Posted: August 15th, 2022

Patient Documents Security and Confidentiality: HIPPA Law

Patient Documents Security and Confidentiality: HIPPA Law
Pc Sciences and Data Expertise
This task consists of two (2) sections: a written paper and a PowerPoint presentation. It’s essential to submit each sections as separate information for the completion of this task. Label every file title in response to the part of the task it’s written for.

Well being Data Expertise (HIT) is a rising subject inside well being providers organizations immediately; moreover, well being info safety is a significant concern amongst well being organizations, as they’re required to take care of the safety and privateness of well being info. The Division of Well being and Human Companies (HHS) offers intensive details about the Well being Insurance coverage Portability and Accountability Act (HIPAA). Go to the HHS Web site, at www.hhs.gov/ocr/privateness, for extra details about HIPAA necessities. In March 2012, the HHS settled a HIPAA case with the Blue Cross Blue Defend of Tennessee (BCBST) for $1.5 million. Learn extra about this case at www.hhs.gov/ocr/privateness/hipaa/enforcement/examples/bcbstagrmnt.html. As an IT safety supervisor at a regional well being providers group, your CIO has requested for the next: an Assessment of this incident, an outline of the HIPAA safety necessities needed to forestall this kind of an incident, and a briefing for administration on the minimal safety necessities to be HIPAA criticism.

Section1: Written Paper

1. Write a 3 to 5 (Three-5) web page paper through which you:

a. Describe the safety problems with BCBST in regard to confidentiality, integrity, availability, and privateness based mostly on the knowledge supplied within the BCBST case.

b. Describe the HIPPA safety requirement that would have prevented every safety situation recognized if it had been enforced.

c. Analyze the corrective actions taken by BCBST that have been environment friendly and people who weren’t ample.

d. Analyze the safety points and the HIPAA safety necessities and describe the safeguards that the group must implement with a purpose to mitigate the safety dangers. Make sure that you describe the safeguards by way of administrative, technical, and bodily safeguards.

e. Use not less than three (Three) high quality assets on this task. Word: Wikipedia and related Web sites don’t qualify as high quality assets.

Your written paper should observe these formatting necessities:

•This course requires use of latest Pupil Writing Requirements (SWS). The format is completely different than different Strayer College programs. Please take a second to Assessment the SWS documentation for particulars.
•Embrace a canopy web page containing the title of the task, the coed’s title, the professor’s title, the course title, and the date. The quilt web page and the supply checklist are usually not included within the required web page size.

