1 Malpractice Issues for the Radiologic Technologist Carol Ann Marunich, Esquire Dinsmore & Shohl LLP 215 Don Knotts Boulevard, Suite 310 Morgantown, West Virginia X Dinsmore & Shohl LLP
2 Medical Malpractice Issues Technique/Positioning Patient Care HIPAA Medical Malpractice Process
3 Technique Requisition Form What is purpose of exam? Is it for general findings or specific review of organ?
4 Requisition form Retention policy of requisition form Kept in chart Discarded
5 Case Study Requisition for OB Complete Ultrasound Requirements for OB Complete exam Example - 4 chamber heart, and other organs Requirements for OB Limited exam Example amniotic fluid index or fetal positioning Lawsuit filed for inadequate exam
6 Case Study After gallbladder exam, technologist wrote on requisition form her impression that there were gallstones in gallbladder. Radiologist confirmed diagnosis. Pathology revealed no stones and lawsuit filed!! Moral: Don t diagnose or tell patient your impression of findings.
7 Technique Mammogram Annual (general) vs. Spot exam
8 Technique Quality of films Need to get good visual fields Clarity of films Reduce need for patient to return Reduce exposure levels for patient
9 Technique Quantity of films Make sure proper positioning for different views for accurate diagnosis Reduce need for patient to return Reduce exposure levels for patient
10 Patient Care Know hospital or facility policy on removing Bi-pap mask, IVs, etc. Comfort measures Watch out for giving water or food (crackers) to patient that is NPO Unhappy patients make complaints!!!
11 Case Study Allegation of x-ray tech removing Bi-pap mask where alleged patient experienced brain injury due to decreased levels of oxygen $$ paid to patient
12 Patient Care Slips/Falls Caution with elderly patients or patients with injuries to legs/feet or not stable on feet. $$ paid to patients on slip/fall cases
13 Patient Care Intoxicated Patients Beligerent Patients
14 Treating Minors Treating Minors How old is patient? If patient is a minor, informed consent must be obtained from his/her parent or legal guardian
15 Treating Minors Parental consent needed unless Patient is emancipated or considered a mature minor. An emancipated minor is one who is over the age of 16 and is married or has been declared emancipated by a court of law.
16 Treating Minors Mature Minors One who is between ages AND in the opinion of the attending physician the minor is of sufficient maturity to understand the nature and effect of that which he/she is being asked to consent.
17 Treating Minors An emancipated minor OR a mature minor may consent to admission, treatment and procedures without the consent of his/her parent or legal guardian.
18 Treating Pregnant Minors For the purpose of treatment of pregnancy (including prenatal care), venereal diseases or drug/alcohol abuse, parental consent is NOT required!!!!!
19 Treating Minors In circumstances where an emergency situation exists and the physician feels that waiting for parental consent would jeopardize life, limb, or bodily function, the minor may consent for him/herself.
20 Treating Minors For outpatient testing only: consent of a patient, surrogate decision-maker or legal guardian may be documented by a note, signed and included in the patient s chart.????? How does this relate for former policy language requiring parental consent?????
21 Treating Minors A minor parent may consent to procedures for his/her own child.
22 Patient with diminished mental capacity If the minor patient lacks the capacity to make an informed health care decision, informed consent MUST be obtained from the patient s legal guardian, Medical Power of Attorney or healthcare surrogate.
23 Patient Care CT Contrast Caution in injecting patient Caution with difficult stick attempts Unhappy patients make complaints!
24 Case Study CT exam done on patient but dye went into patient s eye $$ paid to patient for eye exam (No Permanent injury)
