Hipaa Regulated Insurance
hipaa regulated insurance
Does HIPAA regulate non-theraputic massage? If so, is it necessary to keep separate notes on each person?
I work for a company that provides chair massage to companies in Maryland. We address a variety of aches and pains but for the most part just provide a nice 15 minute relaxation massage. There is no insurance work involved. Some of our clients are regulars but we also get many non-repeating ones. The State of Maryland requires that notes be kept on all massages, retained for 5 years and made available to a client upon request. There has been some disagreement as to whether we can write our notes as a running log by shift or if we have to keep a separate note on each person. Any input into this matter would be appreciated.
In April 2003, the US Department of Health and Human Services issued regulations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), which may affect some ISPA members.
Essentially, HIPAA’s sweeping health information privacy rules are designed to ensure the protection and security of medical records and other personal health information and to protect an individual’s right to privacy in matters involving their health care. Where an individual’s health information is to be used or disclosed for specific purposes other than for treatment, payment or health care operations, a written authorization is required.
The HIPAA rules apply to all “Covered Entities,” defined as health plans, health care clearinghouses and health care providers that transmit any health information in electronic form in connection with a list of specified transactions. ISPA members are not health plans or health clearinghouses. Importantly, however, they may be considered health care providers.
Because of the diversity of services provided by ISPA members, HIPAA’s federal privacy requirements may not apply to every ISPA member. If your company does not furnish, bill or receive payment for health care in the normal course of business, then the HIPAA requirement does not affect you. For ease of determining whether your company should comply, follow the HIPAA Decision Tree below.
Finally, if you/your company are not covered health care providers under the federal HIPAA requirements, you also need to check your state privacy laws and regulations to review what is required. As well, it is most wise for your company to develop a statement of privacy or confidentiality in any event, irrespective of whether HIPAA affects its operations.
The decision tree referenced above can be found here:
http://www.experienceispa.com/ISPA/Education/Resources/HIPAA+Decision+Tree.htm
|
|
Understanding the boundaries of the HIPAA preemption analysis: who is regulated by the privacy rule and what information does HIPAA protect?(Health … An article from: Defense Counsel Journal $5.95 This digital document is an article from Defense Counsel Journal, published by International Association of Defense Counsels on April 1, 2005. The length of the article is 6392 words. The page length shown above is based on a typical 300-word page. The article is delivered in HTML format and is available in your Amazon.com Digital Locker immediately after purchase. You can view it with any web bro… |
|
|
They’re real and they’re here: the new federally regulated privacy rules under HIPAA: professional issues.: An article from: MedSurg Nursing $5.95 This digital document is an article from MedSurg Nursing, published by Jannetti Publications, Inc. on December 1, 2003. The length of the article is 5290 words. The page length shown above is based on a typical 300-word page. The article is delivered in HTML format and is available in your Amazon.com Digital Locker immediately after purchase. You can view it with any web browser.From the author: … |
