Here are some of the basic definitions of HIPAA compliance
Business Associate:
A person or company that acts on behalf of a covered entity performing
functions that involve the use or disclosure of Protected Health Information
(PHI) for claims processing, billing, quality assurance, etc. Members of a
covered entity’s work force are not business associates.
Covered Entity:
All health plans, all health care clearinghouses, and any health care provider
who transmits health information in electronic form in connection with a
covered electronic transaction.
Designated Record Set
(DRS): A record that contains information utilized and maintained for the
purpose of making decisions about an individual’s health care.
Electronic Protected
Health Information (ePHI): Individually identifiable health information
that is transmitted, maintained or stored in electronic form.
Privacy: Scalable
set of standards governing the patient’s rights over the use and disclosure of
their own protected health information (PHI).
Protected Health
Information (PHI): Individually identifiable health information maintained
or stored in electronic or any other form or medium. It includes medical,
demographic, and financial information about the patient.
Security:
Specific measures a health care entity must take to protect ePHI from
unauthorized breaches of privacy, or loss of integrity. It is scalable,
flexible, and generally addressable.
Transactions:
Electronic transmission of information between two parties to carry out
financial or administrative activities related to health care.
Understanding these basic HIPAA terms is vital to your
office being successfully compliant with the HIPAA regulations.
For questions about this topic, email me at
jhuff@hcsiinc.com
No comments:
Post a Comment