The HIPAA Privacy and Security Rules including enhancements from The HITECH Act of 2009 and the Omnibus Rule of 2013, and The CAN-SPAM Act of 2003. This is recommended for all employees of Call Center Organization having access to protected health information (PHI) and who need awareness training in HIPAA privacy and security rules. Targeted audience for this Course is any single individual who works for an organization that provides preventive, curative, promotional or rehabilitative health care services in a systematic way to patients, people, families or communities. The call center is a centralized office used for receiving or transmitting a large volume of requests by telephone. Different types of healthcare related call centers are for: Billing, Collection, Patient communication, Medical insurance, Dental insurance, Vision insurance, medical answering services.
Learning Objectives
- Agenda
- Overview of HIPAA
- HIPAA Act of 1996
- HIPAA Law Sections
- HIPAA Sections Flow
- Federal & State Law
- The HIPAA Privacy Rule
- Policies, Procedures & Forms
- Privacy Rule Requirements
- What information is covered?
- Individual Privacy Rights
- Privacy Breaches
- Privacy Rule Steps
- The HIPAA Security Rule
- Security Rule Requirements
- Security Rule Categories
- The HITECH Act
- HITECH Overview
- Breach Notification Requirements
- Business Associate Requirements
- Covered entities
- Provider
- Business Associates
- Health information
- Agreements & Contracts
- The Omnibus Rule
- Notice of Privacy Practices
- Authorization versus Consent
- Individual Privacy rights
- Permissible Activities
- Authorization Requirements
- Defective Authorizations
- Permissible Activities and Patient Options
- HIPAA, HITECH & The Omnibus Rule
- Increased Enforcement
- Civil Penalties (Effective 2/18/2010)
- Criminal Penalties
- Controlling the Assault of Non-Solicited Pornography And Marketing Act of 2003
- The CAN-SPAM Act
- The CAN-SPAM Act Legal Implications
- Summary
- Questions?