HIPAA Compliance 101

Legal Article Guide
By: Chris Tolamalu

What is HIPAA?

The U.S. Congress ordained the Health Insurance Portability and Accountability Act (HIPAA) in 1996. Title I of HIPAA protects health insurance coverage for workers and their families when they lose or change their jobs. According to title II of HIPAA, the Administrative Simplification (AS) provisions, requires the establishment of national standards for electronic health care transactions and national identifiers for providers, health insurance plans, and employers. The AS provisions also address the security and privacy of health data. The purpose of all these standards is to improve the efficiency and effectiveness of the nation's health care system by encouraging the widespread use of electronic data interchange in health care.

The AS provisions are applicable to only ‘covered entities’. Covered entities are those health care providers (e.g. doctors offices and hospitals) which engage in electronic transactions as per the HIPAA/EDI rules, health plans (which includes health insurance companies and employer-sponsored ‘group health plans’), and health care clearing houses.

Applying HIPAA Provisions

Certain key provisions need to be followed for HIPAA compliance. Individuals should be able to access their records and request correction of errors. Also, they should be informed about how their personal information will be used. The ‘protected health information’ (PHI) indicates that the information cannot be used for marketing purposes without the explicit consent of the patients in question. People should be able to ask their covered entities (which maintain PHI about them), to ensure that their communications with the patient are confidential. It should be possible for people to file formal privacy-related complaints to the Department of Health and Human Services (HHS) Office for Civil Rights. Covered entities should document their privacy procedures, however, they have discretion on what to include in their privacy procedure. Covered entities are required to designate a privacy officer and train their employees. Covered entities can use an individual's information without the individual's consent if the purposes is to provide treatment, obtain payment for services and to perform the non-treatment operational tasks of the provider's business.

Chris Tolamalu is interested in HIPAA compliance. See http://www.hipaacompliancejournal.com for more information.

Bookmark & Share Articles:

Related Articles:

  • Connecticut Employment Lawyers And Why You Need One
  • Criminal Defense Attorneys
  • Sexual Harassment Towards Men
  • Louisiana Real Estate Lawyers
  • Legal Considerations for Raising Capital
  • Information Linking Vioxx to Workers Compensation
  • Gem State Idaho Child Support
  • All About Child Molestation
  • Criminal Records Search
  • Disability Benefits and Power of Attorney

    • Leave a comment to HIPAA Compliance 101

    • Name (required)
    • Mail (required but not published)
    • Comment / Rate this hotel
      Terrible
      Fair
      Okay
      Good
      Excellent
    • Please enter:  

    No Responses to HIPAA Compliance 101

    Average Rating: (From 0 Votes)

    Search Thousands of Court Records

    Email to a friend
    Print this page
    View in PDF format

     RSS Legal Guide Feed

    Latest 5 Legal Guide

    • Louisiana Mesothelioma Lawyers
      Article by: Eric Morris
      Mesothelioma is a serious disease caused by breathing asbestos, which...
    • More Trucks On the Road
      Article by: Sara Goldstein
      Car accidents are bad enough. Accidents involving big rigs can...
    • Six Keys to Hiring a
      Article by: Anthony Castelli
      Choosing the right personal injury attorney is not difficult if...
    • How to Select a Lawyer
      Article by: Ira C. Miller
      Lawyers offer specialized knowledge and experience to help you through...
    • 3 Things To Know When
      Article by: Gerry Oginski
      Your client has accused a prominent doctor of malpractice. Her...