NOT ELIGIBLE FOR PREMIUM CREDIT

This course is intended for HIPAA Officers/Coordinators. 

The Security Rule is a set of national standards designed to safeguard individuals’ electronic personal health information, or ePHI, that is created, received, used, or maintained by covered entities. It mandates appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of ePHI. The rule is flexible and scalable, allowing various sized entities to implement measures suitable for their specific environment. It supports the adoption of new technologies to improve patient care while protecting privacy. 

This module discusses various safeguards the practice must implement for compliance with this regulation.

Learning Objectives:

1. Explain the purpose and key provisions of the HIPAA Security Rule, including the importance of safeguarding electronic protected health information (ePHI) through administrative, physical, and technical safeguards.
2. Describe the process of conducting a Security Risk Analysis (SRA) to identify and mitigate risks and vulnerabilities associated with ePHI and implement necessary security measures based on the findings.
3. Develop, maintain, and regularly update comprehensive security policies and procedures, ensuring compliance with the HIPAA Security Rule and addressing areas such as access control, incident response, and contingency planning.

IMPORTANT:

As you begin to develop your practice’s HIPAA Program, it is important to remember it must be customized to your practice’s unique needs and site-specific information. The SVMIC HIPAA Compliance Manual’s policies and procedures are designed to serve as a template for what the practice should be doing.