|  | Healthcare Industry | Healthcare Management

HIPAA Readiness Checklist

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires health-related organizations to follow certain guidelines when handling confidential patient health information. A HIPAA readiness checklist highlights the necessary provisions and procedures required for compliance with HIPAA law. Areas addressed involve system network planning and the measures to take to ensure the privacy and security of patient health information.

  1. Planning Guidelines

    • The overall purpose for a HIPAA readiness checklist is meant to simplify the administrative responsibilities involved in implementing a HIPAA-compliant process within an organization, according to Cicatelli Associates Incorporated. Planning objectives involve assigning an official HIPAA officer and team to oversee the implementation process. To ensure an organization-wide awareness of HIPAA requirements, a formal training program should be put in place to educate and train staff on standard procedures. Since the proper handling of patient health information is the overall focus, planning objectives include listing any and all processes--both technical and procedural--that interact with patient health information, according to the HIPAA News reference site. This includes identifying any business associates or agencies that engage in electronic transactions with an organization.

    Privacy Guidelines

    • In accordance with HIPAA privacy regulations, a readiness checklist identifies areas within the organization where procedures for patient privacy exist, according to HIPAA News. In keeping with current laws, patient authorization forms should correspond with the basic provisions under HIPAA and be made available in whatever languages are appropriate for the existing patient population. Official notices stating an organization's practices for handling patient information should also be posted and distributed to patients. Company policies for working with patient health records must address procedures for documenting, saving, distributing and discarding information. Another set of policies will be necessary for the company's human resource department in terms of how employee health information is handled.

    Security Guidelines

    • HIPAA security measures refer to an organization's system network, which handles most if not all of the patient health records, according to HIPAA News. The readiness checklist incorporates security issues in regard to system access, firewalls, anti-virus components and back-up systems. Organizational plans and procedures for disaster recovery, contingency planning and data storage are also requirements for compliance. Security policies must identify daily operational practices when working with patient health information by developing procedures for handling e-mail correspondence, workstation usage and system user authorizations. A means for auditing or tracking any changes or additions made to patient records are also addressed within the security checklist guidelines.

Healthcare Management - Related Articles