Text Box: high priority. There are three types of threats: Natural: flash flooding, tornado, winter storms/ice and hail/lightening. Human: civil disorder/vandalism, terrorism, but also inadvertent data entry errors, virus infection, unauthorized access, improper disposal of hardware, network penetration, password misuses, unattended workstation, system failure, and denial of service attack. Environmental: major structural fire and main power outage. Methods of safeguarding security On-site electronic copies Off-site electronic copies Anti-virus software Backup uninterruptible power supply Surge protector Text Box: This year we continue to implement the provisions of the HIPA Act of 1996 with the latest rule effective April 20, 2005; the Security Rule. First of all the Security Rule only concerns electronic forms of Protected Health Information (PHI). At Home Health Care Professionals only staff and management who are creating, receiving, deleting, changing or transmitting PHI electronically have to be trained. This is an informative article about what the Security Rule means for us. Do not hesitate to ask questions about it! The Security Rule contains three safeguards: administrative, technical and physical safeguards. It also requires documentation, polices and procedures. Like for the Privacy Rule, the first step to compliance is to assign responsibility for the implementation of the Rule to one person at Home Health Care Professionals: the Security Official. What does it protect? The Security Rule protects the confidentiality, integrity, and availability of our patients’ information that is in electronic form only. Confidentiality Text Box: Confidentiality means the property that data or information is not made available or disclosed to unauthorized persons or processes. Integrity Integrity means the property that data or information have not been altered or destroyed in an unauthorized manner. Availability Availability means the property that data or information is accessible and useable upon demand by an authorized person. Who in the agency is affected by the rule? Staff members, professionals and contractors that receive, create, modify or transmit Protected Health Information in electronic form. What do we do? In order to comply with the Rule we had to determine which threats to security Home Health Care Professionals was most concerned with and select the ones that were

HIPAA Security Rule
Text Box: Home Health Care Professionals, Inc.

04/22/2005

Volume 1, issue 2

CNAs earn 1 CEU here!

Hipaa refresher 2005
To Navigate, use the "Back" button

Continues page 4.

PAGE 2

 

PAGE 3

 

PAGE 4