CONFIDENTIALITY TRAINING

Joan M. Dempsey

MHA 690

Dr. Sherrie Lu

April 3, 2014

• The Harris-Equifax Health Information Privacy Survey

of 1993 showed that more than 80 percent of the

American public have high levels of concern about

personal privacy.

Simpson, R. L. (1994). Ensuring patient data, privacy, confidentiality and security. Nursing Management, 25(7), 18.

WHAT IS HIPAA

• Health Insurance Portability and

Accountability Act

HIPAA

• It is the law

• The law passed in 2006

• Ensured medical records, and medical personal information is protected

• This law is application to all patients in the healthcare system

WHAT SHOULD BE COVERED?

• Training in privacy

• security

• unsecured breaches

• Policy and regulations

• The affect the breach is to the healthcare orgaganization

WHY IS TRAINING IMPORTANT

• UCLA Medical Center has famous people that are hospitalized and the hospital has an

obligation to maintain their security of their private and healthcare information.

• Between January 2004 and June 2006 over 120 employees at UCLA looked at celebrity

medical records and personal information without permission

Fox News. (2008). Report Over 120 UCLA hospital staff saw celebrity health records. Retrieved from

http://www.foxnews.com/story/0,2933,398784,00.html

TRAINING

• All employees will receive initial training on HIPAA and confidentiality when they are first

employed and will be required to have yearly documented training.

• Why the yearly training?

• With the high number of celebrities that are hospitalized this is an investment that the

hospital can provide to the staff and patients that they are committed in patient

confidentiality.

• This will provide updated information to be reviewed

HIPAA COMPLIANCE OFFICER

• This will provide extra added information and documentation that the employees are

getting the initial and yearly training.

• The HIPPA Compliance Officer responsibilities:

• Monitor and document and have updated records or the training of all staff

WHAT TYPES OF TRAINING

• Lecture

• Online classes (this is essential when there is an update in the guidelines so that the

employees can get new laws of guidelines before next training

• Review of policy and procedures or the organization

• Videos that provides specific examples with roll playing

• Retraining if there is a violation

• Organization reminder of policy when there is a breach of violation

WHAT IS A BREACH?

• Viewing medical or personal patient information without the consent of the patient

• Sharing information with coworkers, family or friends

• Talking about the medical problems or healthcare information in front of other people not

related to the case

Wolper, L.F. (2011). Health care administration: Managing organized delivery systems (5th ed.). Boston: Jones

and Bartlett.

WHEN CAN YOU RELEASE INFORMATION

• Lawsuits

• Subpoena

• After death to the medical examiner and funeral director

• Inmate in custody – information can be passed on to the security staff and medical staff

so that they can provide continuity of care when they are released in the custody of law

enforcement officers.

EFFECTIVENESS OF TRAINING

• Testing

Each employee will be given a test after they receive initial and yearly training to

measure their knowledge and retention of the information

CONSEQUENCES OF VIOLATION

• Employee Discipline: Retraining, Suspension and/or termination

• Civil lawsuits and penalties for both organization and employee

• Criminal penalties with a potential of jail

REFERENCES

Fox News. (2008). Report Over 120 UCLA hospital staff saw celebrity health

records. Retrieved from http://www.foxnews.com/story/0,2933,398784,00.html

Simpson, R. L. (1994). Ensuring patient data, privacy, confidentiality and security. Nursing

Management, 25(7), 18.

Wolper, L.F. (2011). Health care administration: Managing organized delivery systems (5th

ed.). Boston: Jones and Bartlett.