Difference between revisions of "LII:HIPAA Compliance - LII 007 02. Who Needs to Comply?"

From LIMSWiki
Jump to navigationJump to search
Line 3: Line 3:


'''HIPAA Covered Entities''':
'''HIPAA Covered Entities''':
* Health Plans
 
* Healthcare Clearinghouses
[[File:HIPAA Course Insert 1.png]]
* Any Healthcare Provider who transmits health information in electronic form in connection with a transaction for which the Secretary of HHS has adopted standards under HIPAA


So covered entities are doctors, clinics, hospitals, dentists, nursing homes and pharmacies that transmit data electronically, as well as health plans, insurance plans and healthcare clearinghouses.<ref name="HHSPrivacy">{{cite web |url=http://www.hhs.gov/hipaa/for-professionals/privacy/laws-regulations/index.html |title=Summary of the HIPAA Privacy Rule |publisher=U.S. Department of Health and Human Services |accessdate=8 June 2016}}</ref>
So covered entities are doctors, clinics, hospitals, dentists, nursing homes and pharmacies that transmit data electronically, as well as health plans, insurance plans and healthcare clearinghouses.<ref name="HHSPrivacy">{{cite web |url=http://www.hhs.gov/hipaa/for-professionals/privacy/laws-regulations/index.html |title=Summary of the HIPAA Privacy Rule |publisher=U.S. Department of Health and Human Services |accessdate=8 June 2016}}</ref>

Revision as of 13:43, 8 June 2016

300 px

HIPAA compliance is highly important in the healthcare arena. Non-compliance can result in fines and other serious consequences. But who is actually bound by this law? HIPAA is comprised of two main segments, the Privacy Rule and the Security Rule. Those who must comply are called "covered entities". According to the HHS, these are:

HIPAA Covered Entities:

HIPAA Course Insert 1.png

So covered entities are doctors, clinics, hospitals, dentists, nursing homes and pharmacies that transmit data electronically, as well as health plans, insurance plans and healthcare clearinghouses.[1]

Healthcare Providers

Every health care provider (regardless of size) who electronically transmits health information in connection with certain transactions, is a covered entity. These transactions include claims, benefit eligibility inquiries, referral authorization requests, or other transactions for which HHS has established standards under the HIPAA Transactions Rule. Using electronic technology, such as email, does not mean a health care provider is a covered entity; the transmission must be in connection with a standard transaction. The Privacy Rule covers a health care provider whether it electronically transmits these transactions directly or uses a billing service or other third party to do so on its behalf. Health care providers include all “providers of services” (e.g., institutional providers such as hospitals) and “providers of medical or health services” (e.g., non-institutional providers such as physicians, dentists and other practitioners) as defined by Medicare, and any other person or organization that furnishes, bills, or is paid for health care.[1]

Business Associates

Others (Plans, etc.)

References

  1. 1.0 1.1 "Summary of the HIPAA Privacy Rule". U.S. Department of Health and Human Services. http://www.hhs.gov/hipaa/for-professionals/privacy/laws-regulations/index.html. Retrieved 8 June 2016. 
Retrieved from "https://www.limswiki.org/index.php?title=LII:HIPAA_Compliance_-_LII_007_02._Who_Needs_to_Comply%3F&oldid=25641"