25 HIPAA Privacy rights of patients Improper disclosures can lead to complaints!
26 Are we still asking What is this HIPPO thing? The Health Insurance Portability and Accountability Act of 1996 (HIPAA) HIPAA Regs
27 Despite HIPAA Americans are STILL concerned about health care privacy. Two-thirds of Americans are concerned about the privacy of their health care information More than half of consumers are worried employers might use their personal health information to limit job opportunities One-eighth of consumers are putting their health at risk by adopting privacy-protective behaviors, such as foregoing medical tests California HealthCare Foundation, National Consumer Health Privacy Survey 2005
28 HIPAA You can t really have true health care privacy until they start making hospital gowns that close in the back. - Ian Morrison, PhD
29 Back to the Basics: The Privacy Rule A refresher on the PHI identifiers: (1) names; (2) all geographic subdivisions smaller than a State (including street address, city, county, precinct, zip code, etc.) (with some exceptions for using the initial 3 digits of the ZIP code); (3) All elements of dates (except year) for dates related to the individual: birth date, admission date, discharge date, date of death, etc. (except you can have an over 90 category); (4) Telephone numbers;
30 Back to the Basics: The Privacy Rule (5) Fax numbers; (6) addresses; (7) SSN; (8) Medical Records numbers; (9) Health plan beneficiary numbers;
31 Back to the Basics: The Privacy Rule (10) account numbers; (11) certificate/license numbers; (12) vehicle identifiers, serial numbers, license plate numbers; (13) device identifiers and serial numbers; (14) URLs
32 Back to the Basics: The Privacy Rule (15) IP address numbers; (16) biometric identifiers, including finger and voice prints; (17) full face photographic images and any comparable images; (18) any other unique number, characteristic, code.
33 If it s in your possession in your role as a covered entity, and it in any way identifies a person: It s PHI!!!
34 Back to the Basics: The Privacy Rule Permitted Uses and Disclosures: 1. To the individual 2. For treatment, payment and CE s own health care operations (TPO) 3. Pursuant to an authorization 4. As required by law 5. To Business Associates 6. For public health activities
35 Back to the Basics: The Privacy Rule 7. To health oversight agencies 8. concerning decedents 9. To organ procurement organizations 10. For research purposes 11. In a limited data set 12. For fundraising and underwriting (limited exception)
36 Back to the Basics: The Privacy Rule Authorizations: Specific elements are required: plain language, right to revoke, specific description of information to be used or disclosed, identification of person or entity to whom information to be disclosed termination date
37 Back to the Basics: The Privacy Rule Minimum Necessary Rule When using or disclosing PHI or when requesting PHI from another covered entity, a covered entity must make reasonable efforts to limit PHI to the minimum necessary to accomplish the intended purpose of the use, disclosure, or request. Limit PHI access to workforce members who need to know the information in order to do their jobs, and only give them the minimum necessary amount.
38 Back to the Basics: The Privacy Rule 6 Exception to the Minimum Necessary Rule: Disclosures for treatment Disclosures to the individual Disclosures pursuant to an authorization Disclosures to DHHS for enforcement Disclosures required by law Disclosures required for compliance with the Privacy Rule
39 HIPAA Penalties The best way to deal with HIPAA is to ignore it and do the jail time. - Ian Morrison, PhD March 2002
40 HIPAA Penalties Civil: civil fines of $100 per violation (up to $25,000 for multiple violations of the same standard in any given calendar year) Criminal: criminal fines of up to $50,000 and/or up to 1 years imprisonment for knowingly violating HIPAA criminal fines of up to $100,000 and/or up to 5 years imprisonment for using false pretenses to violate HIPAA criminal fines of up to $250,000 and/or up to 10 years imprisonment for violating HIPAA with the intent to gain personally or commercially from the misuse of individually identifiable health information
41 Case Study 22 y.o.w.f. x-rayed at hospital Technologist called patient s house later and disclosed hospital visit to patient s mother and even disclosed type of x-ray and relayed concerns over findings. HIPAA violations and hospital policy violated
42 HIPAA and Medical Malpractice What potential claims lurk out there that can come back to haunt us?
43 Medical Malpractice Process Claim known by you Report claim to Risk Manager Report claim to own insurance company (Should you buy your own malpractice insurance?)
