HIPAA Guidelines for Employees
The Health Insurance Portability and Accountability Act (HIPAA) of 1996 created standards of practice related to privacy of an individual's health information. Employees of covered entities must follow guidelines regarding the appropriate way to handle health information.-
Function
-
The two major aspects of HIPAA guidelines are the Privacy Rule and the Security Rule. The Privacy Rule addresses issues such as who is required to comply, which information is covered under HIPAA and how the protected information may be used or treated. The Security Rule focuses on the necessary safeguards, including "administrative, physical and technical" measures, that must be taken to protect and ensure security of electronic medical information.
Significance
-
HIPAA guidelines make it possible to protect an individual's health information, but still allow for health information to be used and shared when necessary to ensure a high quality of health care to each patient. In doing so, HIPAA guidelines protect public health and well being.
Considerations
-
Penalties for non-compliance with HIPAA guidelines are strict and are enforced and administered by the Department of Health and Human Services and the Office for Civil Rights. Violations can cost an organization or its employees a monetary fine and, in some cases, criminal penalties may be applied.
-