Assignment
Recent news headlines featured executives from Facebook and Twitter addressing individual privacy violations and data breaches. In the healthcare field, the right to privacy and consent to treatment is not new and actually dates back to the Hippocratic oath. However, on a recent visit to a physician's office, do you recall the sign in process? Did you give your name and birth date orally to a clerk? Or did you sign a form and include your date of birth and/or other personal information on the sign-in sheet, for everyone to see? Could you see the names and personal information of people that signed in before you? These are examples of how your private information can be shared, accidentally, with others. Thus, client privacy and informed consent violations are not limited to companies such as Facebook and Twitter, but to health and human services organizations as well.
Advances in technology and multiple service providers, for example, doctors, case managers, etc, have increased the potential of a data breach risk associated with the sharing of patient protected health information (PHI). The Department of Health and Human Services, Office of Civil Rights (OCR) is responsible for oversight and enforcement of HIPAA regulations. Every year OCR regulators sanction and penalize healthcare organizations for violating patient privacy.
What are the most common types of data breaches? Examples of accidental disclosure of patients' protected health information (PHI) could be mailing out flyers with PHI, unauthorized access to PHI via an employee email, discussing PHI in the hallway, hacking of computer systems, loss of laptops containing patient information, or medical records found in dumpsters. The purpose of this assignment is to understand, recognize, analyze, and evaluate PHI laws and data breach cases and their risk implications for local healthcare organizations. The fines and penalties are not limited to the organization, but as you will see in this assignment, can be assessed against employees of the organization such as case managers, social workers, nurses, counselors, etc.
Directions
I) Information Technology Impact on Health Care Systems.
Provide an analysis of the following two Acts and their impact on healthcare systems:
o The Health Insurance Portability and Accountability Act (HIPAA).
o The Title II Administrative Simplification Act.
Length
Your analysis should include at least 2 paragraphs for each of the above items and include a description of each, as well as their impact on health information systems and protection of patient privacy.
II) Go to the HIPAA Journal website
There you will find data breach cases posted by month and day.
I. Select a data breach case:Based on your month of birth, select a data breach case from the HIPAA Journal website. In your description of the data breach, include the following information: (3 paragraphs)
a) Organization and location
b) Type of service(s) provided by the organization
c) Type of breach (which section of the HIPAA law was violated)
d) Time period over which breach occurred
e) Number of and type of clients impacted
f) Recommendation actions to resolve the case, including any fines or penalties
II. Conclusion: Based on the type of organization that committed the breach, select another local organization for which the possible violation is possible. Identify the organization and include a recommendation that they should implement to avoid breach of client/patient data by their employees.
Format your assignment according to the give formatting requirements:
• The answer must be using Times New Roman font (size 12), double spaced, typed, with one-inch margins on all sides.
• The response also includes a cover page containing the student's name, the title of the assignment, the course title, and the date. The cover page is not included in the required page length.
• Also include a reference page. The references and Citations should follow APA format. The reference page is not included in the required page length.