While the basic provisions of privacy for protected health information are well known, their application in today’s health care world is complex – so much so the HIPAA laws require a Privacy Officer for your health care organization as a covered entity.
HIPAA’s many security rules regarding protected health information first involve the person designated as a Privacy Officer. These federal requirements extend not only to covered entities but to business associates of covered entities.
What is the difference between a HIPAA Compliance Officer, a Privacy Officer, and a Security Officer? Can the health care entity combine functions and job duties? Are these three separate jobs, or are they three jobs in one?
The current trend requires the covered entity to stay on top of continuing changes to HIPAA and a growing responsibility, expanded job duties, and a greater time and resource demands focused on patient confidentiality and digital security by the Privacy Officer.
This webinar covers the job responsibilities of the Privacy Officer, the intended qualifications, and tips and techniques for carrying out these increasing privacy functions.
Erase the fear, uncertainty, and doubt about exactly how a health care entity may designate, identify, and use the Privacy Officer to ensure compliance with on-going HIPAA privacy requirements in a complex, ever-changing health care world. Find out how the HIPAA Privacy Officer can succeed.
Webinar Agenda
This informative webinar begins with the most basic of questions: Does HIPAA mandate a Compliance Officer, Privacy Officer, and Security Officer? Find out the answer and examine how the privacy rules of HIPAA require covered entities and health care providers, including business associates, to identify and to designate a person whose title is Privacy Officer to lead the organization with regard to patient confidentiality.This is mandated by federal administrative regulation.
Specifically, this webinar includes a detailed look at examples of the duties and qualifications of the Privacy Officer.
Further, this webinar reviews a comprehensive list of job duties applicable to the Privacy Officer.
Uncertainty exists when faced with strict laws covering required HIPAA compliance. Erase the fear, uncertainty, and doubt by reviewing how the health care organization must comply with HIPAA as to privacy via its Privacy Officer.
This webinar is thus an advanced overview of some of the most important aspects of the organization’s Privacy Officer.
Webinar Highlights
Problems and solutions:
While the basic provisions of privacy for protected health information are well known, their application in today’s world of electronic and personal communication devices is complex – such as texting, e-mailing, and using personal devices such as smart phones and tablet computers. In addition to HIPAA rules, various state licensure laws exist to require confidential information be kept confidential.
This is more important than ever in our new work-from-home and mobile society.
Many security rules regarding protected health information involve how and when protected health information is to be kept confidential and not accessible to others outside of direct patient care. But what is protected health information? Can communications not involving such protected health information be transmitted by non-confidential and non-secure methods? Is even a patient name protected health information?
The ability to text or e-mail health care practitioners and other staff and patients has become a priority for many health care entities and practitioners, especially solo health care practitioners with limited support staff. Maintaining patient privacy and confidentiality is necessary to make sure covered entities meet compliance standards of HIPAA and state licensure laws.
Although e-mailing and texting are convenient for the health care practitioner and patient, these communication methods have security risks and inherent pitfalls. Implementing e-mail and text solutions in the health care setting is a complex issue and several factors must be addressed.
Join this informative webinar by our expert speaker Mark R. Brengelman who will erase the fear, uncertainty, and doubt about exactly how a health care practitioner may use modern texting and e-mailing, both within their own health care organization or facility and to the outside world of patients. Find out how these communications may or may not be required to be retained by the health care practitioner.
Problems and solutions:
Bonus: Examining website confidentiality and privacy disclaimers for the health care practitioner with their own website about how communications are handled.
Webinar Objectives
Webinar Agenda
This informative webinar begins with the most basic of questions: Does the HIPAA Privacy Rule permit health care providers to use e-mail to discuss health issues and treatment with their patients?
Find out the answer and examine how the privacy rules of HIPAA allow covered entities and health care providers to communicate electronically, such as through e-mail or texting, with their patients and with other health care practitioners, but only provided those health care practitioners apply reasonable safeguards when doing so. This is mandated by federal administrative regulation.
Specifically, certain precautions need to be taken when using e-mail to avoid unintentional disclosures, such as checking the e-mail address for accuracy before sending or sending an e-mail alert to the patient for address confirmation prior to sending the message.
