RE: HIPAA and Government Entities

[Artis, David (CC-Contractor)]

Try 
hipaasecurerx.com
 
They 
have done a lot of work with government agencies.
 
They 
are heavly relied upon here in Nebraska and Iowa.
 
They 
are located in Jacksonville, Florida.

  -Original Message-From: Debbie Kerns 
  [mailto:[EMAIL PROTECTED]Sent: Wednesday, March 05, 2003 3:52 
  PMTo: WEDI SNIP Privacy Workgroup ListSubject: HIPAA and 
  Government Entities
  A month or so ago someone posted a link to a 
  website specifically dealing with HIPAA and government entities.  Whoever 
  that was, could you please forward that website address to me.  
  
   
  Thank You 
   
  Debbie KernsHIPAA Compliance 
  OfficerSteele Memorial Hospital
  [EMAIL PROTECTED]---The 
  WEDI SNIP listserv to which you are subscribed is not moderated. The 
  discussions on this listserv therefore represent the views of the individual 
  participants, and do not necessarily represent the views of the WEDI Board of 
  Directors nor WEDI SNIP. If you wish to receive an official opinion, post your 
  question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/. 
  These listservs should not be used for commercial marketing purposes or 
  discussion of specific vendor products and services. They also are not 
  intended to be used as a forum for personal disagreements or unprofessional 
  communication at any time.You are currently subscribed to wedi-privacy 
  as: [EMAIL PROTECTED]To unsubscribe from this list, go to the 
  Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email 
  to [EMAIL PROTECTED]If you need to unsubscribe 
  but your current email address is not the same as the address subscribed to 
  the list, please use the Subscribe/Unsubscribe form at 
  http://subscribe.wedi.org 
---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org

Re: HIPAA and Government Entities

[Chris Riley]

Debbie,
HIPAA Conformance Certification Organization (www.hcco.us) has a State and
Local Government workgroup for Privacy. Cheri Huber is the chair.  
Hope this helps,
-- 
Chris Riley, CISSP
Information Tool Designers Inc.





  
  
  
  
Try  hipaasecurerx.com
   
  
They  have done a lot of work with government agencies.
   
  
They  are heavly relied upon here in Nebraska and Iowa.
   
  
They  are located in Jacksonville, Florida.
  
  

-Original Message-
From: Debbie Kerns[mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 05, 2003 3:52PM
To: WEDI SNIP Privacy Workgroup List
Subject: HIPAA andGovernment Entities


A month or so ago someone posted a link
to awebsite specifically dealing with HIPAA and government entities. 
Whoeverthat was, could you please forward that website address to me. 
   
 
Thank You 
 
Debbie Kerns
HIPAA ComplianceOfficer
Steele Memorial Hospital

[EMAIL PROTECTED]

---
TheWEDI SNIP listserv to which you are subscribed is not moderated. The
   discussions on this listserv therefore represent the views of the individual
   participants, and do not necessarily represent the views of the WEDI Board
ofDirectors nor WEDI SNIP. If you wish to receive an official opinion,
post yourquestion to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.
   These listservs should not be used for commercial marketing purposes or
   discussion of specific vendor products and services. They also are not
   intended to be used as a forum for personal disagreements or unprofessional
   communication at any time.

You are currently subscribed to wedi-privacyas: [EMAIL PROTECTED]
To unsubscribe from this list, go to theSubscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank emailto [EMAIL PROTECTED]
If you need to unsubscribebut your current email address is not the same
as the address subscribed tothe list, please use the Subscribe/Unsubscribe
form athttp://subscribe.wedi.org 
 ---
 The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the individual
participants, and do not necessarily represent the views of the WEDI Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion, post
your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.
  These listservs should not be used for commercial marketing purposes or
discussion of specific vendor products and services.  They also are not intended
to be used as a forum for personal disagreements or unprofessional communication
at any time.

 You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
 To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org
or send a blank email to [EMAIL PROTECTED]
 If you need to unsubscribe but your current email address is not the same
as the address subscribed to the list, please use the Subscribe/Unsubscribe
form at http://subscribe.wedi.org 





---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org

RE: Minimum necessary

[David Blasi]

A live person on the phone is not limited to what can be provided in a
271 response or a 277 or any other HIPAA required response.  Talking to
a person on the phone is not considered the use of "electronic media",
as defined by 162.103.  Direct Data Entry, which is the subject of the
limitation to which you are referring, cannot have incentives for its
use (See 196.925(4)).  A prohibition on incentives for other modes of
electronic media communications are what is intended, not limiting
the usefulness of picking up a phone and trying to get a situation
resolved by speaking to a live person.  

 

>>> "Schmidt, Lee M" <[EMAIL PROTECTED]> 03/05/03 04:26PM
>>>
Assuming the inquiry was through a phone call and that the HMO &Client
were
covered entities, the phone rep should provide the same level of
benefit
information made available through the 271 response and any HMO
eligibility
web applications to which the provider has access.  

