Institute:Office of National Coordinator (ONC) Workforce Training Curriculum
Component:The Culture of Health Care
Unit:Privacy, Confidentiality, and Security
Lecture:HIPAA Privacy Rule
Slide content:Privacy, Confidentiality, and Security Summary Lecture c HIPAA Privacy Rule restricts disclosure of information not authorized by a patient Privacy Rule is enhanced in HITECH Act Patient authorization is not required for treatment, payment, or operations (TPO) HIPAA Privacy Rule defines covered entities that must adhere and defines business associates of those entities that also must adhere 22
Slide notes:This concludes Lecture c of Privacy, Confidentiality, and Security . In summary, the HIPAA Privacy Rule restricts disclosure of information not authorized by a patient. It has been enhanced by the HITECH Act. Its important to remember that patient authorization for disclosure is not required for treatment, payment, or operations. Finally, the HIPAA Privacy Rule defines covered entities and business associates of those entities that also must adhere to the privacy regulations. 22