WHO SHOULD PARTICIPATE: Compliance officers, privacy and security officers, health information management leadership and staff, information security, and patient relations, as well as staff who are involved in patient and staff communications, information management, and privacy and security of protected health information under HIPAA.
OVERVIEW: This session will explore the requirements for various policies under the Health Insurance Portability and Accountability Act (HIPAA) and present a way of organizing policies to facilitate their use and maintenance. The speaker will describe typical policy content processes for policy adoption, will explain regular review and identify sources for sample policy content and guidance. Additionally, the presenter will provide an outline for HIPAA policy organization, including a framework of categories of policy types and the typical policy elements that would occur in each category. The policies will be organized into six categories, including: 1) the Information Privacy and Security Management Process policy; 2) the Information System User policy; 3) the Access Control policy; 4) the Information Security Incident Management policy; 5) the policy on uses and disclosures of protected health information (PHI); and 6) the policy on individual rights and HIPAA.
At the conclusion of this session, participants will be able to:
- Discuss the topics that should be represented in a set of HIPAA policies;
- Organize policies into logical groupings to simplify finding and using them;
- Differentiate between policies and procedures, what belongs in each, and how often they should be reviewed and updated;
- Describe the essential elements of policies, and how to adopt them; and
- Plan for reviews of HIPAA policies on a regular basis.
MEET YOUR FACULTY: Jim Sheldon-Dean, Lewis Creek Systems, LLC
Jim Sheldon-Dean is a frequent speaker regarding HIPAA, including participating in speaking engagements at numerous national healthcare association conferences and conventions, and the annual NIST/OCR HIPAA Security Conference. He has more than 16 years of experience specializing in HIPAA compliance; more than 34 years of experience in policy analysis and implementation, business process analysis, information systems and software development; and eight years of experience as a Vermont-certified volunteer emergency medical technician.
Registrations are due into the LHA office one week prior to the webinar in order to ensure timely delivery of instructions and handout.
Log in online to register. VISA, Master Card, Discover or American Express are accepted. Email confirmations will be sent to all registrants who list an accurate email address. Webinar materials are provided 1-2 business days in advance of the webinar. Once webinar materials are distributed no refunds will be issued and full payment is expected.
Cancellations received in writing up to one week prior to a scheduled event will be charged a cancellation fee of $40 (per person, per event). Registrants who are unable to attend an LHA educational event are permitted to, and encouraged to send a substitute without incurring a cancellation fee. Please send written notice of any substitutions prior to the scheduled event. Cancellations received less than one week prior to the scheduled event, or individuals who fail to attend will result in a non-refundable registration fee.
Transfer requests must be in writing and received one week prior to the event to receive a credit to use at a later date. A $40 transfer fee will be charged. The LHA will hold your credit for a period of one year following the start date of the program for which you were originally registered. Transfer requests received less than one week prior to event will result in a non-refundable registration fee.
AMERICANS WITH DISABILITIES ACT:
The LHA will make every effort to provide reasonable accommodations for physically-challenged participants who require special services. When registering, please attach a written description of needs to the application.