In short, there can be no incentive for the provider to use one mode
of
inquiry over another which means all avenues of disseminating
eligibility
information must provide the same level of detail.

Understand that the 271 does provide comprehensive benefit information,
but
at this time the government regulates that the minimum response to an
eligibility inquiry is a yes/no. 

Thanks,
 
Lee M. Schmidt
Magellan Behavioral Health
HIPAA / I.T. Project Manager, Claims Applications 
Local: (314) 387-5445 
Toll Free (St. Louis): 1-800-450-7281 ext: 75445  
New Cell: (314) 960-0964 
Fax: 314-387-5655 or 314-292-1120 (Electronic)
E-Mail: [EMAIL PROTECTED]
 


-Original Message-
From: Jonathan Fox [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, March 05, 2003 1:04 PM
To: WEDI SNIP Privacy Workgroup List
Subject: Minimum necessary


Now that Privacy is right around the corner, a lot of people are
re-examining some of the Transactions work that has been done.

Here is a question that has privacy (minimum necessary) implications.

A provider performs an eligibility inquiry with their local HMO.  The
HMO responds with yes the member is eligible and here is a list of
their
benefits.  Clearly, the minimum requirements of the functionality of
the
transaction have been met, but how far can a payer go in giving
additional information (COB, HIC number, Group Number, Plan Number,
etc,
before you cross the minimum necessary (privacy) line.

Certainly, many of these pieces of information are not needed to get a
claim paid by that payer.  Is it the 
responsibility of the payer and/or is it within their right to divulge
information about other policies they may have.  

This is not a question about transaction functionality, as the
transaction clearly accommodates this data, but there seems to be a
slight contradiction with the minimum necessary clause of the Privacy
rule.

Thoughts please???

Jonathan Fox
Independent Health

---
The WEDI SNIP listserv to which you are subscribed is not moderated.
The
discussions on this listserv therefore represent the views of the
individual
participants, and do not necessarily represent the views of the WEDI
Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion,
post
your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used
for
commercial marketing purposes or discussion of specific vendor products
and
services.  They also are not intended to be used as a forum for
personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as:
[EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the
same as
the address subscribed to the list, please use the
Subscribe/Unsubscribe
form at http://subscribe.wedi.org 

---
The WEDI SNIP listserv to which you are subscribed is not moderated.
The discussions on this listserv therefore represent the views of the
individual participants, and do not necessarily represent the views of
the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an
official opinion, post your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products
and services.  They also are not intended to be used as a forum for
personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as:
[EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the
same as the address subscribed to the list, please use the
Subscribe/Unsubscribe form at http://subscribe.wedi.org 



---
The WEDI SNIP lis

Re: mail filtering

[Mimi Hart]

Sorry to be naive, but how is this different then expecting my
colleagues to follow other procedures? Cover sheets on faxes? Not taking
PHI home? Not discussing PHI in the lunch room? They are professionals,
there are certain professional rules they have to follow like wearing
gloves around blood borne pathogens and the like, why is privacy
different?

It is my responsibility to get a system that works for my staff. It is
their responsibility to follow any accompanying policies and procedures
that support/surround the system.

My opinion only...Mimi


Mimi Hart Ó¿Õ*
Research Analyst, HIPAA
Iowa Health System
319-369-7767 (phone)
319-369-8365 (fax)
319-490-0637 (pager)
[EMAIL PROTECTED]

>>> Jim Hewitt <[EMAIL PROTECTED]> 03/04/03 09:05PM >>>
I agree with most of Bill Kammerer's contributions on
this forum, but disagree with this one:
> do we need any more proof that email filtering
doesn't work?

Filtering isn't a silver bullet, but it's part of the
solution.  
> ..."rely on users' training and intelligence."  
That won't work.  Taking email encryption as an
analogous example, you've probably seen the Carnegie
Mellon paper from a few years ago, "Why Johnny Can't
Encrypt."  They studied a group of fairly high-skill
users (CS researchers), and gave them the task of
sending and receiving encrypted email.  Most of them
had trouble with the software (PGP 5.1, I think), but
more importantly they consistently forgot to click on
"encrypt" when they had a confidential message to
send. 

If you're relying on users' training and intelligence
ALONE you're almost certainly not compliant.  You
don't rely on that alone.  As one user told me, "It
would be insane to install a bunch of keyword
triggers, sit back and assume you're compliant."  It
would also be insane to base your compliance on users
remembering to do the right thing.

Email filtering is similar to IDS.  You have to buy a
good commercial package, spend a lot of time tuning it
for your organization, install update almost daily,
and put in a lot of maintenance by a live sysadmin. 
Nobody said it was cheap, and the false positives
certainly are annoying, but it's necessary, in my
view.

By the way, I've seen a lot of unanswered requests for
lists of PHI keywords.  I don't think anybody has a
list they are happy with.  Anybody who has, please
chime in.

