Administrative and technical requirements to ensure HIPAA regulation compliance
(Health Insurance Portability and Accountability Act of 1996)
- Provided a stable source of federal funding for fraud and abuse control in health care
- Title I: Designed to protect health insurance coverage for workers and their families when they change or lose their job
- Title II: Administrative Simplification – Defines national standards to protect the privacy of Americans’ personal health records and is intended to increase efficiency of operations
Title II: Administrative Simplification
Purpose: To prevent the inappropriate use and disclosure of an individual’s health information, and require organizations which use health information to protect that information and the systems which store, transmit, and process it; and to increase the efficiency of operations through standardization.
Principles:
- Consumer control: the right to see, correct, obtain documentation of health information disclosures
- Accountability: civil and criminal penalties for violations of privacy standards
- Public responsibility: balance privacy with support for public health, medical research, and prevention of fraud
- Boundaries: use individually identifiable health information (IIHI) for health purposes only
- Security: standards to protect privacy, to monitor the system, and to inform
 HIPAA Security Regulations Summary |
University of Iowa HIPAA Security Regulations as summarized for hybrid components |
| Achieving HIPAA Security Regulations Compliance | University of Iowa resources for Hybrid Entity Components. Policy templates, Procedural assistance, Site level documentation, and Sample (Local/Unit) HIPAA Security Policies. |
| HIPAA Documentation Checklist 2014 |
University of Iowa Checklist of HIPAA documentation requirements |
| Administrative Simplification | US Department of Health and Human Services HIPAA Administrative Simplification web site |
| Privacy Resources | University of Iowa HIPAA Privacy Information |
| HIPAA Privacy Training(online course) | University of Iowa ICON course - follow up with the Unit HR Representative or Supervisor with questions |
| HIPAA at the UI Hospitals and Clinics | University of Iowa Health Care HIPAA Resources |
| HIPAA Security Rule Tool Kit | Security Content Automation Protocol (SCAP) |