Difference between revisions of "LII:HIPAA Compliance - LII 007 00. Course Introduction"

From LIMSWiki
Jump to navigationJump to search
Line 2: Line 2:
In the U.S. healthcare industry there are two main regulatory laws: CLIA (Clinical Laboratory Improvement Amendments of 1988) and HIPAA (Health Information Portability and Accountability Act of 1996). The first is aimed at clinical laboratories and the second applies to the vast majority of healthcare settings (the exact specifications are described in Lesson 2, [[LII:HIPAA Compliance - LII 007 02. Who Needs to Comply?]]). This course is aimed at providing those required to comply with HIPAA some accurate and useful training. Indeed, HIPAA training is mandated in the law itself. This from the U.S. Department of Health and Human Services (([[HHS]]):
In the U.S. healthcare industry there are two main regulatory laws: CLIA (Clinical Laboratory Improvement Amendments of 1988) and HIPAA (Health Information Portability and Accountability Act of 1996). The first is aimed at clinical laboratories and the second applies to the vast majority of healthcare settings (the exact specifications are described in Lesson 2, [[LII:HIPAA Compliance - LII 007 02. Who Needs to Comply?]]). This course is aimed at providing those required to comply with HIPAA some accurate and useful training. Indeed, HIPAA training is mandated in the law itself. This from the U.S. Department of Health and Human Services (([[HHS]]):


'''Workforce Training and Management'''. Workforce members include employees, volunteers, trainees, and may also include other persons whose conduct is under the direct control of the [covered] entity (whether or not they are paid by the entity).<ref name="45CFR160.103">{{cite web |url=https://www.gpo.gov/fdsys/pkg/CFR-2007-title45-vol1/pdf/CFR-2007-title45-vol1-sec160-103.pdf |title=45 C.F.R. §160.103. (2013 HIPAA Omnibus Rule) |publisher=U.S. Department of Health and Human Services |accessdate=15 June 2016}}</ref> A covered entity must train all workforce members on its privacy policies and procedures, as necessary and appropriate for them to carry out their functions.<ref name="45CFR164.530">{{cite web |url=http://www.ecfr.gov/cgi-bin/text-idx?SID=28d0e67c8c8eed49253d4940e6a7d2e0&mc=true&node=se45.1.164_1530&rgn=div8 |title=45 C.F.R. §164.530 Administrative Requirements |publisher=U.S. Department of Health and Human Services |accessdate=15 June 2016}}</ref> A covered entity must have and apply appropriate sanctions against workforce members who violate its privacy policies and procedures or the Privacy Rule.
'''''Workforce Training and Management'''. Workforce members include employees, volunteers, trainees, and may also include other persons whose conduct is under the direct control of the [covered] entity (whether or not they are paid by the entity).<ref name="45CFR160.103">{{cite web |url=https://www.gpo.gov/fdsys/pkg/CFR-2007-title45-vol1/pdf/CFR-2007-title45-vol1-sec160-103.pdf |title=45 C.F.R. §160.103. (2013 HIPAA Omnibus Rule) |publisher=U.S. Department of Health and Human Services |accessdate=15 June 2016}}</ref> A covered entity must train all workforce members on its privacy policies and procedures, as necessary and appropriate for them to carry out their functions.<ref name="45CFR164.530">{{cite web |url=http://www.ecfr.gov/cgi-bin/text-idx?SID=28d0e67c8c8eed49253d4940e6a7d2e0&mc=true&node=se45.1.164_1530&rgn=div8 |title=45 C.F.R. §164.530 Administrative Requirements |publisher=U.S. Department of Health and Human Services |accessdate=15 June 2016}}</ref> A covered entity must have and apply appropriate sanctions against workforce members who violate its privacy policies and procedures or the Privacy Rule.''




Revision as of 14:37, 15 June 2016

Reason for the course

In the U.S. healthcare industry there are two main regulatory laws: CLIA (Clinical Laboratory Improvement Amendments of 1988) and HIPAA (Health Information Portability and Accountability Act of 1996). The first is aimed at clinical laboratories and the second applies to the vast majority of healthcare settings (the exact specifications are described in Lesson 2, LII:HIPAA Compliance - LII 007 02. Who Needs to Comply?). This course is aimed at providing those required to comply with HIPAA some accurate and useful training. Indeed, HIPAA training is mandated in the law itself. This from the U.S. Department of Health and Human Services ((HHS):

Workforce Training and Management. Workforce members include employees, volunteers, trainees, and may also include other persons whose conduct is under the direct control of the [covered] entity (whether or not they are paid by the entity).[1] A covered entity must train all workforce members on its privacy policies and procedures, as necessary and appropriate for them to carry out their functions.[2] A covered entity must have and apply appropriate sanctions against workforce members who violate its privacy policies and procedures or the Privacy Rule.


Scope

This course is based almost completely on first-hand materials from the U.S. Department of Health and Human Services and the actual Health Information and Portability Act of 1996 (HIPAA) law itself, rather than relying on tertiary interpretations and paraphrasing - although several other of these were taken into account to gather and present the fullest comprehension of the materials and their relevance for the Covered Entities it affects.

HIPAA-Trained upon completion

How it is put together and how it works

  1. "45 C.F.R. §160.103. (2013 HIPAA Omnibus Rule)". U.S. Department of Health and Human Services. https://www.gpo.gov/fdsys/pkg/CFR-2007-title45-vol1/pdf/CFR-2007-title45-vol1-sec160-103.pdf. Retrieved 15 June 2016. 
  2. "45 C.F.R. §164.530 Administrative Requirements". U.S. Department of Health and Human Services. http://www.ecfr.gov/cgi-bin/text-idx?SID=28d0e67c8c8eed49253d4940e6a7d2e0&mc=true&node=se45.1.164_1530&rgn=div8. Retrieved 15 June 2016. 
Retrieved from "https://www.limswiki.org/index.php?title=LII:HIPAA_Compliance_-_LII_007_00._Course_Introduction&oldid=25835"