HIPAA Curriculum Outline
HIPAA Privacy Rules
Overview/DescriptionPersonal privacy is now a major issue to people, particularly where medical information is concerned. This course presents an overview of HIPAA (the Health Insurance Portability and Accountability Act), outlining the main components and identifying who is covered by the act. The course examines the privacy provisions under HIPAA for patients and employees involved with covered entities. Under HIPAA, covered entities are now expected to provide notification to individuals before the routine use of health information. HIPAA offers patients the right to a copy of their medical records, to request amendments to them if necessary, and to know the history of disclosures. This course helps covered entities recognize the key provisions of HIPAA, how their organizations are affected by HIPAA, and how the privacy rules impact upon them. The course also explains their notification requirements and the penalties of noncompliance. SkillSofts Legal Compliance courses are developed and maintained with subject matter support provided by the Labor, Employment, and Employee Benefits Law Group of the law firm of Sheehan Phinney Bass + Green PA
Target AudienceManagers, supervisors, and all employees
Expected Duration1 Hour
Lesson Objectives:Overview of HIPAA - Identify the main provisions of HIPAA
- Recognize the key subcomponents of the HIPAA Administrative Simplification provision
- Match the covered entity as defined by HIPAA to its definition
- Recognize examples of covered entities using the HIPAA rules
Privacy Rule - Identify a health plans responsibilities regarding the Privacy Rule under HIPAA
- Recognize the benefits to individuals provided by the Privacy Rule
- Identify how the Privacy Rule safeguards Protected Health Information
- Identify the elements of health information that must be protected in a given scenario
- Identify the main requirements for a Notice of Privacy Practices document
- Identify the penalties a company faces if it fails to comply with its obligations under the Privacy Rule
- Recognize the impact of HIPAA penalties upon covered entities who do not comply
- Identify how to file a health information complaint with the Office for Civil Rights
Back to ListHIPAA: Electronic Health Data Transactions
Overview/Description
Congress designed the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Administrative Simplification Rules to create shared data standards for health care providers, health plans, and information clearinghouses. These common standards make it easier to provide adequate care for patients, process insurance claims, and send and receive payments for health services. By using a single set of standards for exchanging electronic data, health care organizations can share health information more quickly and at a lower cost. This course is designed to help the learner comprehend the implications of implementing HIPAA data transaction rules. The course includes a lesson which presents basic concepts of electronic data interchange (EDI) and how EDI principles will be applied to health related business transactions. Another lesson describes the structure of technical transaction standards used in HIPAA administrative simplification rules. This course is designed to provide a managerial perspective on transaction standards. However, the course includes links to documents programmers or systems analysts will need to create or alter software to comply with HIPAA regulations.
Target Audience
The courses in this series cover a variety of subject areas that affect all employees with an emphasis on management and human resource personnel who need to understand and implement compliance policies.
Expected Duration
1.5 hours
Lesson Objectives:
Electronic Data Interchange
Identify benefits of using electronic data interchange to transmit and receive health-related information. Identify examples of the primary characteristics of an electronic data interchange environment. Match transaction types that must be transmitted in standard format with the category to which each belongs. Health Information Transaction Data
Identify benefits of applying HIPAA transaction standards to health-related data. Match standard transaction components to their descriptions. Match examples to the components of the detail segment of a standard transaction. Match data code sets with definitions of their uses in standardized transactions. Match unique identifiers used or proposed to be used in standard transactions to their definitions. Back to ListHIPAA: Evaluating the Impact of the Privacy Rule
Overview/Description
Employees and managers need to become more aware of the information they disclose about employees and who receives it. HIPAA applies to health information in all formats--including electronic transfers, documents, and spoken communications. Managers and staff will need to use new forms to track the way they use and disclose confidential information, and theyll need to implement changes at the workplace. This course helps employers evaluate the impact of HIPAA privacy requirements upon their organizations. It teaches them which practices they will need to change and whether they may qualify for certain exceptions. In addition, this course will help employers develop strategies to meet requirements by assessing the gap between what is required by the privacy rule and their organizations current practices. The course will advise them what is involved in adopting new procedures and fulfilling administrative responsibilities.