44 Medical Malpractice Process Lawsuit filed Written questions Deposition (oral questioning session) Expert witness battle
45 Medical Malpractice Process Trial Patient must show technologist owed duty (Don t diagnose) Patient must show technologist breached duty Patient must show injury and damages as a result of the breach Technologist defends by showing reasonableness
46 Questions Answers Ask because better to prevent risk than be involved in lawsuit.
47 DINSMORE & SHOHL, LLP Ms. Marunich is a partner of Dinsmore & Shohl, LLP. Ms. Marunich s practice has involved the defense of hospitals, long-term care and assisted living facilities, physicians, health care providers, as well as general civil litigation. For additional information, you may call Ms. Marunich at (304) X44, at or visit the firm s website at
HIPAA OVERVIEW ETSU 1 What is HIPAA? Health Insurance Portability and Accountability Act. 2 PURPOSE - TITLE II ADMINISTRATIVE SIMPLIFICATION To increase the efficiency and effectiveness of the entire health
HIPAA COMPLIANCE What is HIPAA? The Health Insurance Portability and Accountability Act (HIPAA) also known as the Privacy Rule specifies the conditions under which protected health information may be used
HIPAA COMPLIANCE INFORMATION HIPAA Policy Use of Protected Health Information for Research Policy University of North Texas Health Science Center at Fort Worth Applicability: All University of North Texas
HIPAA PRIVACY RULE & AUTHORIZATION Definitions Breach. The term breach means the unauthorized acquisition, access, use, or disclosure of protected health information which compromises the security or privacy
HIPAA Privacy and Security Rules: A Refresher Marilyn Freeman, RHIA California Area HIPAA Coordinator California Area HIM Consultant Objectives Provide overview of Health insurance Portability and Accountability
Winthrop-University Hospital Use of Patient Information in the Conduct of Research Activities In accordance with 45 CFR 164.512(i), 164.512(a-c) and in connection with the implementation of the HIPAA Compliance
North Shore LIJ Health System, Inc. Facility Name POLICY TITLE: The Medical Record POLICY #: 200.10 Approval Date: 2/14/13 Effective Date: Prepared by: Elizabeth Lotito, HIM Project Manager ADMINISTRATIVE
SCHOOL OF PUBLIC HEALTH HIPAA Privacy Training Public Health and HIPAA This presentation will address the HIPAA Privacy regulations as they effect the activities of the School of Public Health. It is imperative
Office of Integrity and Effective Date: 2005 By: Committee 1.0 PURPOSE The purpose of this policy is to guide (UMMC) employees, who are involved with research, in obtaining an authorization for the use
HIPAA SELF STUDY TRAINING GUIDE I have received the LifeWays HIPAA SELF STUDY TRAINING GUIDE. I understand that I will be accountable for the information contained in the guide. If I have questions I may
Patient Privacy and HIPAA/HITECH What is HIPAA? Health Insurance Portability and Accountability Act of 1996 Implemented in 2003 Title II Administrative Simplification It s a federal law HIPAA is mandatory,
HIPAA Privacy Keys to Success Updated January 2010 HIPAA Job Specific Education 1 HIPAA and Its Purpose What is HIPAA? Health Insurance Portability and Accountability Act of 1996 Title II Administrative
HIPAA-Compliant Research Access to PHI HIPAA permits the access, disclosure and use of PHI from a HIPAA Covered Entity s or HIPAA Covered Unit s treatment, payment or health care operations records for
Health Insurance Portability & Accountability Act (HIPAA) Compliance Application IRB Office 101 - Altru Psychiatry Center 860 S. Columbia Rd, Grand Forks, North Dakota 58201 Phone: (701) 780-6161 PROJECT
Everett School Employee Benefit Trust Reportable Breach Notification Policy HIPAA HITECH Rules and Washington State Law Introduction The Everett School Employee Benefit Trust ( Trust ) adopts this policy
HIPAA Training: Ensuring Privacy for our Patients The purpose of the HIPAA Privacy Rule is to prevent inappropriate use and disclosure of individual health information, most commonly referred to as protected
NOTICE OF HEALTH INFORMATION PRIVACY PRACTICES (HIPAA) THIS NOTICE OF PRIVACY PRACTICES DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION.