__
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/ 

---
The WEDI SNIP listserv to which you are subscribed is not moderated.
The discussions on this listserv therefore represent the views of the
individual participants, and do not necessarily represent the views of
the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an
official opinion, post your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products
and services.  They also are not intended to be used as a forum for
personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the
same as the address subscribed to the list, please use the
Subscribe/Unsubscribe form at http://subscribe.wedi.org
*

This message and accompanying documents are covered by the Electronic Communications 
Privacy Act, 18 U.S.C. §§ 2510-2521, and contain information intended for the 
specified individual(s) only. This information is confidential. If you are not the 
intended recipient or an agent responsible for delivering it to the intended 
recipient, you are hereby notified that you have received this document in error and 
that any review, dissemination, copying, or the taking of any action based on the 
contents of this information is strictly prohibited. If you have received this 
communication in error, please notify us immediately by e-mail, and delete the 
original message.

*


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL 

Re: mail filtering

[Doug Webb]

Mimi,
Not only yours!  If this is naive, then so am 
I.
 
William's point was that the exaunt content-based filters DO 
NOT WORK, either because they are mis-configured, or are inappropriate to be 
used on healthcare-related conversations.
 
Encryption and E-signing need to be established on a 
point-to-point basis, along with policies that say don't send PHI to anybody not 
on the list without first establishing the proper security.
 
The opinions expressed here are my own and not necessarily the opinion of 
LCMH.
 
Douglas M. WebbComputer System EngineerLittle Company of Mary 
Hospital & Health Care Centers[EMAIL PROTECTED]
 
"This electronic message may contain information that is confidential 
and/or legally privileged. It is intended only for the use of the individual(s) 
and entity(s)  named as recipients in the message. If you are not an 
intended recipient of the message, please notify the sender immediately,  
delete the material from any computer, do not deliver, distribute, or copy this 
message, and do not disclose its contents or take action in reliance on the 
information it contains. Thank you."
 
 

  - Original Message - 
  From: 
  Mimi Hart 
  
  To: WEDI SNIP Privacy Workgroup List 
  
  Sent: Thursday, March 06, 2003 08:03 
  AM
  Subject: Re: mail filtering
  Sorry to be naive, but how is this different then expecting 
  mycolleagues to follow other procedures? Cover sheets on faxes? Not 
  takingPHI home? Not discussing PHI in the lunch room? They are 
  professionals,there are certain professional rules they have to follow 
  like wearinggloves around blood borne pathogens and the like, why is 
  privacydifferent?It is my responsibility to get a system that 
  works for my staff. It istheir responsibility to follow any accompanying 
  policies and proceduresthat support/surround the system.My opinion 
  only...MimiMimi Hart Ó¿Õ*Research Analyst, HIPAAIowa 
  Health System319-369-7767 (phone)319-369-8365 (fax)319-490-0637 
  (pager)[EMAIL PROTECTED]>>> 
  Jim Hewitt <[EMAIL PROTECTED]> 03/04/03 
  09:05PM >>>I agree with most of Bill Kammerer's contributions 
  onthis forum, but disagree with this one:> do we need any more 
  proof that email filteringdoesn't work?Filtering isn't a silver 
  bullet, but it's part of thesolution.  > ..."rely on users' 
  training and intelligence."  That won't work.  Taking email 
  encryption as ananalogous example, you've probably seen the 
  CarnegieMellon paper from a few years ago, "Why Johnny 
  Can'tEncrypt."  They studied a group of fairly high-skillusers 
  (CS researchers), and gave them the task ofsending and receiving encrypted 
  email.  Most of themhad trouble with the software (PGP 5.1, I think), 
  butmore importantly they consistently forgot to click on"encrypt" when 
  they had a confidential message tosend. If you're relying on 
  users' training and intelligenceALONE you're almost certainly not 
  compliant.  Youdon't rely on that alone.  As one user told me, 
  "Itwould be insane to install a bunch of keywordtriggers, sit back and 
  assume you're compliant."  Itwould also be insane to base your 
  compliance on usersremembering to do the right thing.Email 
  filtering is similar to IDS.  You have to buy agood commercial 
  package, spend a lot of time tuning itfor your organization, install 
  update almost daily,and put in a lot of maintenance by a live sysadmin. 
  Nobody said it was cheap, and the false positivescertainly are 
  annoying, but it's necessary, in myview.By the way, I've seen a 
  lot of unanswered requests forlists of PHI keywords.  I don't think 
  anybody has alist they are happy with.  Anybody who has, 
  pleasechime 
  in.__Do you 
  Yahoo!?Yahoo! Tax Center - forms, calculators, tips, morehttp://taxes.yahoo.com/ ---The 
  WEDI SNIP listserv to which you are subscribed is not moderated.The 
  discussions on this listserv therefore represent the views of 
  theindividual participants, and do not necessarily represent the views 
  ofthe WEDI Board of Directors nor WEDI SNIP. If you wish to receive 
  anofficial opinion, post your question to the WEDI SNIP Issues Database 
  athttp://snip.wedi.org/tracking/.   
  These listservs should not be used forcommercial marketing purposes or 
  discussion of specific vendor productsand services.  They also are 
  not intended to be used as a forum forpersonal disagreements or 
  unprofessional communication at any time.You are currently subscribed 
  to wedi-privacy as: [EMAIL PROTECTED] To unsubscribe 
  from this list, go to the Subscribe/Unsubscribe form athttp://subscribe.wedi.org or send a blank 
  email to[EMAIL PROTECTED] 
  If you need to unsubscribe but your current email address is not 
  thesame as the address subscribed to the list, please use 
  theSubscribe/Unsubscribe form at http://subscribe.wedi.org    
  *This message and 
  accompanying documents

