National Seminars Group
Employer's Guide to HIPAA Privacy Compliance On-Site Training
How the Health Insurance Portability and Accountability Act (HIPAA) impacts your business and your employees
You’ll learn …
- How HIPAA applies to employees … and to you
- The fundamentals of HIPAA’s Privacy Rule
- The specific circumstances when you can disclose a person’s information without prior consent
- Exactly what the HIPAA security rules are—and who they apply to
- How to educate your employees on the relationship between noncompliance and their use of social media
- The importance of identifying who in your company is allowed access to sensitive employee health information and who definitely isn’t
- And much more critical information to keep your company free of violations and out of court
HIPAA is not just for health care providers. Every employer, HR staff member, IT provider or manager with access to employee data, health or insurance information is liable for its security.
For small business owners, company executives or human resources managers not involved directly in the medical profession, it’s one of the most stressful questions they can ask themselves: “Am I 100 percent sure that all my employees are complying with HIPAA laws?” If you can’t say with certainty that your people, processes and safeguards are compliant, you could be facing huge fines and maybe even jail time if something goes wrong.
That’s why we created this unique one-day training event—for employers that aren’t necessarily in the medical profession to learn how they, too, are impacted by the HIPAA laws and could be a target for legal action. And because the chance for slipups and noncompliant activities is many times greater when HIPAA regulations aren’t at the top of your employees’ minds.
You’ll return to work armed with a plan to self-audit your procedures for the risk of noncompliance, educate your employees about why it is crucial that they act in a compliant manner and walk through the possible ramifications for them and the company if they don’t.
Join us for a crash course on the fundamentals of HIPAA privacy regulations!
Why do YOU need this critical training?
We’ve all been exposed to the regulations surrounding the Health Insurance Portability and Accountability Act (HIPAA), from standing in line at the local pharmacy to checking in at the doctor’s office.
But HIPAA regulations don’t just apply to doctor’s offices and hospitals. They apply to anyone who comes into contact with sensitive employee, customer or patient information … whether it’s an intern in human resources or the person who gathers bins of paper documents that need to be shredded in an office building.
Does anyone in your company touch any of the following employee or client information?
If so, you could be liable under HIPAA regulations.
- Dates directly related to an individual
- Phone or fax numbers
- Email addresses
- Account numbers
- Social Security numbers
- Medical record numbers
- Health insurance beneficiaries
- Web uniform resource locators (URLs)
- Internet protocol (IP) addresses
- Full face photographic images
- Any other unique personal identifiers or characteristics
HIPAA privacy compliance never takes a day off and must be monitored vigilantly. However, we also realize that you have a lot on your plate. That’s why we created this training to only take one day of your time and to make it as enjoyable as it is impactful. Join us and take one much-needed day out of the office to learn and network with your peers. You’ll get recharged about HIPAA privacy laws, and your organization will be better off with the compliance knowledge you bring back with you. It’s a win-win for everyone. Don’t wait … enroll today.
Program hours: 9:00 a.m. – 4:00 p.m.
Understand How HIPAA Applies to Employers
- Identify what employee health care information falls under HIPAA protection
- Learn how civil and criminal penalties for violations are determined—and how to avoid the most common violations
- What HIPAA requires of employers in order to protect employees’ medical privacy rights
- Understand how the 2009 economic stimulus package, the American Recovery and Reinvestment Act (ARRA), significantly expanded HIPAA’s privacy and security regulations
- Recognize and accommodate allowable employee requests for personal health information
- Social media and HIPAA—understand the dangers employers face and how to educate employees
- Additional obligations for employers that self-fund or self-insure employee health care benefits
- HIPAA’s Privacy Rule “Procedural Requirements” for group health plans
The HIPAA Privacy Rule
- Determine your organization’s risk level and ensure that you’re meeting the requirements of HIPAA’s Privacy Rule
- Understand the Privacy Rule’s “minimum necessary” standard
- Learn exactly what is considered “personally identifiable health information”
- The 6 principal rights of patients under the Privacy Rule
- Identify who is—and who is not—allowed access to employee medical and health care records
- Circumstances when gossip could be considered a HIPAA violation
- Identify all of the touchpoints your company has with employee health information and make certain you’re doing what’s required
- How to avoid unintentionally creating compliance obligations
- Privacy requirements and health care flexible spending accounts—how to correctly manage and protect this information
Disclosure of Information
- HIPAA requirements and disclosure of employee health care information in relation to the ADA, FMLA and workers’ compensation
- Identify and understand the 4 categories of uses and disclosure of health information
- Health care benefit plans and contractual agreements: How to ensure the protection of employee health care information when working with insurers, plan administrators, insurance brokers, consultants, cost-management groups and others
- Understand what an incidental disclosure is and the rules concerning it
- Special rules for using Protected Health Information (PHI) in areas not directly related to health care
- Instances where you can disclose information without prior consent of the employee
- HIPAA-required amendments employers must agree to make if receiving employee PHI in connection with managing a group health plan
- The purpose and advantages of having an individual “valid authorization”
Records Distribution, Retention and Destruction
- Understand what the HIPAA Security Rule is and what it applies to
- Learn the correct way to handle physical security when it comes to documents and files
- Guidelines for using computer security to ensure privacy
- How to protect employee health care information—and safeguard your business from costly penalties and fines
- Security guidelines for safely disposing of secure documents
- Policies and procedures for protecting electronic and online records
- Security breach notification requirements—what employers are required to do when a breach occurs
- How to avoid employee theft and negligence of PHI and what to do if it occurs