HIPAA Happenings in Hospital Systems Donna J Brock, RHIT System HIM Audit & Privacy Coordinator HIPAA Health Insurance Portability and Accountability Act of 1996 Title 1 Title II Title III Title IV Title
WASHINGTON COUNTY Department of Health and Human Services Policy ADMN 004, Attachment A HHS Confidentiality Agreement Including HIPAA (Health Information Portability and Accessibility Act of 1996) OREGON
HIPAA Orientation Health Insurance Portability and Accountability Act HIPAA Federal legislation enacted in 1996 to improve the efficiency and effectiveness of electronic information transfers used in the
Health Information Privacy Refresher Training March 2013 1 Disclosure There are no significant or relevant financial relationships to disclose. 2 Topics for Today State health information privacy law Federal
How to De-identify Data Xulei Shirley Liu Department of Biostatistics Vanderbilt University 03/07/2008 1 Outline The problem Brief history The solutions Examples with SAS and R code 2 Background The adoption
Health Insurance Portability and Accountability Policy 1.8.4 Appendix C Uses and Disclosures of PHI Procedures This Appendix covers procedures related to Uses and Disclosures of PHI. Disclosures to Law
HIPAA Compliance for Students The Health Insurance Portability and Accountability Act (HIPAA) was passed in 1996 by the United States Congress. It s intent was to help people obtain health insurance benefits
A Privacy and Information Security Guide for UCLA Workforce HIPAA and California Privacy Laws A Privacy and Information Security Guide for UCLA Workforce HIPAA and California Privacy Laws Table of Contents
HIPAA 102 : What you don t know about the new changes in the law can hurt you! Presented by Jack Kolk President ACR 2 Solutions, Inc. Todays Agenda: 1) Jack Kolk, CEO of ACR 2 Solutions a information security
HIPAA POLICY REGARDING DE-IDENTIFICATION OF PROTECTED HEALTH INFORMATION AND USE OF LIMITED DATA SETS SCOPE OF POLICY: What Units Are Covered by this Policy?: This policy applies to the following units
HIPAA-P06 Use and Disclosure of De-identified Data and Limited Data Sets FULL POLICY CONTENTS Scope Policy Statement Reason for Policy Definitions ADDITIONAL DETAILS Web Address Forms Related Information
HIPAA 100 Training Manual Table of Contents I. Introduction 1 II. Definitions 2 III. Privacy Rule 5 IV. Security Rule 8 V. A Word About Business Associate Agreements 10 CHICAGO DEPARTMENT OF PUBIC HEALTH
Information Security and Privacy WHAT is to be done? HOW is it to be done? WHY is it done? 1 WHAT is to be done? O Be in compliance of Federal/State Laws O Federal: O HIPAA O HITECH O State: O WIC 4514
SDC-League Health Fund 1501 Broadway, 17 th Floor New York, NY 10036 Tel: 212-869-8129 Fax: 212-302-6195 E-mail: firstname.lastname@example.org NOTICE OF PRIVACY PRACTICES THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION
ACKNOWLEDGEMENT OF RECEIPT OF WESTERN DENTAL S NOTICE OF PRIVACY PRACTICE By signing this document, I acknowledge that I have received a copy of Western Dental s Joint Notice of Privacy Practices. Name
HIPAA Policies and Procedures William T. Chen, MD, Inc. General Rule 164.502 A Covered Entity may not use or disclose PHI except as permitted or required by the privacy regulations. Permitted Disclosures:
Alliance for Clinical Education (ACE) Student HIPAA Training Health Insurance Portability and Accountability Act of 1996 October 2003 1 Objectives Understand the HIPAA Privacy rules and regulations Understand
What is Covered by HIPAA at VCU? The Privacy Rule was designed to protect private health information from incidental disclosures. The regulations specifically apply to health care providers, health plans,
Children's Hospital, Boston (Draft Edition) The Researcher's Guide to HIPAA Evervthing You Alwavs Wanted to Know About HIPAA But Were Afraid to Ask 1. What is HIPAA? 2. What is the Privacy Rule? 3. What
Grand Rapids Medical Education Partners Mercy Health Saint Mary s Spectrum Health Pam Jager, GRMEP Director of Education & Development To understand the requirements of the federal Health Information Portability
Policy Title: Administrative Services De-identification of Client Information and Use of Limited Data Sets Policy Number: DHS-100-007 Version: 2.0 Effective Date: Upon Approval Signature on File in the
American Society of Anesthesiologists (ASA) Expert Witness Testimony Review Program Complaint Form The ASA Committee on Expert Witness Testimony Review ( the Committee ) may consider a complaint against
1 By the end of this course you will demonstrate: 1. that HIPAA privacy rules protect privacy and security of confidential information. 2. your responsibility for use and protection of protected health
An Employer s Introduction to HIPAA Prepared by Ballard, Rosenberg Golper & Savitt, LLP Important Disclaimer: Practice limited to labor and employment law on behalf of management and related litigation.