Further, while the HIPAA privacy rules do not prohibit the use of unencrypted e-mail for treatment-related communications between health care providers and patients, other safeguards should be applied reasonably to protect privacy, such as limiting the amount or type of information disclosed through the unencrypted e-mail. The health care practitioner may include the least amount of protected health information in an unencrypted e-mail.
In addition, covered entities must make sure any transmission electronically of protected health information follows the HIPAA Security Rule requirements of federal law.
Patients have the right under the HIPAA privacy rules to request and have a covered health care provider communicate with them by alternative means or at alternative locations, if reasonable. For example, a health care provider should accommodate an individual’s request to receive appointment reminders via e-mail, rather than on a postcard, if e-mail is a reasonable, alternative means for that health care practitioner or provider to communicate with the patient.
However, if the use of unencrypted e-mail is unacceptable to a patient who requests confidential communications, other means of communicating with the patient, such as by more secure electronic methods, or by mail or telephone, should be offered and accommodated. The patient may also designate a particular e-mail address to use, such as the patient’s personal e-mail and not their work e-mail.
Patients may even initiate communications with a health care practitioner or other provider using e-mail. If this situation occurs, the health care provider can assume (unless the patient has explicitly stated otherwise) that e-mail communications are acceptable to the individual. This is implied consent and implied usage.
If the health care practitioner or other provider feels the patient may not be aware of the possible risks of using unencrypted e-mail, or has concerns about potential liability, the provider can alert the patient of those risks, and let the patient decide whether to continue e-mail communications.
Uncertainty exists when faced with strict laws. Erase the fear, uncertainty, and doubt by reviewing how patient consent and communication practices can be updated to allow for specific means of electronic communication.
Further erase the uncertainty, fear, and doubt about what other laws, such as state licensure laws, apply to the confidentiality of patient protected health information. Review further some examples of specific state licensures laws that apply to electronic communications that may be stricter than even HIPAA itself.
This webinar is thus an advanced overview of the many rules, both by HIPAA at the federal level and in state licensure laws, that govern e-mailing and texting with patient and with other health care practitioners.
This advanced webinar examines the role of social media violations by employees of health care facilities, here a hospital. More importantly, how and when may a health care facility be liable for HIPAA violations of its own employees? This webinar applies to hospitals and other health care facilities.
Erase the fear, uncertainty, and doubt about how a hospital may – or may not – be liable for HIPAA violations by its own employees and whether that misconduct is or is not within the scope of employment for which the hospital will be financially liable.
Find out how two similar legal cases in state court involving hospital employees’ HIPAA violations can have quite different outcomes. Employment remedies are easy against hospital workers who violate HIPAA privacy – they simply get fired. But what about the liability attached to the hospital itself?
This webinar gives the basics of HIPAA privacy as applied to hospitals and employees, with a review of standard social media rules and glaring examples of HIPAA violations for blatant social media abuses. Next, this webinar examines two landmarks -- but divergent – recent state court cases on hospital liability for employee HIPAA violations and social media.
Take a deep dive into how one hospital escaped liability, and another did not. In order to limit liability, this webinar covers employment best practices for social media rules. Finally, the attendees will learn tips and techniques to avoid hospital liability for its employee’s social media violations.
Webinar Objectives
Webinar Agenda
Employees who violate HIPAA in social media misuse simply get fired. But what happens when the employer, the hospital or other health care entity, is sued for money damages along with the fired employee? Learn how employee social media violations of HIPAA can cause financial ruin for their employing hospital.
Webinar Highlights
In the post Roe vs. Wade health care world, heath care practitioners must understand how HIPAA privacy applies to their medical records of abortion, as well as the law enforcement exceptions which may swallow the rule. Join this critical webinar by health care attorney, Mark R. Brengelman as it starts with some basic HIPAA privacy requirements then diverts to a review of the law enforcement exceptions that allow state civil investigative agencies and criminal prosecutors to exploit HIPAA rules for various law enforcement purposes to obtain medical records of abortion.
