New Guidance on De-Identifying Protected Health Information under HIPAA
Faculty :
Industry :
Duration :
Course Description:
This 90 minute session on "New Guidance on De-Identifying Protected Health Information under HIPAA" will be addressing the ins and outs of identifying what is and what is not PHI, proper ways to disclose this information, common sense security methods.
The HIPAA de-identification standard is meant to balance the importance of making data available and protect the privacy of the individual's information. This webinar provides guidance on how to ensure that data is “de-identified”. It also offers methods and approaches to achieve de-identification in accordance with the HIPAA Privacy Rule.
What we can and can't do under HIPAA relating to disclosures, and how to properly investigate a breach (or a suspected breach). We will also be addressing how practice/business managers (or compliance offers) need to get their HIPAA house in order before the imminent audits occur.
This session will also address major changes under the Omnibus Rule and any other applicable updates relating to protected health information Additional areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. The primary goal is to ensure everyone is well educated on what is myth and what is reality with this law, there is so much misleading information all over regarding the do's and don'ts with HIPAA - Mr. Brian will add clarity for compliance officers.
Mr. Brian will uncover myths versus reality as it relates to this very enigmatic law based on over 1000 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life litigated cases I have worked where HIPAA is being used to justify state cases of negligence -THIS IS BECOMING A HUGE RISK! In addition, this course will cover the highest risk factors for being sued as well as being audited (these two items tend to go hand in hand).
Why should you Attend?
Are you clear on what constitutes identifiable health information vs none identifiable health information? It can be very confusing and frustrating to say the least. Since the HIPAA Omnibus Final ruling, the Federal government has expanded the definition of what constituted PHI.
- Is your staff trained to understand the new risks and definitions?
- Do you have written policy in place relating to this?
- Do you have an affective HIPAA compliance program?
- New laws and funding mean increased risk for both business associates and covered entities!
- HIPAA Omnibus -Do you know what's involved and what you need to do?
- What does Omnibus mean for covered entities and business associates?
- Why should you be concerned?
- Court cases that are changing the landscape of HIPAA and patient's ability to sue!
TRIAL ATTORNEYS ARE MORE DANGEROUS THAN THE FEDERAL GOVERNMENT!!
It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to what we need to do as compliance officers. You need to know how to avoid being low hanging fruit in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT or internal administrative practices.
Areas Covered:
- What is PHI
- What constitutes identifiable PHI
- What is "de-indentified" PHI
- How to investigate a possible breach and conclude whether the incident constituted a breach or not
- How to properly notify if a breach occurs
- Requirements of Compliance Officers
- Real life litigated cases
- BYOD
- Portable devices
- Business associates and the increased burden
- Emailing of PHI
- Texting of PHI
- Federal Audit Process
- HIPAA and suing -how this works
- Risk Assessment
- Best resources
Who will benefit?
This webcast will be of a valuable assistance to the below audience.
- Practice Managers
- MD's and other Medical Professionals
- Any business associates who work with medical practices or hospitals (i.e. billing companies, transcription companies, IT companies, answering services, home health, coders, attorneys, etc)
Companies/Organizations
- Private practice
- Hospitals
- Billing companies
- Transcriptions companies
- Home health groups
- Health insurance
- Ambulatory
- IT companies
- Attorneys
Registration Options
Tags
HIPAA, SAMHSA, Portable Devices, SAMSHA Vs HIPAA, HIPAA 2021, HIPAA Law, HIPAA Rules, 42 CFR Part 2
Speaker Details
Brian L Tuttle
Health IT & Compliance Consultant
Brian L Tuttle is a Certified Professional in Health IT (CPHIT), Certified HIPAA Professional (CHP), Certified HIPAA Administrator (CHA), Certified Business Resilience Auditor (CBRA), Certified Information Systems Security Professional (CISSP) with over 20 years experience in Health IT and Compliance Consulting.
Refund Policy
Participants/Registrants for our live events, may cancel up to 72 hours prior to the start of the live session and ComplianceTrain will issue a letter of credit to be used towards any of ComplianceTrain's future events. The letter of credit will be valid for 12 months.
ComplianceTrain will process refund in cases where the event has been cancelled and is not rescheduled within 90 days from the original scheduled date of the webinar. In case if a live webinar is cancelled, participants/registrants may choose between recorded version of the course or a refund. Refunds will not be processed to participants who do not show up for the webinar. A webinar may be cancelled due to unavoidable circumstances, participants will be notified 24 hours before the scheduled start of the event. Contact us via email: admin@ComplianceTrain.com
