HIPAA Regulations for the Lay Person
HIPAA is set by the U.S. Department of Health and Human Services (HHS). This rule sets policy regarding disclosure of individuals' health information. The OCR, or the Office of Civil Rights, ensures compliance and enforcement of HIPAA.-
History
-
Created in 1996, HIPAA is the Health Insurance Portability and Accountability Act. This act requires the HHS Secretary to publish standards regarding security, privacy and electronic transfer of personal health information. HIPAA is accompanied by the Privacy Rule "Standards for Privacy of Individually Identifiable Health Information."
Function
-
HIPAA is meant to allow health care entities to share patient information for the sake of providing quality care, while also protecting the patents' privacy (personal health information).
Significance
-
Information is protected no matter what media form it is in, whether electronic, paper, or oral. The protected Information includes the following:
- Past, present and future physical/mental health
- Health care services rendered to the patient
- Past, present and future payment for health care services
Considerations
-
Only specific entities are required to follow HIPAA. These entities include health care plans, health care providers, health care clearinghouses and business associates of such entities.
Consumer Rights
-
HIPAA gives consumers rights to request records and reports, to make corrections, to give permission and to file complaints regarding the transfer of their health information.
-