Mark will also focus on a particular section on the unique aspects of mental health records and how therapists are vulnerable to court orders or search warrants for their records where patients may have discussed unplanned pregnancies and their plans for an abortion in a state where it is lawful.
Webinar Agenda
Webinar Highlights
This webinar starts with some basic HIPAA requirements then diverts to a review of state licensure laws that allow state investigative agencies to exploit HIPAA exceptions for various law enforcement purposes. Attendees should have a basic understanding of HIPAA and how state agencies investigate for alleged violations of law.
This webinar reviews core privacy requirements of HIPAA then covers in detail the ways state licensure boards and agencies use the authority of state law to cover HIPAA exceptions and gain access to your patient records. This webinar shows how state agencies use state law in concert with HIPAA exceptions to conduct government-lead investigations.
These exceptions can also be used by federal agencies in the same way.
What authority exists in state law to do so? How does that mesh with the federal law requirements and privacy mandates of HIPAA? What do you do when the government comes calling for protected health information on your patient? Or on all your patients? And because you are in trouble? What do you do when you are under investigation.
Gain a firm understanding of how state law authorizes state licensure boards and agencies to use HIPAA exceptions to gain access to your patients’ protected health information when you are under investigation. Know the state authority under its police powers to protect the health, welfare, moral, and safety of the public in various health care context.
The basic provisions of privacy and security for protected health information are well known. They serve to protect health information of the patient from prying eyes. Yet many exceptions exist that allow state licensure boards and other government agencies to exploit federal HIPAA exceptions to gain access to your patients’ protected health information in the course of an investigation by a state or federal agency.
Why would this happen? Because you are in trouble, and your very license to practice your chosen profession is under investigation and is on the line.
Examine the law enforcement purposes of a civil nature as applied to both the federal and state government and its law enforcement activities where civil investigations are underway that can result in both criminal and civil consequences.
Erase the uncertainty and doubt that exists when the health care practitioner is confronted with a state agency demand for information because you are in trouble and under investigation.
Continue an in-depth focus and find out in this informative webinar that arms you with a more complete knowledge of the HIPAA privacy exceptions for law enforcement purposes of a civil nature as applied to state licensure boards and agencies with jurisdiction over your license to practice your chosen profession.
Webinar Agenda
Webinar Highlights
Who Should Attend
Mark holds Bachelor’s and Master’s degrees in Philosophy from Emory University and a Juris Doctorate from the University of Kentucky. Retiring as an Assistant Attorney General, he now represents: Health care professionals Two government ethics commissions, and Parents and kids in confidential child abuse and neglect cases, termination of parental rights, and adoption proceedings. Mark is a frequent continuing education presenter including national organizations around the country. He helps his clients navigate the law and ethics and make the rules understandable as applied to them. Mark has worked for all three branches of government and now a municipality with the…
Read MoreDate | Conferences | Duration | Price | |
---|---|---|---|---|
Jan 22, 2025 | Patient communication: Part of the medical record, or not? Does confidentiality still apply? | 60 Mins | $199.00 | |
Jan 08, 2025 | HIPAA Today: The Top FAQs You Need to Know and Why to Stay Out of Trouble | 60 Mins | $199.00 | |
Aug 28, 2024 | How To Avoid HIPAA Penalties And Fines: How Lack Of Just One Thing Punished A Covered Entity | 60 Mins | $199.00 | |
Aug 28, 2024 | Why HIPAA Is Important? Understand The Tier Wise Sanctions & Penalties Including Emailing, Texting & Use of Personal Devices | 120 Mins | $349.00 | |
Mar 05, 2024 | E-mailing, texting, and the use of personal devices by health care professionals – HIPAA and privacy Myths vs Reality | 60 Mins | $199.00 | |
Dec 09, 2022 | When is a Healthcare Practitioner subject to Subpoena Administratively - How HIPAA can be used for you or against you? | 60 Mins | $199.00 | |
Nov 08, 2022 | State Licensure Laws Applicable To Doctors Who Prescribe Scheduled Drugs - Latest Updates | 60 Mins | $199.00 |