Professional Documents
Culture Documents
HIPAA
HIPAA
It is a federal law
that has been amended to the Internal Revenue Code of 1996. It was designed to improve portability and
continuity of health insurance coverage in group and individual markets.
Title–I HIPAA Compliance - HIPAA protects health insurance coverage for workers and their families
when they change or lose jobs.
Title-II HIPAA Compliance - The Administrative Simplification (AS) provisions requires the
establishment of national standards for electronic health care transactions and national identifiers for
providers, health insurance plans, and employers. AS provisions also address the security and privacy of
health data. The standards are meant to improve the efficiency and effectiveness of the nation's health care
system by encouraging the widespread use of electronic data interchange in the US health care system.
HIPAA / HITECH Omnibus Final Rule came into effect in late March 2013, with a 180-day safe
compliance period that recently ended on September 23, 2013. The rule greatly enhances a patient’s
privacy protections, provides individuals new rights to their health information, and strengthens the
government’s ability to enforce the law. The HIPAA privacy and security rules have focused on health
care providers, health plans and other entities that process health insurance claims. The changes announced
today expand many of the requirements to business associates of these entities that receive protected health
information, such as contractors and subcontractors.
In Short:
Note: Click the section numbers in the following table to view the various ADAudit Plus audit reports that
will help satisfy a particular clause.
Section
Description Reports
Number
1. Successful AD
Authentication
Implement procedures for the authorization and / or
2. Failed AD
164.308 (a) supervision of workforce members who work with
Authentication
(3) (ii) (a) electronic protected health information or in
3. Server Logon
location where it might be accessed.
Activity
1. Successful Logon /
Logoff
164.308 (a) Procedures for monitoring log-in attempts and 2. Unsuccesful Logon
(5) (ii) (c) reporting discrepancies. 3. Terminal Service
Logon