RE: HIPAA and Government Entities

[LQuinkert]

HIPAA Gives is a 
good one www.HIPAAGIVES.org
 
and we have a SNIP 
government workgroup (I'm one of the co-chairs) however it is rather inactive 
because lots of people signed up for the listserv, but almost none participated 
in the calls or would get involved.
 
Lin Quinkert HIPAA 
Practice Director GovConnect 
A Subsidiary of govONE Solutions 
33 Bellewood Ct. New Albany, IN 47150 Cell: (502) 
905-1099 Fax: (812) 949-0611 Email: [EMAIL PROTECTED] www.GovConnect.com 

  -Original Message-From: Chris Riley 
  [mailto:[EMAIL PROTECTED]Sent: Thursday, March 06, 2003 7:56 
  AMTo: WEDI SNIP Privacy Workgroup ListCc: WEDI SNIP 
  Privacy Workgroup ListSubject: Re: HIPAA and Government 
  EntitiesDebbie,HIPAA Conformance Certification 
  Organization (www.hcco.us) has a State and Local Government 
  workgroup for Privacy. Cheri Huber is the chair.  Hope this helps, -- 
Chris Riley, CISSP
Information Tool Designers Inc.



  




Try hipaasecurerx.com
 
They have done a lot of work with government 
agencies.
 
They are heavly relied upon here in Nebraska and 
Iowa.
 
They are located in Jacksonville, Florida.

  -Original Message-From: Debbie Kerns [mailto:[EMAIL PROTECTED]]Sent: 
  Wednesday, March 05, 2003 3:52 PMTo: WEDI SNIP Privacy 
  Workgroup ListSubject: HIPAA and Government 
  Entities
  A month or so ago someone posted a link to a 
  website specifically dealing with HIPAA and government entities.  
  Whoever that was, could you please forward that website address to 
  me.  
   
  Thank You 
   
  Debbie KernsHIPAA Compliance 
  OfficerSteele Memorial Hospital
  [EMAIL PROTECTED] 
  ---The WEDI SNIP listserv to which you are subscribed is 
  not moderated. The discussions on this listserv therefore represent the 
  views of the individual participants, and do not necessarily represent the 
  views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive 
  an official opinion, post your question to the WEDI SNIP Issues Database 
  at http://snip.wedi.org/tracking/. 
  These listservs should not be used for commercial marketing purposes or 
  discussion of specific vendor products and services. They also are not 
  intended to be used as a forum for personal disagreements or 
  unprofessional communication at any time.You are currently 
  subscribed to wedi-privacy as: [EMAIL PROTECTED]To 
  unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a 
  blank email to [EMAIL PROTECTED]If 
  you need to unsubscribe but your current email address is not the same as 
  the address subscribed to the list, please use the Subscribe/Unsubscribe 
  form at http://subscribe.wedi.org 
---The WEDI SNIP listserv to which you are subscribed is 
not moderated. The discussions on this listserv therefore represent the 
views of the individual participants, and do not necessarily represent the 
views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive 
an official opinion, post your question to the WEDI SNIP Issues Database at 
http://snip.wedi.org/tracking/. 
These listservs should not be used for commercial marketing purposes or 
discussion of specific vendor products and services. They also are not 
intended to be used as a forum for personal disagreements or unprofessional 
communication at any time.You are currently subscribed to 
wedi-privacy as: [EMAIL PROTECTED]To 
unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a 
blank email to [EMAIL PROTECTED]If 
you need to unsubscribe but your current email address is not the same as 
the address subscribed to the list, please use the Subscribe/Unsubscribe 
form at http://subscribe.wedi.org 
  ---The WEDI SNIP 
  listserv to which you are subscribed is not moderated. The discussions on this 
  listserv therefore represent the views of the individual participants, and do 
  not necessarily represent the views of the WEDI Board of Directors nor WEDI 
  SNIP. If you wish to receive an official opinion, post your question to the 
  WEDI SNIP Issues Database at http://snip.wedi.org/tracking/. These listservs 
  should not be used for commercial marketing purposes or discussion of specific 
  vendor products and services. They also are not intended to be used as a forum 
  for personal disagreements or unprofessional communication at any 
  time.You are currently subscribed to wedi-privacy as: 
  [EMAIL PROTECTED]To unsubscribe from this list, go to the 
  Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email 
  to [EMAIL PROTECTED]If you need to unsubscribe 
  but your current email address is not the same as the address subscribed to 
  the list, please use the Subscribe/Unsu

Notice for indirect health care providers?

