Component 5; Unit 10: History of Privacy and Security Legislation
Description:
This unit describes the history of privacy and security legislation in the US.
Objectives:
- Discuss the reasons why the administrative simplification provisions were attached to the original HIPAA legislation.
- Explain the five principles underlying the HIPAA privacy rule.
- Discuss the reasons why the privacy rule was an action of the executive, not the legislative branch of Congress.
- Describe security recommendations in the 1997 report “For the Record.”
- Describe the major changes in privacy and security requirements as a result of HITECH and the reasons why the changes were needed.
Component 5; Unit 10; Lecture 10a comp5_unit10a_lecture_slides
Background of HIPAA (14:52): 1) Definitions of privacy, confidentiality and security; 2) HIPAA legislation-1996; 3) Privacy and confidentiality prior to HIPAA; 4) Principles underlying the HIPAA Privacy Rule; 5) HIPAA-1998-2009
Component 5; Unit 10; Lecture 10b comp5_unit10b_lecture_slides
Best Practices for Information Security (10:07): 1) Practices recommended by National Research Council (NRC) to ensure confidentiality; 2) NRC Recommended Security Practices
Component 5; Unit 10; Lecture 10c comp5_unit10c_lecture_slides
HITECH Privacy and Security (22:35): 1) Background to HITECH changes to HIPAA; 2) HITECH changes to HIPAA; 3) Challenges in implementing HITECH privacy and security requirements
Suggested Readings
Shalala, DE. Testimony before the Senate Committee on Labor and Human Relations, Thursday, September 11, 1997. Available from: http://aspe.hhs.gov/admnsimp/pvctest.htm
Committee on Maintaining Privacy and Security in Health Care Applications of the National Information Infrastructure, Commission on Physical Sciences, Mathematics, and Applications, National Research Council. For the Record: Protecting Electronic Health Information. Washington DC: National Academy Press, 1997 (Free Executive Summary). Available from: http://www.nap.edu/catalog/5595.html
Additional Materials
Department of Health and Human Services, Office of Civil Rights, Health Information Privacy. This website provides information on HIPAA Privacy and Security requirements. Available from: http://www.hhs.gov/ocr/privacy/