As part of foundation of HIM class, I learned that every organization needs to ensure privacy and security of electronic health information. Any breach can result into huge damage as well as irreversible trust issue from the consumers. I also learned the HIPAA privacy and security rules to protect individually identifiable health information. This rule covers protected health information (PHI) in any medium - paper, computer or any other media, while the HIPAA security rule covers electronic protected health information (e-PHI). HIPAA rules have detailed requirements regarding the both privacy and security.
I have also learned that these HIPAA standards are enforced by Office of Civil Right (OCR) which can result in to fines of over Millions.
These HIPAA standards have specific rules -
Administrative safeguards such as IT system acess security management, security Role management with review rules.
Physical safeguards such as workstation and facility access security.
Technical safeguards such as Access control, Data encryption, Data transmission & integrity control.
Artifacts:
Case Study Violations of Ethics, Privacy & Security
Case Study - HIPAA violations(DLH)