[LAURA HEMINGWAY]

I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

Follow the Money

[Benjamin W. Tartaglia]

Please help.

I'm doing research for a presentation on HIPAA economics.

How do the fines collected for HIPAA violations get split up?

Also, what are the staffing levels now and planned for HIPAA?
Is it based on number of violations?  Does anyone have an organization chart
for HIPAA and the "equivalent Employees"?

Please answer off list to me directly unless you feel it is of general
interest.

Thanks for your help.

Benjamin W. Tartaglia, MBA, BSIM, CSP
Director, Client Services
BWT Associates, HealthCare Consultants

HIPAA, JCAHO, Telemedicine, Contingency Planning, Telecommunications,
Telephone Fraud & Abuse, Training Programs, Policy & Procedures, Management
Audits.

PO# 4515, Shrewsbury, MA 01545
Phone: 508-845-6000
EMail: [EMAIL PROTECTED]


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

RE: Notice for indirect health care providers?

[Vikas Budhiraja]

Laura,
Yes you can file a complaint as a 'whistleblower'. Complaints can be filed
by patients, workforce members or others who become aware of or suspect
violation of privacy regulations by a provider.

Regards,
Vikas

-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 10:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the individual
participants, and do not necessarily represent the views of the WEDI Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion, post
your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products and
services.  They also are not intended to be used as a forum for personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as
the address subscribed to the list, please use the Subscribe/Unsubscribe
form at http://subscribe.wedi.org



---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

Re: Notice for indirect health care providers?

[Patricia Conroe]

My understanding is that the answer to that is a big YES and that's why HIPAA can be 
such a pain and why there will be complaints received.

>>> LAURA HEMINGWAY <[EMAIL PROTECTED]> 03/06/03 10:56AM >>>
I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

RE: Notice for indirect health care providers?

[Noel, Linda A.]

You should first bring this to the attention of the physician's privacy officer.  

Linda Noel
Corporate Privacy Officer
Corporate Compliance
Orlando Regional Healthcare
321-843-8693



-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 10:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org
This e-mail message and any attached files are confidential and are intended solely 
for the use of the addressee(s) named above. If you are not the intended recipient, 
any review, use, or distribution of this e-mail message and any attached files is 
strictly prohibited. This communication may contain material protected by Federal 
privacy regulations, attorney-client work product, or other privileges. If you have 
received this confidential communication in error, please notify the sender 
immediately by reply e-mail message and permanently delete the original message.  To 
reply to our email administrator directly, send an email to:  [EMAIL PROTECTED] .  If 
this e-mail message concerns a contract matter, be advised that no employee or agent 
is authorized to conclude any binding agreement on behalf of Orlando Regional 
Healthcare by e-mail without express written confirmation by an officer of the 
corporation. Any views or opinions presented in this e-mail are solely those of the 
author and do not necessarily represent those of Orlando Regional Healthcare.

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

RE: Internet Pagers & Privacy

[Clay, Roy III (NO)]

Title: RE: Internet Pagers & Privacy





If all that is sent is the patient's name and address, that should be fine. If there is additional information that would allow someone to infer some about the  patient's health status, something like:

To: HIV On Call Nurse.
Call patient John Doe at 555-.


That would be considered PHI. However, I am pretty sure the paging company would be considered a "pass-through"  similar in nature to the phone company one leases network lines from. 

-Original Message-
From: Paul Weber [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 05, 2003 1:51 PM
To: WEDI SNIP Privacy Workgroup List
Subject: Internet Pagers & Privacy



I'm looking for some input on a scenario that was recently presented. To wit...


What are the ramifications relative to HIPAA Privacy where communications containing PHI to alphanumeric pagers held by remote nursing staff are initiated via internet e-mail?

For example, a patient coordinator sends an e-mail containing PHI (say patient name & address) to a nurse's pager or cell phone screen through a third party such as AT&T, Skypage, Arch Wireless, etc.

Thoughts?


Thank you in advance,
Paul Weber
[EMAIL PROTECTED]
-- 
__
Sign-up for your own FREE Personalized E-mail at Mail.com
http://www.mail.com/?sr=signup



---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]

If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org

RE: HIPAA and Government Entities

[Ted Ohlswager]

http://www.hipaagives.org/ is the url for the HIPAA GIVES site, a
collaborative for state and local governmental agencies.

Ted Ohlswager, Chief
Center for Uniformity, Security & Privacy
WI Dept Health & Family Services
Room B174
608-266-5314
[EMAIL PROTECTED]



>>> "Artis, David (CC-Contractor)" <[EMAIL PROTECTED]>
03/06/03 05:39AM >>>
Try hipaasecurerx.com
 
They have done a lot of work with government agencies.
 