Pointless publicity of personal info stays to be some of the alarming and probably supply of battle between a affected person and their establishment of care. Privateness of affected person’s paperwork stays to be as essential because the care the hospital offers to the sufferers medically. Due to this fact, privateness violations proceed to be as unprofessional as simply another facet of irresponsible caregiving throughout the medical subject. The HIPPA legislation privateness and safety requirements has a number of essential necessities for decreasing and addressing breaches. The BCBST in 2012, was found to have over 57 unencrypted computer systems which contained sufferers PHI compromised. As such, over 1 million paperwork had been stolen from the establishment’s storage services. PHI underneath the HIPPA Law is regarded to be identifiable well being affected person info that’s saved maintained and usually used underneath HIPPA pointers. This paper Assessments that BCBST was in direct violation of the 2009 Stimulus invoice that positioned further duties on the third events with entry to affected person info for monetary accountability, by categorically depriving the affected person entry and direct management to their medical report.
The PHI paperwork are be utilized by healthcare suppliers, to evaluate affected person’s well being, create a complete well being plan for the well being insurer or personally by the affected person when formulating varied enterprise or monetary affiliation inside the actual world. Lack of this paperwork was thus an excessive violation of the HIPPA legislation, because it compromised the safety and privateness of their medical data depriving the sufferers their rights to make use of and management if their medical info and was straight in violation of the 2009 stimulus invoice that categorically urged and carried out the necessities for addressing breaches. It was recognized via reviews that lack of compliance to primary HIPPA legal guidelines would have even costed the corporate greater than it the preliminary 1.5 million dollars. Nicastro (2012) identifies that “As a substitute, the well being insurer agreed to a $1.5 million settlement with the Workplace for Civil Rights (OCR) over potential HIPAA safety violations and spent one other $17 million in breach response prices.” The essential necessities underneath the HIPPA legislation embody coverage mastering and implementation, coaching of employees in direct entry to buyer PHIs, common monitoring and the conduction of threat Assessment. BakerHolsteter (2012) determine that BCBST had not even encrypted a substantial quantity of the PHI and tasked 800 of its workers to conduct the encryption course of.
Additional analysis determine that the regulators an the workplace of civil rights cited BCBST to be categorically sluggish in response to inform the OCR of the breach of information. moreover, they weren’t clear in reporting the breach of information and their investigation was not broadly and precisely documented to convey forth the basis reason for the issue within the instant aftermath of the breach (BakerHostetler, 2012). Key findings determine that there was quite a few gaps and negligent conduct throughout the BCBST compliance program. Rodriguez, the director of the HHS Workplace for OCR said that had the gaps in worker coaching with an updated HIPPA legislation pointers on methods to handles confidential doc the breach wouldn’t have occurred (HIPPA Journal). Within the aftermath of the investigation it was revealed that among the info leaked to potential fraudsters and different vices prone to make the most of the affected person’s lose of data have been their social safety info, Dates of Beginning, Well being plan numbers, contact info and their medical prognosis codes. BakerHostetler (2012) identifies that BCBST had not categorically encrypted majority of the information however BCBST identifies that it had recognized the numerous quantity of sufferers put in danger and corrective actions was taken to tell them. Inside this regard, key areas of breach revolved round lack of compliance to pointers and sluggish response to crucial lack of data- implying to the final lack of safety for affected person’s paperwork.
HIPPA safety necessities on this case revolved across the coaching of workers to familiarize them with the up to date pointers and further common monitoring of the final methods to determine the issue. The safeguards fell underneath three classes the executive: to make sure coaching and common Assessment, technical which included encryption of the paperwork and bodily shock monitoring and restricted entry to PHI relative to quantity of coaching provided to workers. Categorically, HIPPA recognized that there was want for improvement and implementation of insurance policies and procedures that incorporate threat Assessment and a threat administration plan (Kings and Spalding, 2012). This was to function an elaborate checklist that highlights entry and management of the services the place paperwork are saved, and incorporation of bodily safeguards that give further oversight to software program protocols governing the storage of the media information. Common coaching of the employees was additionally a requirement for all workers with entry to the e PHI information. Lastly, Kings and Spalding (2012) determine that HIPPA Law on this context required shock visits to make sure that all protocol and procedures have been all the time adopted on the BCBST services and an analysis program that sampled all coaching, coverage and process implementation course of for all workers with entry to the ePHI. This categorically was for use to implement and monitor the restoration course of on the BCBST digital storage services chargeable for the oversight and administration of affected person PHI.
BCBST breached an incredible deal in HIPPA legal guidelines when it was robbed of greater than one million data of PHI that contained safe and confidential affected person data. They disadvantaged their purchasers management and safety over their medical data doubtlessly exposing them to numerous legal actions. Moreover, they have been in direct contravention of the 2009 Stimulus invoice; an extra modification to the HIPPA Legal guidelines that required monitoring, coaching and common threat Assessment of this system since that they had not encrypted the information and had not given ample and updated coaching to their workers. Aside from this they recorded a sluggish response time to informing regulators of the breach. This have been additionally the important thing areas that HIPPA implementers, the HHS underneath the civil rights workplace targeted on addressing.

References
BakerHostetler. (2012). HIPAA: HHS settles violations associated to breach for $1.5m | Lexology. Retrieved 13 January 2020, from https://www.lexology.com/library/element.aspx?g=3b829226-2cd6-4599-a982-38f95c456c3f
Journal, H. (2012). Blue Cross Blue Defend to Pay HHS $1.5M for HIPAA Breach. Retrieved 13 January 2020, from https://www.hipaajournal.com/blue-cross-blue-shield-pay-hhs-1-5m-hipaa-breach/
King, & Spalding. (2012). HHS and BCBST Settle HIPAA Case for $1.5 Million | JD Supra. Retrieved 13 January 2020, from https://www.jdsupra.com/legalnews/hhs-and-bcbst-settle-hipaa-case-for-15-89763/
Nicastro, D. (2012). Specialists: Lack of HIPAA fundamentals value BCBST $18.5 million – www.hcpro.com. Retrieved 13 January 2020, from http://www.hcpro.com/HOM-277726-6962/Specialists-Lack-of-HIPAA-basics-cost-BCBST-185-million.html

Order | Check Discount

Tags: Computer Sciences and Information Technology, Patient Documents Security and Confidentiality: HIPPA Law