NOT ELIGIBLE FOR PREMIUM CREDIT

The HIPAA Privacy Rule grants patients certain rights over their PHI.  It ensures that patients have the power to manage their own health data, promoting privacy and informed decision-making.  If patients believe their rights have been violated, they can file a complaint that could result in enforcement mechanisms used to ensure compliance by covered entities.

This module discusses these rights as well as how to comply with these rights.

Learning Objectives are: 

1. Identify and manage patient rights under HIPAA, including receiving a Notice of Privacy Practices, requesting PHI restrictions, and handling amendment requests.
2. Maintain an accounting of PHI disclosures, provide timely access to PHI, and understand circumstances for denial.
3. Comply with state and federal laws, including the 21st Century CURES Act, and define the rights and limitations of personal representatives under HIPAA.

IMPORTANT:

As you begin to develop your practice’s HIPAA Program, it is important to remember it must be customized to your practice’s unique needs and site-specific information. The SVMIC HIPAA Compliance Manual’s policies and procedures are designed to serve as a template for what the practice should be doing.