Target Audience
Employers who sponsor health insurance programs
Expected Duration
2.0 hours
Lesson Objectives:
Privacy Rule Applicability
Recognize the value of determining whether an organization is a covered entity under HIPAA. Match the employers role as plan sponsor with the resulting HIPAA privacy rule obligations. Evaluate factors to determine an organizations obligations under the privacy rule. Identify examples of business associates that are bound by privacy rules. Assessing Compliance with Privacy Rule Requirements
Recognize the benefits of being able to assess an organizations level of compliance with privacy rule requirements. Match examples of privacy forms, policies, and procedures with the relevant issues under the privacy rule. Sequence examples of the proper steps to assess the gap between what will be required by the privacy rule and the organizations current practices. Select examples of the components required in a privacy rule compliance plan. Back to ListHIPAA: Implementing Privacy Rules
Overview/Description
The Health Insurance Portability and Accountability Act (HIPAA) mandates how healthcare plans, providers, and clearinghouses store and transmit individuals health information. Implementation of and compliance with the HIPAA privacy rules is mandatory. These rules present significant challenges to the day-to-day operations of organizations involved in the healthcare industry. Organizations that dont change internal procedures to comply with HIPAA regulations risk significant fines. This course offers a practical guide to implementing and complying with the HIPAA privacy rules. The course helps healthcare professionals, managers, and staff personnel understand HIPAA regulations and how to implement the changes required for compliance.
Target Audience
Professionals, managers, and personnel who need to implement privacy regulations under the Health Insurance Portability and Accountability Act (HIPAA)
Expected Duration
1.5 hours
Lesson Objectives:
Preparing Your Staff and Associates
Recognize the value of preparing managers, staff, and business associates to comply with HIPAA privacy regulations. Choose correct examples of how privacy training topics might be presented to employees. Select examples of procedures required to achieve compliance with business associate provisions. Changing Processes and Procedures
Recognize the value of changing processes and procedures to comply with HIPAA requirements. Identify examples of privacy rule documentation requirements for covered group health plans. Identify the stages for resolving access issues and complaints. Match the stages (receiving, evaluating, and responding) for resolving access issues and complaints with examples. Identify the progressive disciplinary actions for violations of privacy policies. Back to ListHIPAA: Securing Protected Health Information
Overview/Description
Congress designed the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Administrative Simplification Rules to make it easier for healthcare providers, insurance companies, and information clearinghouses to provide adequate care for patients. By using a single set of standards for exchanging electronic data, healthcare organizations can send and receive health information more quickly and at a lower cost. However, standardizing the electronic language of healthcare data creates a threat to a patients privacy rights. The law includes specific safeguards for patients health information. The law that establishes these rules does not place any specific requirements on employers. However, many employers sponsor healthcare insurance plans for employees and share protected health information about employees with organizations covered by the new rules. Employers must protect themselves against liability under the new rules by ensuring the confidentiality, integrity, and availability of electronic protected health information it holds about employees. Companies must protect against reasonably anticipated threats to the security or integrity of health information and guard against uses or disclosures of protected information that are not allowed under the law. This course describes precautions employers should take when complying with HIPAA Administrative Simplification rules. The course explores specific standards set within HIPAA rules and legally-mandated implementation standards as well as areas where the law allows flexibility in adopting the new rules.
Target Audience
The courses in this series cover a variety of subject areas that affect all employees, with an emphasis on management and human resource personnel who need to understand and implement compliance policies.
Expected Duration
2.0 hours
Lesson Objectives:
Administrative Safeguards for Data Security
Recognize the value of complying with the Security Standards prescribed by HIPAA Administrative Simplification Rules. Match organizational safeguards for data security under the Administrative Safeguards section of the HIPAA Security Standards with examples. Select examples of implementations of workforce standards for data security required under the Administrative Safeguards section of the HIPAA Security Standards. Identify business associate contract provisions that address security requirements of HIPAAs Administrative Safeguards. Protecting Data
Recognize the benefits of providing physical and technical safeguards for protected health information. Match standards for providing physical safeguards for protected health information to examples. Recommend actions to improve implementation of physical safeguard standards for protecting PHI in a hypothetical company. Match technical safeguard standards required under the HIPAA security rules for protected health information with examples. Back to List
HIPAA
The Health Insurance Portability and Accountability Act, or HIPAA, was enacted by Congress in 1996, mandating compliance on how
healthcare plans and providers store and transmit individuals' health information. The law includes specific safeguards for the
privacy of patients' health information. Compliance with the HIPAA rules is the minimum implementation expected of any organization
or entity dealing with personal health information.
