HIPAA Policy and Procedures – Table of Contents

 

Policies

 

1.      Use and Disclosures of Protected Healthcare Information – General

 

2.      Uses and Disclosures of Protected Healthcare Information – Restricted

 

3.      Business Associates

 

4.      Confidential Information of Deceased Patients

 

5.      Patient Personal Representatives

 

6.      Confidential Communications – Methods

 

7.      Consent – Use and Disclosure

 

8.      Use and Disclosure Permitted

 

9.      Process for De-identifying and Re-identifying Protected Healthcare Information

 

10.  Minimum Necessary Information

 

11.  Patient Notification of Privacy Policy

 

12.  Patient Right to Restrict Protected Healthcare Information

 

13.  Confidential Communications – Patient Rights

 

14.  Patient Right to Access Personal Information

 

15.  Patient Right to Amend Personal Information

 

16.  Accounting of Disclosures

 

17.  Privacy Officer

 

18.  Employee Training

 

19.  Security of Medical Records

 

20.  Patient Complaints

 

21.  Employee Violations of Confidentiality

 

22.  Chain of Trust

 

23.  Protection of Electronic Data

 

24.  Access to Data

 

25.  Mitigation of Damage

 

26.  Access Logging

 

27.  Contingency Plan

 

28.  Consent to Film or Record

 

29.  Sale/Marketing of PHI

 

30.  Notice Obligations

 

 

Forms

 

·         Authorization Form

 

·         Sample Business Associate Contract

 

·         Chain of Trust Agreement

 

·         Confidentiality Statement

 

·         Optional Consent Form

 

·         Privacy Officer Job Description

 

·         Restriction of Information Release Form

 

·         Patient Privacy Notice

 

 

Training Handout and PowerPoint Presentation