Beruflich Dokumente
Kultur Dokumente
2) SCOPE
A. This policy applies to all organization’s employees, management, contractors, student interns, and
volunteers.
B. This policy describes the organization’s objectives and policies regarding maintaining the privacy of
patient information.
3) RESPONSIBILITIES
A. Executives/Management
i) Establish program objectives.
ii) Approve privacy policy.
iii) Provide training for work force.
iv) Enforce sanctions.
v) Designate Privacy Official.
B. Privacy Official
i) Develops privacy policies and procedures.
ii) Coordinates and implements policy through organization’s departments.
iii) Oversees training.
iv) Receives and processes privacy complaints.
v) Processes individual rights requests.
(1) Right to access/copy protected health information (PHI).
(2) Right to amend PHI.
(3) Right to restrict use/disclosure.
(4) Right to confidential communications.
(5) Right to an accounting of disclosures.
(6) Right to file a complaint.
vi) Ensures retention of HIPPA policies and procedures, complaints, and investigative materials to meet
compliance requirements.
C. Legal Counsel (or Privacy Official)
i) Processes Business Associate Agreements (BAA)
(1) Conducts business associate inventory.
(2) Develops and coordinates BAA template.
(3) Conducts annual review/update.
ii) Corporate Compliance Officer
(1) Assists in development and execution of the HIPPA Privacy Policy and promulgation of operating
procedures.
(2) Assists and supports the Privacy Official.
(3) Provides support for HIPPA compliance activities.
6) INDIVIDUAL RIGHTS
A. Right to access/copy PHI.
B. Right to amend PHI.
C. Right to restrict use or disclosure.
D. Right to confidential communications.
E. Right to an accounting of disclosures.
F. Right to file a complaint.