They are heavly relied upon here in Nebraska and Iowa.
 
They are located in Jacksonville, Florida.

-Original Message-
From: Debbie Kerns [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, March 05, 2003 3:52 PM
To: WEDI SNIP Privacy Workgroup List
Subject: HIPAA and Government Entities


A month or so ago someone posted a link to a website specifically
dealing
with HIPAA and government entities.  Whoever that was, could you
please
forward that website address to me.  
 
Thank You 
 
Debbie Kerns
HIPAA Compliance Officer
Steele Memorial Hospital
[EMAIL PROTECTED]  
---
The WEDI SNIP listserv to which you are subscribed is not moderated.
The
discussions on this listserv therefore represent the views of the
individual
participants, and do not necessarily represent the views of the WEDI
Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion,
post
your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/. These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products
and
services. They also are not intended to be used as a forum for
personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as:
[EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the
same as
the address subscribed to the list, please use the
Subscribe/Unsubscribe
form at http://subscribe.wedi.org 



---
The WEDI SNIP listserv to which you are subscribed is not moderated.
The discussions on this listserv therefore represent the views of the
individual participants, and do not necessarily represent the views of
the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an
official opinion, post your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products
and services.  They also are not intended to be used as a forum for
personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as:
[EMAIL PROTECTED] 
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED] 
If you need to unsubscribe but your current email address is not the
same as the address subscribed to the list, please use the
Subscribe/Unsubscribe form at http://subscribe.wedi.org

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

RE: Notice for indirect health care providers?

[Noel, James M.]

The person always maintains the right to go directly to HHS with their compliant, as 
well as filing a complaint with the privacy officer.

J. Michael Noel
Program Manager
Medical Assistance Transportation Program
Office of Social Programs


-Original Message-
From: Noel, Linda A. [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 12:19 PM
To: WEDI SNIP Privacy Workgroup List
Subject: RE: Notice for indirect health care providers?


You should first bring this to the attention of the physician's privacy officer.  

Linda Noel
Corporate Privacy Officer
Corporate Compliance
Orlando Regional Healthcare
321-843-8693



-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 10:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org
This e-mail message and any attached files are confidential and are intended solely 
for the use of the addressee(s) named above. If you are not the intended recipient, 
any review, use, or distribution of this e-mail message and any attached files is 
strictly prohibited. This communication may contain material protected by Federal 
privacy regulations, attorney-client work product, or other privileges. If you have 
received this confidential communication in error, please notify the sender 
immediately by reply e-mail message and permanently delete the original message.  To 
reply to our email administrator directly, send an email to:  [EMAIL PROTECTED] .  If 
this e-mail message concerns a contract matter, be advised that no employee or agent 
is authorized to conclude any binding agreement on behalf of Orlando Regional 
Healthcare by e-mail without express written confirmation by an officer of the 
corporation. Any views or opinions presented in this e-mail are solely those of the 
author and do not necessarily represent those of Orlando Regional Healthcare.

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or dis

RE: Notice for indirect health care providers?

[Craig Moen]

Ineteresting question.  I would say yes they have the right.  For the same
reason we as employers need to worry about the disguntled employee

Confidential Information
This email message is intended only for the person or entity to which it is
addressed. Unless otherwise indicated or obvious by the nature of this
transmittal, the information contained in this email message is privileged
and confidential, intended for the use of the intended recipient (or the
employee or agent responsible to deliver to the intended recipient), you are
hereby notified that any dissemination, distribution or copying of this
communication is strictly prohibited. If you are not the intended recipient,
please contact the sender by reply email and destroy all copies of the
original message
THERAPY 2000
1881 Sylvan Avenue Suite 210
Dallas, Tx 75208


-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 9:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the individual
participants, and do not necessarily represent the views of the WEDI Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion, post
your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products and
services.  They also are not intended to be used as a forum for personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as
the address subscribed to the list, please use the Subscribe/Unsubscribe
form at http://subscribe.wedi.org


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

Public Health Disclosures

[Karen Williamson]

When we are intervening in an event that threatens Public Health (eg, a restaurant 
employee who has HEP-A) it is most likely necessary that we disclose PHI (eg, tell the 
restaurant manager the name of the employee who has HEP-A). My reading of 160.203(c), 
as well as 164.512(b), permits this.

Should this type of disclosure be included in our NOPP? 


Karen Williamson
Lead System Project Manager, Privacy Officer
El Paso County Dept. of Health and Environment, CO
719 575-8468 

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

RE: Notice for indirect health care providers?

[Craig Moen]

I responded before but am not seeing it come up on the listserv

Anyone could file a complaint which is why an employer needs to be wary of
the "disgruntled" employee

Additionally, if your Privacy notice is posted in the office, it should be
bolded who to contact to file a complaint.  Of course, as James says the
individual has the right to go directly to HHS(but shouldn't it be OCR since
they are handling this?)

