Objectives of the Presentation
This webinar for HIPAA Covered Entities and Business Associates will cover:
Why Should you Attend
- A clear explanation of the simple 3 Step HIPAA Safe Harbor that protects Covered Entities and Business Associates acting on their behalf from liability related to Patient Engagement by unencrypted email and text messaging
- What makes an email or text message subject to HIPAA law?
- A clear explanation of how HIPAA defines PHI - it's not just information about, for example, a diagnosis, disease, surgery or prescribed treatment
- How a 2015 Federal Communications Commission Order about health care text messages added to confusion and what it really means - the 3 Step HIPAA Safe Harbor is the only text message Safe Harbor for Covered Entities and Business Associates
- The interconnected liability of Covered Entities and Business Associates that provide unencrypted electronic patient engagement services like appointment reminders - and both can protect themselves
- A clear explanation of the HIPAA Rules that apply to Health Care Provider Web Sites and Social Media
- How to keep your Web Site and Social Media dynamic, effective and follow simple HIPAA Rules
- HIPAA Rules for Web Sites and Social Media are clear, unequivocal and easy to follow. It only takes one look at a Health Care Provider's Web Site or Social Media page to find violations
- What to look for on your Web Site or Social Media site -how to identify violations - and how to fix them
- How to use advice from marketing professionals in a way that complies with HIPAA. Remember it is the Covered Entity who is responsible for HIPAA compliance - and liable for violations
- Patient Reviews? What Health Care Providers should, should not and must not do
Patient Engagement is the foundation of quality patient care and MACRA-MIPS Quality Payment Program reimbursement. The Internet, web sites, social media, email and text messaging are indispensable patient engagement tools. New patients increasingly rely on Internet-based reviews to choose a health care provider. HIPAA Rules apply to all these new electronic patient engagement tools but are widely violated putting Covered Entities unnecessarily at risk. The HIPAA Rules are easy to follow, step-by-step when you know the steps.
HIPAA Rules for web sites, social media and patient reviews are older dating to the original Privacy Rule that became effective in 2003. However, they have been overlooked and subject to highly visible violations. This webinar will explain the HIPAA requirements and the simple safeguards for compliance.
Who will Benefit
- Hospital Trustees
- C-Suite Executives
- HIPAA Compliance Official
- HIPAA Privacy Officer
- HIPAA Security Officer
- Health Information Technology Supervisor
- Practice Manager
- Risk Manager
- Physical Therapist
HIPAA Rules for sending Protected Health Information (PHI) by unencrypted electronic transmission are clear - and new. The first became effective with the HIPAA Omnibus Rule (September, 2013) followed by important guidance from the U. S. Department of Health and Human Services in 2014 and 2016. The new HIPAA Rules and a widely misunderstood 2015 Federal Communications Commission Order will be explained clearly and simply.
Appointment reminders, healthcare instructions, patient satisfaction surveys, health and wellness newsletters and recall reminders are just a few patient engagement tools sent electronically by regular (unencrypted) email and text messaging.
A simple 3 step HIPAA "safe harbor" that frees Covered Entities and Business Associates from any responsibility or liability for unauthorized access to Protected Health Information (PHI) in unencrypted emails and text messages during transmission and after receipt by the patient.