Confidentiality Training for Staff Development on Access Compliance to Patient Medical

Records

Joanne TutenMHA 690Ashford University 2015

The Privacy Rule

• Introduction HIPAA • Patient medical records are protected by Federal and Sate laws. These laws are

mandated for the protection and security of the privacy of patients medical records.

• Consequences in failing to maintain the safety of these records can impose a criminal fine (penalty) and punishment by imprisonment.

• The development in staff training and unethical decisions making by violating the patient record privacy is a responsibility of the HCO, training program, conducted by an highly trained Quality Assurance trainer in all areas of clients rights to privacy, confidentiality, safeguard to records, and privacy.

• The HIPAA compliance and training protractor will consist of per testing and post -testing.

• Staff will understand that HIPAA is designed to protect the health and welfare of the patient.

Organizational Duties

• It is the sole responsibility of the organization management team to aligned employees with the organization Metrologic's on delivering and providing services, based on the organization core ethics and guiding principal on client rights to dignity and privacy.

• It is also the organization duties to ensure that all members understand the policy approach to respecting patient rights to confidently and the right to privacy.

• It is the organization responsibility to provide orientation training , services definition, core competency and annual service training on patient confidentially and patient rights to privacy. Maintain legal standards concerning safe keeping of patients records and acknowledgment by staff.

• It is the organization duties insure secured records and the breach of records. Staying inform of regulation up dates and revision of HIPAA guidelines and cross keeping staff members informed of these changes is critical to staying incompliance.

Access to Patient Records• Staff training on record safeguard to records

– 1. All records will be storage in a secured location with double lock and recognition announcement before entering patient record keeping room.

– 2. No other types of function and business operations are allowed in the patient record keeping room.

– 3. All records are confidential and will be treated with such respect.

• Staff training on access to patient records

– 1. Authorized employees must have privileged credential to access patient records. A check off privileging sheet by a supervisor is necessary during orientation. Before accessing patient records, all authorized staff much validate by managing supervisor monthly with a different secure password for electronic devices and submission.

– 2. It is a violation for authorized staff to share secured access passwords.

Disclosure of Patient Information

• Patients have the rights to consent for release of information to a third party. Staff members do not have the right to release patient information without patient written consent.

• Electronic Communication: Transmitting patient records from on departmentalization to another will have a confidently disclosure and indented receiving party as a part of its content. (should be addressed as sanative information.)

• Only records order by the judicial system (court of Law) my subpoena records without patient consent. No other entity has this power.

• Staff will be trained that other state officials such as: Social Services, Social Security, Vocational Rehabilitation, University, and Military to not have authorizing powers to request patient records under any circumstance without patient written request.

• It is unlawful for authorize staff to access patient records and share these records with news media for monetary profits and personal recognition.

Record Retention Taking the PledgeDisposal Protection Empowering Staff

• All records are safe guarded with the same protection as activate patient records.

• Records should be stored in a seal container label with patient identifiable database number.

• The destroying of patient records are to be as such, destroyed. No portions of the patient records are to be kept and maintain by staff. Agency will follower state guideline for patient record retention and provide guidelines and training to managing staff.

• The organization will encourage staff to become apart of a successful team.

• Organization is responsible for empowering staff by building a framework of knowledge and core ethical competency that relates to the companies core values and respect for patient rights. Great efforts should be placed on keeping staff aligned with the regulations on patient privacy rights, with in the integration system.