Confidential Information
This email message is intended only for the person or entity to which it is
addressed. Unless otherwise indicated or obvious by the nature of this
transmittal, the information contained in this email message is privileged
and confidential, intended for the use of the intended recipient (or the
employee or agent responsible to deliver to the intended recipient), you are
hereby notified that any dissemination, distribution or copying of this
communication is strictly prohibited. If you are not the intended recipient,
please contact the sender by reply email and destroy all copies of the
original message
THERAPY 2000
1881 Sylvan Avenue Suite 210
Dallas, Tx 75208


-Original Message-
From: Noel, James M. [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 11:52 AM
To: WEDI SNIP Privacy Workgroup List
Subject: RE: Notice for indirect health care providers?


The person always maintains the right to go directly to HHS with their
compliant, as well as filing a complaint with the privacy officer.

J. Michael Noel
Program Manager
Medical Assistance Transportation Program
Office of Social Programs


-Original Message-
From: Noel, Linda A. [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 12:19 PM
To: WEDI SNIP Privacy Workgroup List
Subject: RE: Notice for indirect health care providers?


You should first bring this to the attention of the physician's privacy
officer.

Linda Noel
Corporate Privacy Officer
Corporate Compliance
Orlando Regional Healthcare
321-843-8693



-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 10:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the individual
participants, and do not necessarily represent the views of the WEDI Board
of Directors nor WEDI SNIP. If you wish to receive an official opinion, post
your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products and
services.  They also are not intended to be used as a forum for personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as
the address subscribed to the list, please use the Subscribe/Unsubscribe
form at http://subscribe.wedi.org
This e-mail message and any attached files are confidential and are intended
solely for the use of the addressee(s) named above. If you are not the
intended recipient, any review, use, or distribution of this e-mail message
and any attached files is strictly prohibited. This communication may
contain material protected by Federal privacy regulations, attorney-client
work product, or other privileges. If you have received this confidential
communication in error, please notify the sender immediately by reply e-mail
message and permanently delete the original message.  To reply to our email
administrator directly, send an email to:  [EMAIL PROTECTED] .
If this e-mail message concerns a contract matter, be advised that no
employee or agent is authorized to conclude any binding agreement on behalf
of Orlando Regional Healthcare by e-mail without express written
confirmation by an officer of the corporation. Any views or opinions
presented in this e-mail are solely those of the author and do not
necessarily represent those of Orlando Regional Healthcare.

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the individual
participants, and do not necessarily represent the views of

CLAIMS ADJUSTMENT CODES

[Dee Warrington]

My question relates to the transaction and 
code sets rule -- but I am hoping one or more of you privacy gurus may be versed 
in TCS as well.
 
I was advised there are standard claim 
adjustment codes and was wondering if these codes are the only adjustment codes 
that can be used after 10/16?
 
Any response is appreciated.
 
Thank you.
 
 
Confidentiality 
Notice: This e-mail message, including any attachments, is for the sole use 
of the intended recipient(s) and may contain confidential and privileged 
information.  Any unauthorized review, use, disclosure or distribution is 
prohibited.  If you are not the intended recipient, please contact the 
sender by reply e-mail and destroy all copies of the original 
message.
 
---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org

RE: Notice for indirect health care providers?

[Lisa Cavitt/SIH]

This question was asked at the WEDI Implementation Summit this week.  The
person filing the complaint does not have to be the injured party.

Lisa R. Cavitt
Southern Illinois Healthcare



   

  "Noel, James M." 

  <[EMAIL PROTECTED]To:   "WEDI SNIP Privacy Workgroup 
List"
  us>   <[EMAIL PROTECTED]>
  
   cc: 

  03/06/03 11:51 AMSubject:  RE: Notice for indirect 
health care providers?
  Please respond to

  "Noel, James M." 

   

   





The person always maintains the right to go directly to HHS with their
compliant, as well as filing a complaint with the privacy officer.

J. Michael Noel
Program Manager
Medical Assistance Transportation Program
Office of Social Programs


-Original Message-
From: Noel, Linda A. [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 12:19 PM
To: WEDI SNIP Privacy Workgroup List
Subject: RE: Notice for indirect health care providers?


You should first bring this to the attention of the physician's privacy
officer.

Linda Noel
Corporate Privacy Officer
Corporate Compliance
Orlando Regional Healthcare
321-843-8693



-Original Message-
From: LAURA HEMINGWAY [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 06, 2003 10:57 AM
To: WEDI SNIP Privacy Workgroup List
Cc: WEDI SNIP Privacy Workgroup List
Subject: Notice for indirect health care providers?


I was training some of our staff last week and was asked a question that I
did not know how to answer.  I'm sure someone out there has an answer.

What if I as a customer in a doctor's office become aware of the doctor's
office disclosing some aspect of another customer's PHI information without
their knowledge.  For example, the receptionists are talking openly about
the other customer's condition, economics, etc.  Can I file a complaint
with the OCR on behalf of the other customer?

