Security Awareness Training

201 - Understanding the HIPAA Privacy Rule

HIPAA - the Health Insurance Portability and Accountability Act - became US law in 1996 and the Privacy Rule was finalized during the summer of 2002. Under this rule, healthcare organizations across the country must train all employees in the basics of patient privacy and confidentiality.

This course is designed for healthcare workers who create, process, or otherwise manage patient information as a core function of their regular duties. The course discusses:

• Definitions of the key terms used in HIPAA.
• What is "Protected Health Information" (PHI).
• PHI in print, electronic and other forms.
• The "Minimum Necessary" principle.
• The "Notice of Privacy Practices".
• Allowed uses and disclosures of PHI.
• Penalties for inappropriate disclosure of PHI.
• Some practical tips for safeguarding PHI.

This course takes approximately 40 minutes to complete.