Course Project †Privacy, Security & Confidentiality Training Essay

As we ar all aware the Medical Records segment has changed by leaps and bounds over the past 20 years with The wellness Insurance Portability and Accountability displace of 1996 (HIPAA) and The American Recovery and Reinvestment take on/The wellness Information Technology for sparing and Clinical wellness Act (ARRA/ take a crapECH) Act 2009 the face of sprout is forever changed. Told we as Health Information Professionals urinate a plethora of individual patients private breeding at our fingertip and it is predominant that we handle this education with the utmost care.During this training session we are deviation to go over some of the most important seclusion and guarantor components to insure that everyone knows what the rules are, and how to encourage the not only the patients tuition, but to a fault the HIT department and you as the HIT superior. Today we will cover the risque points on * Privacy, trade protection, and Confidentiality * Regulations that have im pacted hiding and surety measure * The Privacy direct The protective cover decree * HITECH Privacy and Security * HIM Role in Privacy, Security, and Confidentiality Privacy, Security, and Confidentiality It is our jobs as wellness data oversight (HIM) professionals to mark the privacy, security and confidentiality of our patients personal wellness tuition. This has been the fundamental principle for the wellness tuition profession throughout its fourscore year history.Today the HIM professional must continue to face the challenges of maintaining the privacy and security of the patient reading. Although this might sound like a naive task, it grows in complexity as data becomes more and more technical and is distributed through electronic dodges. The challenge of this responsibility has also increased collectible to the constantly changing legislative and regulatory environment.Regulations that have impacted privacy and security The two regulatory acts that have impacted the health information department the most are * The Health Insurance Portability and Accountability Act of 1996 (HIPAA) * The American Recovery and Reinvestment Act of 2009 (ARRA) * Modifications to the HIPAA Privacy, Security, and Enforcement Rules the Health Information Technology for Economic and Clinical Health Act Proposed Rule According to the Department of Health and Human Services (HHS) the major goal of the HIPAA privacy rule is to settle that individuals health information is properly protect while allowing the flow of health information needed to provide and promote high quality health care and to protect the publics health and well-being.The Rule strikes a balance that permits important habituates of information, while protecting the privacy of people who look care and healing. Given that the health care marketplace is diverse, the Rule is intentional to be flexible and comprehensive to cover the variety of uses and divine revelations that need to be addr essed. (Summary, 2003) Where HIPAA was written in an attempt to protect the patients medical records by luxurious regulation to address the patient confidentiality the HITECH Act added the necessary requirements concerning the privacy and security for the health information that is so frequently being passed through applied science in more diverse ways through third party administrators, occupancyes and individuals.With the rapidly growing use of technology it became necessary to write rules that would also address the information being sent to all championship associates as well. The Privacy Rule The privacy rule set the floor in the necessary safeguards to be implemented in defend health information (PHI) across all media. It protects individuals medical records and different individually identifiable health information created or received by individuals or others. It protects the individuals health information by regulating the circumstances under which covered entities w hitethorn use and disclose protect health information and by requiring that everyone have safeguards in place to protect the privacy of the information.In addition it states that covered entities are required to have contracts or other arrangements in place with business associates that perform functions for or provide services to the covered entity, and that required main course to protected health information to ensure that these business associates likewise protect the privacy of the health information. Lastly it gives individuals responsibilitys with respect to their protected health information, including rights to meditate and obtain a copy of their health records and to request corrections. The Security Rule The security rule applies only to protected health information in electronic form. It requires covered entities to implement veritable administrative, physical, and technical safeguards to protect this electronic information.And also that covered entities have contrac ts in place with their business associates that the business associates will appropriately safeguard the electronic protected health information they receive, create, maintain, or transmit on behalf of the covered entities. HITECH Privacy and Security The end of the HITECH act was to strengthen the privacy and security protections through * Extending privacy and security protections to business associates of covered entities * Establishing new limitations on the use and disclosure of protected health information for marketing and fundraising purposes * Prohibiting the sale of protected health information Requiring the consideration of a limited data set as the token(prenominal) necessary amount of information * Expanding individuals rights to access of their protected health information * Expanding individuals rights to receive an accounting of disclosures of their protected health information * Expanding individuals rights to obtain restrictions on certain disclosures of protecte d health information to health plans HIM Role in Privacy, Security and Confidentiality As the demands for health information become more diverse, health information management (HIM) professionals use their expertise to protect health information and ensure the right information is available to the right people at the right time.Successful privacy, security, and confidentiality programs depend on HIM professionals, the experts on the applicable rules and regulations who are arch(prenominal) in managing healthcare data. For example, HIM professionals ensure privacy and security programs meet regulatory requirements. Once a program is in place, HIM professionals use their expertise to manage and audit the program to ensure compliance. HIM professionals hold diverse roles such as organizational and corporate privacy officers, compliance officers, and are change agents in policy developing. Sample job descriptions include Privacy Officer and Security Officer. HIM professionals advocat e for strong privacy and security programs as electronic health record (EHR) systems are implemented and upgraded.HIM professionals provide the functional requirements for electronic health information, taking into account federal and state laws, including e-discovery, to ensure appropriate access, use, and disclosure of health information. HIM professionals also impact privacy, security, and confidentiality standards, laws, and regulations outside of their organization. Volunteering on state HIT and HIE initiatives, responding to public comments periods, and looking for ways to participate on standards development groups such as HL7 and HIEs are a few ways HIM professionals may influence and affect change. Organizations count on HIM professionals skill sets.The convergence of people, processes, regulations, structure, standards and system design is vital to the organization. Sound privacy, security, and confidentiality practices lead to more effective management of health informati on, contributing to safe, high-quality patient care. (AHIMA, 2011) Conclusion We as health information professionals are given the task of protecting thousands of individuals private health information every year. We have taken an oath to protect this information and to lay out the patient respect and reverence when relaying any amount of information to other individuals, be it an inside entity or a business associate. It is up to for each one of us to do our duty and insure that we follow the guidelines to the letter.We must be vigilant in our daily tasks as well as sightedness that we are constantly learning new things to help us do our job better. The Code of Ethics each HIM professional must bring together to states that The HIM professional has an obligation to demonstrate actions that reflect values, ethical principles, and ethical guidelines. The American Health Information Management Association (AHIMA) Code of Ethics sets forrard these values and principles to guide co nduct. The code is relevant to all regardless of their professional functions, the settings in which they work, or the populations they serve. These purposes strengthen the HIM professionals efforts to improve boilers suit quality of healthcare. (American Health Information Management Association Code of Ethics, 2011)