HIPAA 101: Privacy and Security Basics Purpose This document provides important information about Kaiser Permanente policies and state and federal laws for protecting the privacy and security of individually
Limited Data Set Background Information 1. A limited data set is protected health information that excludes certain identifiers but permits the use and disclosure of more identifiers than in a de-identified
De-Identification of Health Data under HIPAA: Regulations and Recent Guidance" " " D even McGraw " Director, Health Privacy Project January 15, 201311 HIPAA Scope Does not cover all health data Applies
Child/Teen Intake Form Welcome to New Perspective Counseling Services. We look forward to providing you with excellent and efficient counseling services. Please take a few minutes to fill out this form.
Section C: Data Use Agreement Illinois Department of Healthcare and Family Services And DATA USE AGREEMENT This Data Use Agreement (the Agreement ) is effective as of (the Agreement Effective Date ) by
Page 1 of 6 I. Policy A limited data set is protected health information that excludes direct identifiers. The UW HCC units may use or disclose a limited data set only for the purposes of public health
Virginia Commonwealth University Information Security Standard Title: Scope: Data Classification Standard This document provides the classification requirements for all data generated, processed, stored,
ELECTRONIC HEALTH RECORDS Understanding and Using Computerized Medical Records CHAPTER TEN LESSON ONE Privacy and Security of Health Records Understanding HIPAA HIPAA: acronym for Health Insurance Portability
HIPAA & RESEARCH What is Covered under the Privacy Rule? Protected Health Information (PHI) Health information + Identifier = PHI Transmitted or maintained in any form (paper, electronic, forms, web-based,
POLICY # : 90 AREA: Agency AFFECTED DIVISION: All Divisions EFFECTIVE DATE OF BOARD APPROVAL: September 25, 2013 Executive Director Board President Health Insurance Portability and Accountability Act (HIPAA)
HIPAA Privacy Policies Healthcare Insurance Portability and Accountability Act of 1996 (HIPAA) The HIPAA Privacy Rule created a national standard to protect patient s medical records and other personal
HIPAA Privacy & Breach Notification Training for System Administration Business Associates Barbara M. Holthaus email@example.com Office of General Counsel University of Texas System April 10,
THIS NOTICE DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY. Date: June 1, 2014 Salt Lake Community College
HIPAA and Leadership The Importance of Creating a More Compliance Focused Environment 1 AGENDA HIPAA Basics The Importance of Leadership in RIM and IG Creating a More Compliance Focused Culture Potential
Health Insurance Portability and Accountability Act HIPAA Privacy Standards Healthcare Provider Training Module Copyright 2003 University of California Click the arrow to start the YouTube video in a separate
The Family Counseling Center of Fulton County NOTICE OF PRIVACY PRACTICES This notice describes the privacy practices of The Family Counseling Center of Fulton County and the privacy rights of the people
Notice of Privacy Practices THIS NOTICE OF PRIVACY PRACTICES DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
Allergy Treatment Center of New Jersey, P.C. 388 Pompton Avenue 415 Avenel Street Cedar Grove, NJ 07009 Avenel, NJ 07001 (973) 857 9890 (732) 636-7030 NOTICE OF PRIVACY PRACTICES Allergy Treatment Center
Connecticut Pipe Trades Health Fund Privacy Notice 2013 Restatement Section 1: Purpose of This Notice and Effective Date THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED
1 Ann Dunnewold, Ph.D. 8140 Walnut Hill Lane, Suite 100 Dallas, TX 75231 (214) 343-1353 PSYCHOTHERAPIST-PATIENT SERVICES AGREEMENT Welcome to my practice. This document (the Agreement) contains important
Notice of Privacy Practices Introduction At Ohio Valley Medical Center and East Ohio Regional Hospital, we are committed to using and disclosing protected health information about you responsibly. This
