that comply with federal regulations to guard your personal information. Under the privacy standards, individuals with access to plan information are required to:
Safeguard and secure the confidential personal financial information and health information as required by law. The plan will only use or disclose your confidential health information without your authorization for purposes of treatment, payment, or healthcare operations. The plan will only disclose your confidential health information to the plan sponsor for plan administration purposes.
Communication with family. Under the plan provisions, the company may disclose to an employee’s family member, guardian, or any other person you identify, health information relevant to that person’s involvement in your obtaining healthcare benefits or payment related to your healthcare benefits.
Notification. The plan may use or disclose information to notify or assist in notifying a family member, personal representative, or another person responsible for your care, your location, general condition, plan benefits, or plan enrollment.
Business associates. There are some services provided to the plan through business associates. Examples include accountants, attorneys, actuaries, medical consultants, and financial consultants, as well as those who provide managed care, quality assurance, claims processing, claims auditing, claims monitoring, rehabilitation, and copy services. When these services are contracted, it may be necessary to disclose your health information to our business associates in order for them to perform the job we have asked them to do. To protect employee’s health information, however, the company will require the business associate to appropriately safeguard this information.
