Preview

Stolen Health Information Case Study: Overview of the HIPAA Rule

Better Essays
Open Document
Open Document
1103 Words
Grammar
Grammar
Plagiarism
Plagiarism
Writing
Writing
Score
Score
Stolen Health Information Case Study: Overview of the HIPAA Rule
Stolen Health Information Case Study
Sarah Kipp
HIM113- Law & Ethics in Health Information
Instructor Michelle Landis
November 29, 2012

Introduction A patient’s right to privacy is one of the most important and protected elements of healthcare today. Patient health information is protected by the Health Insurance Portability and Accountability Act (HIPAA) and even more so by the HIPAA Privacy Rule. “The HIPAA Privacy Rule is a key federal law governing the privacy and confidentiality of patient information.” (Brodnik, Rinehart-Thompson, Reynolds. 2012 pg. 215.) The law governing patient privacy has two goals, “to provide an individual with greater rights with respect to his or her health information” and “to provide greater privacy protections for one’s health information, which serves to limit access by others.” (Brodnik, Rinehart-Thompson, Reynolds. 2012 pg. 215) HIPAA security rule
Within the HIPAA Privacy Rule there are security rules that further govern the release and protection of protected health information that is stored, maintained and transmitted in an electronic format. In the context of the HIPAA laws, security “refers to protecting information from loss, unauthorized access, or misuse, along with protecting its confidentiality.” (Brodnik, Rinehart-Thompson, Reynolds. 2012 pg. 272) In the case of the employee getting fired for patients’ records being stolen, we are looking specifically at the loss, at a breech in security with the records being taken from the facility, stolen, unauthorized access by the thief, potential misuse and broken confidentiality.
Components of the HIPAA Security Rule and Safeguards
The HIPAA Security Rule is one of five titles that make up the HIPAA and it’s goal is the protect of health information that identifies a patient and is “transmitted by or maintained in any form of electronic media.” (Brodnik, Rinehart-Thompson, Reynolds.


References: Fundamentals of Law for Health Informatics and Information Management; Second Edition; 2012 Brodnik, Melanie S., Rinehart-Thompson, Laurie A., Reynolds, Rebecca B.
Continue Reading
View Writing Issues

You May Also Find These Documents Helpful

  • Satisfactory Essays

    Hcs 483 Wk1Dq1 2
    • 457 Words
    • 2 Pages

    Hcs 483 Wk1Dq1 2

    Prior to the enactment of the Health Insurance Portability and Accountability Act (HIPPA) health information was able to be shared without the knowledge or permission of the patient. This information was available to just about anyone including insurance agencies, places of employment and even loan lenders. People would potentially use individuals’ health information to deny them work or a loan for their home and even impacting higher insurance rates or denial of coverage. According to U.S. Department of Health and Human Services (n.d.), “The Privacy Rule establishes a Federal floor of safeguards to protect the confidentiality of medical information. State laws which provide stronger privacy protections will continue to apply over and above the new Federal privacy standards.” (para. 1). Also, as medical records continue to move entirely to the new standard of electronic records it is important to have one standard across the country to protect everyone’s information. Electronic health records (EHR) make it easier than ever to accidentally share medical information, to include having it stolen. Medical providers are just as likely to face consequence if their facility is broken in to and the hard drive with patients information is stolen as they would be if they gave the information away themselves. In general HIPPA protects patients’ information as well as their right to be treated equally.…

    • 457 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    HIPAA Violation: Article Analysis
    • 160 Words
    • 1 Page

    HIPAA Violation: Article Analysis

    In the article “ Hospitals fined $4.8M for HIPAA Violation” by Erin McCann reports that several health care organizations are in HIPAA violation due to human error. A hospital and a medical center were fined because patients information were available on line. The breach was due to a physician who developed an application for the hospital and a medical center. During the process of transferring patient information to one computer at home accidently made the information available on the Internet. A patient’s family member discovered it when they notice their family members private health information was on line.…

    • 160 Words
    • 1 Page
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    Hsm310 Hipaa Assignment
    • 893 Words
    • 4 Pages

    Hsm310 Hipaa Assignment

    | HIPAA Rules(1)Privacy Rules: According to the U.S Department of Health and Human Services (HHS), the HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. It’s important because the Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. This rule impacts the staff by: Not sharing the information with others who have no need to know, including co-workers, family members or friends, minimizing opportunities for patient information to be overheard by others, never sharing passwords, disposing of information containing PHI properly such as shredding paper files(2)Security Rules: The HIPAA Security Rule establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule is important because it requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. It impacts the organization by forcing the healthcare industry to adopt uniform electronic transaction standards for…

    • 893 Words
    • 4 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    HIPAA Health: The Privacy Rule and Health Care Practice

