1	“HIPAA – What it Means to <<Your Company>>” Duncan S Smith
2	"“The illusion of progress..." “The illusion of progress can be achieved by simply rearranging the terms of description so that new acronyms are created”
3	Some of the acronyms HIPAA Health Information Portability and Accountability Act 1996 IIHI Individually Identifiable Health Information PHI Protected Health Information
4	The HIPAA Environment
5
6
7	Risk and HIPAA – Questions to address Is HIPAA a credible threat to your organisation and its capability to achieve objectives and execute strategies successfully?
8	Breaking the problem down What does the law impose on our customers? What can (must) you do in response?
9	The HIPAA Environment
10	Three foci of attention
11	PRIVACY Standards for Privacy of Individually Identifiable Health Information; Final Rule Compliance date 14 April 2003
12
13	SECURITY Security and Electronic Signature Standards; Proposed Rule Compliance date minimum Feb 03 plus 26 months
14
15	The Security Rule has two key elements
16	What is driving the customer? Technical Demands Equipment, hardware and software Rule requirements are building blocks for NPI Organisational Demands Policy and procedure Personnel and contractual control
17	Education “… any vendor who claims to be HIPAA compliant - or worse yet, that use of their product(s) will make a client/customer HIPAA compliant – does not understand HIPAA”
18	What are customers looking for? “Organizations should be careful to partner with software vendors that offer viable solutions today and demonstrate the commitment and capacity to develop solutions for tomorrow as well”
19	What’s a “Chain of Trust Partner Agreement”? Non-Disclosure Agreement that governs the transmission of data through an electronic medium, where … the sender and recipient agree to protect the data electronically transmitted between them
20	ELECTRONIC TRANSACTIONS Standard transactions and code set (TCS) requirements
21
22	Controlled Transactions
23	Covered transactions
24	What Standards were chosen ANSI ASC X12N standards, Version 4010, were chosen for all of the transactions except retail pharmacy transactions e.g. X12N 837 ‘Health Care Claim’, X12N 275 ‘Patient Information’ Standards for claim attachments have yet to be finalised and includes HL7
25	The Code Sets Under HIPAA, a "code set" is any set of codes used for encoding data elements, such as tables of terms, medical concepts, medical diagnosis codes, or medical procedure codes (CPT) Code sets for medical data are required for data elements in the administrative and financial health care transaction standards adopted under HIPAA for diagnoses, procedures, and drugs
26	"End of Session" End of Session Thank you