Personal privacy is now a major issue to people, particularly where medical information is concerned. Under HIPAA, covered
entities are now expected to provide notification to individuals before the routine use of health information. HIPAA offers patients
the right to obtain a copy of their medical records, to request amendments to them if necessary, and to know the history of disclosures.
These rules present significant challenges to the day-to-day operations of organizations involved in the healthcare industry as they
must seek to maintain a balance between maintaining privacy for an individual and availability of health information for qualified
personnel. Organizations that don't comply with at least the minimum of HIPAA regulations risk significant fines and the possibility
of addition legal repercussions, insuring that any entity using personal health information must always guard the privacy of their
clients or face the consequences.
SkillSoft's Legal Compliance courses are developed and maintained with subject matter support provided by the Labor, Employment,
and Employee Benefits Law Group of the law firm of Sheehan Phinney Bass + Green PA.
Let CBT Direct’s Online training for HIPAA Compliance show you what you need to know to insure your organizations HIPAA compliance!
Benefits of CBT Direct’s Online HIPAA Compliance Training
CBT Direct boasts the most beneficial online training on the market. With CBT Direct’s online training, you have the flexibility to
study on your schedule, and with the speed and reliability of the internet, CBT Direct’s HIPAA Compliance training course is accessible
anywhere you have an internet connection. Convenience finally costs less with CBT Direct - the most affordable online training solution
today.
The unique design of CBT Direct’s HIPAA Compliance course emphasizes learner initiative, self-management and experiential learning.
CBT Direct’s online course design begins with the definition of user-focused performance objectives and then proceeds to the selection
and implementation of instructional strategies and learning activities appropriate for those objectives. This effective instruction
model for CBT Direct’s HIPAA Compliance training course ensures the greatest level of comprehension and retention.
Who Benefits from CBT Direct’s HIPAA Compliance Training?
Professionals, managers, and personnel who need to implement and maintain privacy regulations under the Health Insurance
Portability and Accountability Act.
What Professionals Will Learn from CBT Direct’s HIPAA Compliance Training
The training will begin by providing an overview of the Health Insurance Portability and Accountability Act, including review of the
key subcomponents of the Administrative Simplification provision, and listing the covered entities as defined by HIPAA guidelines.
The Compliance course will provide students with the details of a health plan’s responsibilities regarding the Privacy Rule,
listing the benefits to individuals as well as showing how the Privacy Rule safeguards Protected Health Information. Students will
learn the elements of health information that must be protected, and go over the main requirements of the Notice of Privacy Practices
document. In addition, learners will identify the penalties a company faces if it fails in compliance of its obligations under the
Privacy Rule. Click here to see a detailed curriculum outline.
Students will come to understand the benefits of using electronic data interchange to transmit and receive health-related data,
learning the primary characteristics of the electronic data interchange environment and matching transaction types that must be
transmitted in a standard format to its respective category.
The program will review the benefits of applying HIPAA transaction standards to health related data, reviewing the standard
transaction components to their descriptions and matching the unique identifiers used in compliance with the privacy standards.
Professionals will learn what organizations are regarded as covered entities under HIPAA guidelines, evaluating factors to
determine an entity’s obligation under the privacy rules and which business associate are bound as well.
The training will show users how to assess their compliance with the Privacy Rules Requirements, sequencing the proper steps to
assess the gap between what is required and the current practices and selecting the components required for a privacy rules compliance
plan.
The course will show users how to prepare the staff and associates to comply with HIPAA privacy regulations, providing privacy
training topics that can be presented to employees and giving examples of procedures required to achieve compliance with business
associate provisions.
Users will be provided examples of privacy rules documentation requirements for covered group health plans, learning the stages
for resolving access issues and complaints as well as identifying the progressive disciplinary actions for violations of the privacy
policy.
Professionals will review administrative safeguards for data security as prescribed by the Administrative Simplification Rules.
Students will come to understand an entity’s safeguards for implementation of workforce standards, as well as business associate
contract provisions to address security requirements and compliance with HIPAA’s Administrative Safeguards.
In closing, the compliance training will go over the benefits of providing physical and technical safeguards for protected health
information, matching the standards for providing physical and technical security features to the appropriate section of the HIPPA
compliance rules for protecting personal health information.
Let CBT Direct’s Online training for HIPAA Compliance give you the expertise you need to insure compliance with the HIPAA standards!
HIPAA
