Health Insurance Portability and Accountability Act (HIPAA)
Part A
Historically, providers and administrators of healthcare services have respected an individual’s right to privacy and have implemented measures to protect personal information. However, widespread use of digital technologies and the Internet for obtaining, transmitting and storing information has increased concern regarding personal privacy issues. Specifically, individuals want to be sure that only those persons with legitimate need are able to access and handle individually identifiable health information.
To address these concerns, the Health Insurance Portability and Accountability Act (HIPAA) was passed and enacted in 1996. This law is primarily intended to guarantee the portability of health insurance when a worker changes jobs. The act further includes wide-ranging provisions for the security and privacy of patient health information. The specific objectives of the act follow:
- Improving portability and continuity of health insurance coverage in the group and individual markets
- Combating waste, fraud and abuse in health insurance and health care delivery
- Promoting the use of medical savings accounts
- Improving access to long-term care services and coverage
- Simplifying the administration of health insurance
Since the enactment of HIPAA, government entities have begun establishing complex guidelines and regulations for organizations that access or use information related to individual patient health. Although many of these guidelines and regulations are currently in effect, many others are still being finalized. Also, a number of existing guidelines are being revised.
In general, organizations currently comply with HIPAA by:
- Complying with established standards and requirements for the electronic transmission of certain health information
- Maintaining reasonable and appropriate administrative, technical and physical safeguards and enforcing specific task methodologies and procedures that protect individually identifiable patient health information. However, because many regulations are still pending, no specific process or piece of equipment can be labeled HIPAA-compliant.
No comments:
Post a Comment