Hello Frank,
Some of the areas I would like to see covered are:
1. Understanding the difference between a HIPAA compliant authorization and a patient consent, the required elements of each, and under what circumstances each is needed.
2. Knowing what an accounting of disclosures is and why it's important.
3. Particularly for organization wide training, I would want to include instructions on how to handle in-person, in-clinic requests. This can be difficult for non-HIM personnel like nurses, MAs, or PSRs who don't always understand to whom they can and cannot disclose information.
------------------------------
Jacqueline Mccauley
Him/Referrals Supervisor
------------------------------
Original Message:
Sent: 11-15-2020 09:43
From: Frank Ruelas
Subject: HIPAA related training - 3 areas on your list
I'm interested to hear what people have to share about the following given that HIPAA does not require training to be done on a recurring basis such as annually...but certainly organizations often include it in their annual training schedules.
What are three areas within HIPAA that you include or would like to see included in whatever scheduled training your organization has for HIPAA, particularly as it relates to your department.
For example, in no particular order:
- Awareness on how to identify and what to do when a suspicious email is received (Ex. Phishing)
- Sending PHI encrypted or unencrypted and when each type of sending is allowed
- Who and how to report issues (Privacy Security Officer, Chain of Command, hotline) that people become aware of.
Posted: Sunday
------------------------------
Frank Ruelas
Compliance Professional
Arizona
------------------------------