    • 447 Words
    • 2 Pages

    HIPAA Health: The Privacy Rule and Health Care Practice

    On April 14, 2003 the Health Insurance portability and Accountability Act of 1996 (HIPAA) took effect, and these federal regulation have had an impact on the field of healthcare. It affords certain protections to persons covered by health care plans, including continuity of coverage when changing jobs, standards for electronic health care transactions, and primary safeguards for the privacy of individually identifiable patient information. Protecting healthcare information is the key essential in a healthcare organization. In an Internet video, Barclay (2010) states it is imperative that all healthcare providers be knowledgeable about the HIPAA standards and protect the rights of patients and residents. However, patients also have the responsibilities to give accurate information about their condition and to participate in treatment and care. With that being said the doctrine of informed consent allows patients full disclosure to make a knowledgeable decision about their care. Failure of patient confidentiality gives rise to legal liability. Identifying different forms of security breaches and creating measures to safeguards standards, procedure and policies against leaking personal health information (PHI) will maintain and promote growth of an organization.…

    • 447 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    Bis/220 Information Technology Acts
    • 541 Words
    • 3 Pages

    Bis/220 Information Technology Acts

    Chances are you have probably come across HIPPA before while in a doctor’s office in the past. HIPPA is the acronym for Health Insurance Portability and Accountability Act. This Act was passed by Congress in 1996. As far as one can remember, medical files containing all medical and personal information were kept in locked drawers or file cabinets which were for authorized personnel’s only before HIPPA was passed but that was not enough to guarantee the protection of patient information. It also protects the people who have changed job or lost their job to reinstate their health coverage without any complications. Although HIPPA was proposed to become a law in 1996, it did not officially become a law until 2001. HIPAA opposes unfair guidelines of health insurance carries. HIPAA has put into place strict criteria for keeping medical records of patients, including being able to transfer patient information using electronic devices. These devices also assist in managing and keeping sensitive patient information safe. There were many hoops to jump through, however, it was eventually decided and was released to the general public.…

    • 541 Words
    • 3 Pages
    Satisfactory Essays
    Read More
  • Good Essays

    Principles Of Compliance And Accountability Act (HIPAA)
    • 671 Words
    • 3 Pages

    Principles Of Compliance And Accountability Act (HIPAA)

    HIPAA which stands for the Health Insurance Portability and Accountability Act was passed in 1996. It was made to make sure that health or medical information data is protected. But it 's not just used by the health care industry, employers that offer health insurance must abide by HIPAA. HIPAA defines health information as any data is created or received by health care providers, health plans, public health authorities, employers, life insurers, schools and universities, and health care clearinghouses. This data relates to the health of any individuals past, present, and future health, their physical and mental health and what kind of condition they are…

    • 671 Words
    • 3 Pages
    Good Essays
    Read More
  • Satisfactory Essays

    Hipaa
    • 501 Words
    • 3 Pages

    Hipaa

    HIPAA can also help when it comes to protect the physicians with its laws as well. One way could be if a patient or parent of a patient signed a release of the patients’ medical record to be released to their employer. If the physician allowed for the records to be released upon receiving the signed release and the employer fired the patient for a reason that was included in the patients’ medical record the patient could not come back on the physician for the release. Although the patient may try to sue or file a violation with the physician the patient will not win because the physician was only doing what the patient asked…

    • 501 Words
    • 3 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    Health Information
    • 678 Words
    • 3 Pages

    Health Information

    | HIPAA Rules (1) A major goal of the Privacy Rule is to assure that individuals’ health information is properly protected while allowing the flow of health information needed to provide and promote high quality health care and to protect the public 's health and well-being. (2) The HIPAA Security Rule establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. (3) The HIPAA transactions and code set standards are rules to standardize the electronic exchange of patient-identifiable, health-related information. They are based on electronic data interchange (EDI) standards, which allow the electronic exchange of information from computer to computer without human involvement.…

    • 678 Words
    • 3 Pages
    Satisfactory Essays
    Read More
  • Better Essays

    Balance Sheets and Income Statements
    • 1118 Words
    • 5 Pages

    Balance Sheets and Income Statements

    Patient privacy in any medical facility is not only a right, but a law which was passed by the United States congress in 1996. The law provides the ability to transfer and continue health insurance coverage for Americans when the change or lose their jobs, reduces healthcare fraud and abuse, mandates industry wide standards for health care information on electronic billing, and requires confidential handling of protected health information. The confidentiality is the portion which medical staff and their business associates develop and follow procedures that ensure the confidentiality and security of PHI, protected health information. (California Department of Health Care Services, 2012) Many medical facilities and pharmacies throughout our country fail to comply with these HIPAA regulations and through neglect or fraudulent activity compromise a patient’s personal health information.…

    • 1118 Words
    • 5 Pages
    Better Essays
    Read More
  • Good Essays

    Hippa Regulatory Paper
    • 692 Words
    • 3 Pages

    Hippa Regulatory Paper

    There are laws that protect all of our patient information from being exposed to others, one law in particular is HIPPA law of 1996 (Health Insurance Portability and Accountability Act). This law protects the privacy and security of all health information, whether it is on paper or electronically. HIPPA has two goals to make health insurance more portable for people when changing jobs and making our health care system more accountable for the costs and reduce waste and fraud.…