HIPAA Privacy Overview General HIPAA stands for a federal law called the Health Insurance Portability and Accountability Act. This law, among other purposes, was created to protect the privacy and security
Effective Date: September 23, 2013 THIS NOTICE DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY. OUR PLEDGE
1540 Sunday Drive Suite 200Raleigh, NC 27607 Office: 919-859-9040FAX: 919-859-9030 Name: Date Examined: Responsible Person: _ Birth Date: Address: Age: Sex: M F Marital Status: S M D W SSN: Home Phone:
HIPAA Omnibus Notice of Privacy Practices Effective Date: March 03, 2012 Revised on: July 1, 2015 Mobile Physician Group PC 231 High Street Suite 1, Mount Holly, NJ 08060 1-855-MPG-DOCS THIS NOTICE DESCRIBES
NOTICE OF PRIVACY PRACTICES Effective Date: April 14, 2003 UNIVERSITY OF CALIFORNIA DAVIS HEALTH SYSTEM THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN
HIPAA and You The Basics The Purpose of HIPAA Privacy Rules 1. Provide strong federal protections for privacy rights Ensure individual trust in the privacy and security of his or her health information
PEPPERDINE UNIVERSITY HIPAA Policies Procedures and Forms Manual 1 Table of Contents I. INTRODUCTION... 4 A. GENERAL POLICY... 4 B. SCOPE... 4 II. DEFINITIONS... 5 III. GENERAL POLICIES AND PROCEDURES...
DISCLAIMER This web site is provided for information and education purposes only. No doctor/patient relationship is established by your use of this site. No diagnosis or treatment is being provided. The
Lattimore Physical Therapy and Sports Rehabilitation Network Monroe and Livingston County Clinics NOTICE OF PRIVACY PRACTICES This notice describes the privacy practices of LATTIMORE PHYSICAL THERAPY AND
Integrating Behavioral Health and HIV Into Electronic Health Records Communities of Practice Monday, August 3, 2015 1 How to ask a question during the webinar If you dialed in to this webinar on your phone
Dale C. Godby, Ph.D., ABPP, CGP 6330 LBJ Suite 150 Dallas, Texas 75240 972-233-0648 Problems in love and work, as well as troubling symptoms like depression and anxiety, often lead people to seek therapy.
Craig Ranch OB/GYN NOTICE OF PRIVACY PRACTICES As Required by the Privacy Regulations Created as a Result of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) THIS NOTICE DESCRIBES
The Health and Benefit Trust Fund of the International Union of Operating Section 1: Purpose of This Notice Notice of Privacy Practices Effective as of September 23, 2013 THIS NOTICE DESCRIBES HOW MEDICAL
JOINT NOTICE OF PRIVACY PRACTICES Cumberland County Hospital System d/b/a Cape Fear Valley Health System EFFECTIVE: September 23, 2013 THIS JOINT NOTICE DESCRIBES HOW PROTECTED HEALTH INFORMATION ABOUT
TriageLogic Information Security Policy What is HIPAA, and what information is protected by it? HIPAA, short for the United States Health Insurance Portability and Accountability Act, is a set of standards
NOTICE OF PRIVACY PRACTICES University HealthCare Alliance Effective Date: September 23, 2013 THIS NOTICE DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED. PLEASE REVIEW IT CAREFULLY.
IAPP Practical Privacy Series Data Breach Hypothetical Presented by: Jennifer L. Rathburn, Partner, Quarles & Brady LLP Frances Wiet, CPO and Assistant General Counsel, Takeda Pharmaceuticals U.S.A., Inc.
HIPAA DATE USE AGREEMENT 1 This Data Use Agreement (the "Agreement") is effective as of (the "Agreement Effective Date") by and between ("Covered Entity") and ("Data User"). RECITALS WHEREAS, Covered Entity
APPENDIX 1: Frequently Asked Questions Practice Name Q: What is the HIPAA Privacy Rule? A: The HIPAA Privacy Rule controls the use and disclosure of what is known as Protected Health Information (PHI).
UNDERSTANDING THE HIPAA/HITECH BREACH NOTIFICATION RULE 2/25/14 RULES Issued August 19, 2009 Requires Covered Entities to notify individuals of a breach as well as HHS without reasonable delay or within