HIPPA: Security and Privacy Fundamentals

Introduction
Module 1: Introduction to HIPAA
1.1 Introduction to HIPAA
5 Topics
1.1.1 HIPAA’s Role in Healthcare
1.1.2 History of HIPAA
1.1.3 Important HIPAA Terminology
1.1.4 HIPAA Violations
1.1.5 HIPAA Privacy Rule
1.2 When Is Patient Consent Not Necessary for Disclosure?
1 Quiz
1.2.1 Module 1: Test
Module 2: Fundamentals of PHI
2.1 What Is PHI?
1 Topic
2.1.1 PHI Identifiers
2.2 HIPPA Guidelines
3 Topics
2.2.1 For Recordings
2.2.2 For Telephone Communication
2.2.3 For Email Communication
2.3 PHI Rights of Individuals
2.4 Computer Workstation Guidelines to Protect PHI
2.5 How to Dispose of PHI?
1 Quiz
2.5.1 Module 2: Test
Module 3: The Privacy Rule – Uses, Disclosures, and Compliance
3.1 The HIPAA Privacy Rule
3.2 HIPAA Compliance
3.3 Who Is Covered by the Privacy Rule?
3.4 Statutory and Regulatory Background
3.5 Information Protected Under the Privacy Rule
2 Topics
3.5.1 Protected Health Information
3.5.2 De-Identified Information
3.6 Permitted Uses and Disclosures
3.7 Authorized Uses and Disclosures
3.8 Notice and Other Individual Rights
7 Topics
3.8.1 Privacy Practice Notice
3.8.2 Access
3.8.3 Amendment
3.8.4 Disclosure Accounting
3.8.5 Confidential Communications Requirements
3.8.6 Restriction Request
3.8.7 Administrative Requirements of the Privacy Rule
3.9 Guidelines and Practices for Privacy
3.10 Penalties for Noncompliance with the Privacy Rule
1 Quiz
3.10.1 Module 3: Test
Module 4: The Security Rule – Uses, Disclosures, and Compliance
4.1 The HIPAA Security Rule
4.2 History of the HIPAA Security Rule
3 Topics
4.2.1 Administrative Safeguards
4.2.2 Physical Safeguards
4.2.3 Technical Security Zone
1 of 3
Previous Lesson
Next Lesson

3.10 Penalties for Noncompliance with the Privacy Rule

HIPPA: Security and Privacy Fundamentals 3.10 Penalties for Noncompliance with the Privacy Rule

If covered entities don’t voluntarily comply with the Privacy Rule, they risk receiving civil money penalties, while some infractions may even result in criminal charges.

Civil Money Penalties

In this case, the severity of the penalties will depend on various elements, including the timing of the violation, if the covered entity was aware of the non-compliance, or if the covered entity’s non-compliance was brought on by willful neglect.

Criminal Penalties

A criminal fine of up to $50,000 and up to one year in jail might be imposed on someone who intentionally acquires or publishes PHI against the Privacy Rule.

If the wrongful conduct involves fake identities, the criminal penalties rise to $100,000 and up to five years in prison.

Furthermore, if the wrongful conduct includes the intent to sell, transmit, or use patient data for financial benefit, personal gain, or malicious harm, the penalty may rise to $250,000 and up to almost ten years in prison.

Lesson Content
Previous Lesson
Back to Course
Next Lesson
Subscribe
Notify of
guest
0 Discussions
Inline Feedbacks
View all comments
Post a comment

Leave a Comment

Your email address will not be published. Required fields are marked *

0
Would love your thoughts, please comment.x
()
x