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the
individual participants, and do not necessarily represent the views of the
WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official
opinion, post your question to the WEDI SNIP Issues Database at
http://snip.wedi.org/tracking/.   These listservs should not be used for
commercial marketing purposes or discussion of specific vendor products and
services.  They also are not intended to be used as a forum for personal
disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at
http://subscribe.wedi.org or send a blank email to
[EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same
as the address subscribed to the list, please use the Subscribe/Unsubscribe
form at http://subscribe.wedi.org
This e-mail message and any attached files are confidential and are
intended solely for the use of the addressee(s) named above. If you are not
the intended recipient, any review, use, or distribution of this e-mail
message and any attached files is strictly prohibited. This communication
may contain material protected by Federal privacy regulations,
attorney-client work product, or other privileges. If you have received
this confidential communication in error, please notify the sender
immediately by reply e-mail message and permanently delete the original
message.  To reply to our email administrator directly, send an email to:
[EMAIL PROTECTED] .  If this e-mail message concerns a
contract matter, be advised that no employee or agent is authorized to
conclude any binding agreement on behalf of Orlando Regional Healthcare by
e-mail without express written confirmation by an officer of the
corporation. Any views or opinions presented in this e-mail are solely
those of the author and do not necessarily represent those of Orlando
Regional Healthcare.

---
The WEDI SNIP listserv to which you are subscribed is not moderated. The
discussions on this listserv therefore represent the views of the
individual participants, and do not necessarily represent the views of the
WEDI Board of Directors nor WEDI SNIP. If y

Non-routine and need for Authorization

[Craig Moen]

We are stumped on the language for authorization.  My current understanding
is that we are allowed to share information outlined in our Notice of
Privacy Practice for purposes of TPO.  The sticking point in my mind is what
is needed for non-routine disclosures of TPO.  Our day to day operation
includes sharing information with the ordering physician, external case
manager etc.  Non-routine occurrences may be requests for summaries of
treatment/progress by child protective services, united cerebral palsy,
Lutheran Social Services etc etc.  It doesn't seem that "authorization" as
defined applies to the above scenario.  Currently those entities will call
and we ask them to get a release of information form signed by the parent.
After receiving the release we verify with the family that they are wanting
us to release the information.  It would seem then that we would simply log
this disclosure in the patient chart.  Correct?

Another example.  We will treat in the school setting in some of the smaller
rural areas.  What is the school system in this scenario?  Certainly not a
BA?  Also if our therapist needs to discuss a positioning program with the
teacher is this allowable and would that need to be logged as non-routine?
Confidential Information
This email message is intended only for the person or entity to which it is
addressed. Unless otherwise indicated or obvious by the nature of this
transmittal, the information contained in this email message is privileged
and confidential, intended for the use of the intended recipient (or the
employee or agent responsible to deliver to the intended recipient), you are
hereby notified that any dissemination, distribution or copying of this
communication is strictly prohibited. If you are not the intended recipient,
please contact the sender by reply email and destroy all copies of the
original message
THERAPY 2000
1881 Sylvan Avenue Suite 210
Dallas, Tx 75208


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions 
on this listserv therefore represent the views of the individual participants, and do 
not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If 
you wish to receive an official opinion, post your question to the WEDI SNIP Issues 
Database at http://snip.wedi.org/tracking/.   These listservs should not be used for 
commercial marketing purposes or discussion of specific vendor products and services.  
They also are not intended to be used as a forum for personal disagreements or 
unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the 
address subscribed to the list, please use the Subscribe/Unsubscribe form at 
http://subscribe.wedi.org

Unlocked charts

[PainClinicAssoc]

This has probably been covered before, but for those of us still not clear:

Do charts have to locked up if they are within the area of the practice to which no one but employees who may need them have access? The cleaning crew would be in the same area at night. 

Thanks very much.

Vicki Saunders
Pain Clinic Associates, PC
[EMAIL PROTECTED]

Pain Clinic Associates, PC Confidentiality Notice: The information contained in this e-mail transmission is confidential information, proprietary to the sender and legally protected. Its purpose is intended for the sole use of the individual(s) or entity named in the message header. If you are not the intended recipient, you are hereby notified that any dissemination, copying or taking any action in reliance on the contents of this information is strictly prohibited. If you received this message in error, please
notify the sender of the error and delete this message, any attachments and all copies. Thank you.


---
The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/.   These listservs should not be used for commercial marketing purposes or discussion of specific vendor products and services.  They also are not intended to be used as a forum for personal disagreements or unprofessional communication at any time.

You are currently subscribed to wedi-privacy as: [EMAIL PROTECTED]
To unsubscribe from this list, go to the Subscribe/Unsubscribe form at http://subscribe.wedi.org or send a blank email to [EMAIL PROTECTED]
If you need to unsubscribe but your current email address is not the same as the address subscribed to the list, please use the Subscribe/Unsubscribe form at http://subscribe.wedi.org