- ABOUT ACA
- ABOUT CHIROPRACTIC
- Member Center
- Assistance By Claim Type
- Coding and Billing
- Practice Resource Center
- Best Practices/Policies
- For Insurers
- Ethical Practice
- Chiropractic Networks Action Ctr.
- Patient Resources
- SACA Member Center
- SACA Programs
- SACA Meeting and Events
- Prospective Students
- SACA Leadership
- MEETINGS & EDUCATION
- CONTACT US
HIPAA - Protecting Patient Privacy
The Health Insurance Portability and Accountability Act (HIPAA) is comprised of two overarching parts--the Privacy Rule and Security Rule. The HIPAA Privacy Rule provides federal protections for personal health information and provides patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes. The Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information.
On January 25, 2013, The U.S. Department of Health and Human Services (HHS) published it’s long awaited Final Rule entitled “Modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules under the Health Information Technology for Economic and Clinical Health Act and the Genetic Information Nondiscrimination Act; Other Modifications to the HIPAA Rules” (Omnibus Rule). There are three (3) specific areas that physicians will need to focus on to comply with the new Omnibus Rule:
- Privacy, Security, and Breach Notification policies and procedures;
- Notice of Privacy Practices (NPP); and
- Business Associate (BA) Agreements.
The Omnibus Rule became effective on March 26, 2013, with a compliance period of 180 days, requiring all providers to be compliant with the new regulations by September 23, 2013.
Below you will find information and resources to help you understand and comply with HIPAA regulations.
PLEASE NOTE: The sample forms linked to below do not constitute legal advice and are for educational purposes only. These forms are based on current federal law and subject to change based on changes in federal law and the content may need to be modified to adhere to state law or subsequent guidance or advisories. Doctors are advised to consult with their state licensing Board or legal counsel.
- HIPAA Resources for Members
- HHS HIPAA Security Risk Assessment Tool
- ACA In Touch Article HIPAA Gets an Update - What you Need to Know: Part I (March 2013)
- ACA In Touch Article HIPAA Gets an Update - What you Need to Know: Part II (July 2013)
- ACA In Touch Article HIPAA Gets an Update - What you Need to Know: Part III (September 2013)
- Disposing Patient Records and HIPAA
- HIPAA and Electronic Communications
- ACA News Article: Navigating HIPAA in the Electronic Age: What DCs Must Know (March 2015)
- HHS HIPAA Frequently Asked Questions
- HIPAA and Social Media
- HHS HIPAA Resources
- HIPAA Training Materials
- HIPAA Privacy in Emergency Situations
- Communicating with a Patient’s Family, Friends, or Others Involved in the Patient’s Care
For more information visit the HHS Health Information Privacy website.