Module 0: Course Introduction and Administration

Susan McAndrew
length: 10:24 | format: Video with PowerPoint
Related Content: Introduction and Administration.pdf

Loading the player ...

Hi, I understand that from the warm up sessions that we have done already on this training in Dallas and Atlanta that these are two full days so I was told to get this started on time and we will try to keep to our schedule. There's lots of material to go over but I want to make sure that we properly welcome you all to the State Attorney's General training on the Health Information Privacy and Security Requirements under the Health Insurance Portability and Accountability Act better known as HIPAA. On behalf of the Director of the Office for Civil Rights, Gina Verdugo, and her Deputy, Karen Walker-Bryce, let me extend the warmest welcomes to you all. We are so looking forward to partnering with you and working to better enforce the Privacy and Security requirements that protect the health information of individuals across the country. My name is Sue McAndrew. I am the deputy director for Health Information privacy within the Office for Civil Rights. So, all of the HIPAA privacy security rules fall under my jurisdiction as well as the new HITECH breach notification requirements and we are so happy to be able to bring this training to you. Let me just briefly introduce the staff that will be conducting the training. Kicking you off on day one will be Verne Rinker. Verne, please stand up. Verne started his Federal career with the Medicare program and so we snatched away from CMS but if you have Medicare questions, they would go to Verne. But he is going to kick the day off at the next session on the enforcement and the Federal Privacy Act, just an overview of the laws. Next is Iliana Peters is also a trainer. Now she's a veteran from the Dallas training and got rave reviews, so we're looking for to having Iliana. She also started her privacy career in Dallas as investigator, so she has that background as well. David Holtzman is our security expert, our security rule expert, and he also has an enforcement background from the private sector, the health plans. And then finally a fourth trainer is Louis Altarescu. Louis knows everything. Louis has been with the Office for Civil Rights and our General Counsel's Office probably since the dinosaurs stopped roaming the earth. No, he is a fixture there and started on the Privacy Rule before there was a privacy rule, so he has been with this project from its inception and he has a wealth of knowledge and advice for us all. So with regards to the training programs, on day one we will do as I said. Verne will walk us through an overview of the laws. Actually, I'm going to go back to this slide. Iliana will then cover the fundamentals of the Privacy Rule, David will cover the fundamentals of the Security Rule and then Iliana will come back to wrap things up with a walk-through of what the changes are that are coming down the road as result of the HITECH Act, which did many things in addition to giving you all authority to enforce aspects of the Privacy and Security rules. She will tell you what additional changes are coming and sum up the day. Tomorrow, on day two, Verne will go over our enforcement structure at the Federal level for the HIPAA requirements and then Louis will do two presentations, one will be highlights on the methods of investigating and prosecuting potential HIPAA violations and then the intersections of HIPAA, the Federal law and your individual state laws. We get lots of questions in that area and then the day will wrap up with Iliana going over where you can find additional enforcement support and resources as you go about your day. And Verne will then do a post-assessment exercise with you all. And then let, we let you go back and do great things with all this information. The objectives that we want is to make sure that you come out of this training with a complete understanding of your authorities, what your authorities are under for HIPAA enforcement and under the HITECH act. This was enacted in February of '09. We actually have had some State Attorneys General prior to this training take-up the privacy issues and we have welcomed their participation in this enforcement effort. You will understand the actions that you can take, the authority that you have under HITECH is somewhat limited and specific and so we will go over those as well as making sure that you understand how to assess whether or not there has been a violation of the Federal requirements. In addition, we hope that you get to know us and we get to know you and that we have come away with a better appreciation for our various roles and what we all bring to the table in this now joint endeavor to make sure that privacy of medical information is adequately protected and secured. There are lots of. This is a Federal Regulation, we've got acronyms, we've got specially defined terms. No stranger to you all, but we will try to indoctrinate you into our HIPAA talk so that we can communicate without always having to parenthetically come up with the definition of all these things. And then just to make sure that you have a full and complete understanding of all the requirements, not only of what the privacy rights are of individuals and the obligations of covered entities to protect that private those that privacy interests of the individual and their information, the security requirements that are there to make sure that privacy protections are effectuated and in particularly when the information is an electronic environment, the new requirements on entities to notify individuals when there has been a breach of their information. Many of you are probably, generally familiar with these kinds of breach notification because there are many state laws that have similar requirements and will try to point out how the Federal rule of course differs from some of the state requirements. So, with that, I would like to turn it over to Verne and again just say how much we appreciate all of you taking the time to join us here and that we do hope that you get what you need out of the training. We do appreciate, at the end, your evaluation and feedback. It makes the training going forward for our next and last round in San Francisco, it will help to improve inform us on how can better serve you all and provide for your needs. So, with that, Verne.
(To use allow video to load completely)
  • Course Introduction
  • Course Instructors
  • Course Agenda
  • Course Objectives

Tell a friend: