I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information," when a hospital or clinic sent health records via electronic data to a health insurance company to be paid for health care services (a transaction).
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.
I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information," when a hospital or clinic sent health records via electronic data to a health insurance company to be paid for health care services.
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.
I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information," when a hospital or clinic sent health records via electronic data to a health insurance company to be paid for health care services.
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.
I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information," when a hospital or clinic sent health records via electronic data to a health insurance company to be paid for health care services.
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.
I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information," when a hospital or clinic send data to a health insurance company to be paid for health care services.
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.
I already said I KNOW you are trained that way.
But you are trained WRONG.
It is NOT a part of HIPAA. You are told that, but that is to scare you (not such a bad idea, probably).
HIPAA is a law and like all laws, it has SPECIFIC LANGUAGE. And ONLY that language is "the law."
Not that I trust the CDC for anything, but a quick search online (something MOST people in your profession will never do on their own, which is a big part of the problem) ... comes up with this link near the top:
https://www.cdc.gov/phlp/publications/topic/hipaa.html
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.
The Privacy Rule standards address the ... disclosure of individuals’ health information ... by “covered entities”
The following types of individuals and organizations are subject to the Privacy Rule and considered covered entities: Every healthcare provider, who electronically transmits health information in connection with certain transactions.
HIPAA was passed in 1996 -- before the internet was a thing. People were snail mailing and faxing things back then.
They created this to protect those "electronic transmissions of health information."
That is what HIPAA is.
Everybody in your field is TOLD that it is much more than that, but technically, it is not.
Your organization SHOULD have its own internal policies for these things that extend beyond transmitting data electronically ... BUT POLICIES ARE NOT LAW.
There are also exceptions to HIPAA, where even the law itself does not apply to that limited issue.
You can read it yourself.
Look up the statute to read it yourself.
Just understand, all of your training on this is WRONG. It is done to SCARE you so you will not disclose anything (which is good, anyway). The people training you ALSO do not know that what they are saying is wrong, most likely.
That, in a nutshell, IS the American medical industry today ... sadly.