    • 692 Words
    • 3 Pages
    Good Essays
    Read More
  • Better Essays

    Hippa
    • 1495 Words
    • 6 Pages

    Hippa

    HIPAA is the acronym for the Health Insurance Portability and Accountability Act of 1996. HIPAA is responsible for health insurance coverage for workers and their families, especially when the worker changes or lost their jobs. President Clinton signed this on August 21, 1996. It was considered a Public Law 104-191. To decrease the organizational costs of health care a separate section is included in the law. It is required by the law that all health plans, including ERISA and health care clearinghouses and any dentist who transmits health information in an electronic transaction are required by HIPAA to use a standard electronic device. Most people believe that their medical or other health information is private and should be protected, and we want to know who has access to this information. The Privacy Rule which is a Federal law gives you the right to your health information and sets rules and limits on who can look at and receive your health information. The Privacy Rule is balanced so that it permits the disclosure of personal information needed for patient care and other important purposes. It also applies to all forms of individual protected health information whether it is electronic, written or oral. The Security Rule which is also a Federal law protects health information in electronic form which requires entities covered by HIPAA to ensure that electronic protected health information is secure. We know that every problem s a solution, it might be complete or…

    • 1495 Words
    • 6 Pages
    Better Essays
    Read More
  • Good Essays

    Information Technology Act
    • 461 Words
    • 2 Pages

    Information Technology Act

    The Health Insurance Portability and Accountability (HIPAA) was established in 1996. The U.S. Department of Health and Human Services created HIPAA to protect healthcare information from being disclosed such as addresses, phone numbers, Social Security numbers, insurance information, health related information, and any other personal information. Before this privacy act was implemented healthcare providers were not required to protect their patients personal and health information which resulted in identity theft and sharing of patients healthcare records without permission. HIPAA required that all paper charts are kept in a room that has a lock on the door and if the practice uses electronic records they are required to have locks on the computers that require a username and password to log in. The software that the electronic health records (EHR) are kept on the computer is also required to have a secure log in, in order to access it.…

    • 461 Words
    • 2 Pages
    Good Essays
    Read More
  • Best Essays

    Privacy Concerns with Electronic Medical Records
    • 1982 Words
    • 57 Pages

    Privacy Concerns with Electronic Medical Records

    References: Author Unknown. Breach Report 2010, Redspin Inc. Dec. 2010. Retrieved from http://www.redspin.com/resources/whitepapers-datasheets/index.php on April 19, 2012. Badzek, L., Gross, G. Confidentiality and Privacy: At the Forefront for Nurses. The American Journal of Nursing, Vol. 99, No. 6 (June, 1999), pp.52-54. Lippincott Williams & Wilkins. Retrieved April 18, 2012 from http://www.jstor.org/stable/3472150. Byfield, E. 315,000 Patients ' Information Disappears From Emory Healthcare. WSBTV. Retrieved April 18, 2012 from file:///F:/Ethics%20information%20age/315,000%20patients%27%20information%20disappears%20from%20Emory%20Healthcare%20_%20www.wsbtv.com.htm Dixon, P. MEDICAL IDENTITY THEFT: The Information Crime that Can Kill You, March 3, 2006. World Privacy Forum. Retrieved from http://www.worldprivacyforum.org/pdf/wpf_medicalidtheft2006.pdf on April 24, 2012. Foreman, Judy (26 June 2006). "At Risk of Exposure”. Los Angeles Times. Retrieved April 23 , 2012. Gellman, R. Fact Sheet 8a: HIPAA Basics: Medical Privacy in the Electronic Age. Privacy Clearing House. March, 2012. Retrieved April 19, 2012 from http://www.privacyrights.org/fs/fs8a-hipaa.htm. Health Insurance Portability and Accountability Act of 1996, 42 U.S.C. § 1320d-9 (2010).…

    • 1982 Words
    • 57 Pages
    Best Essays
    Read More
  • Powerful Essays

    Security Of Medical Identity Theft In Medical Records
    • 4094 Words
    • 17 Pages

    Security Of Medical Identity Theft In Medical Records

    Much of the knowledge stolen in an organization takes the form of tacit knowledge that is used regularly but not necessarily in a conscious fashion. This paper covers what is in the medical records, what is not covered by HIPPA, what constitutes fraud and abuse, who has access, how to protect records, how patients get access to records, what rules and laws apply, and how to protect/secure electronic health records. Identity theft is discussed and what patients need to do to prevent it from happening. There are penalties and fines for computer fraud and abuse. Employee internet…

    • 4094 Words
    • 17 Pages
    Powerful Essays
    Read More
  • Powerful Essays

    Why Privacy Matters: Debunking the Nothing-to-Hide Argument
    • 2748 Words
    • 11 Pages

    Why Privacy Matters: Debunking the Nothing-to-Hide Argument

    In today’s society, the word “privacy” has become ubiquitous. We see it every day; on HIPAA…

    • 2748 Words
    • 11 Pages
    Powerful Essays
    Read More