1	HIPAA: A Continuous Journey Within the Medical Office August 2004
2	What is HIPAA? Health Insurance Portability and Accountability Act August 21, 1996: Passed by Congress and signed into Law by Bill Clinton Two Titles to Law Title 1: Health Insurance Reform Protects health insurance coverage when employees change or lose jobs Title 2: Administrative Simplification Sets standards for submitting health information electronically; maintains privacy and security of health information
3	Why is HIPAA important? Compliance is required; otherwise physician offices are breaking the law
4	Why Comply?
5	Who’s Enforcing Compliance? Office of Civil Rights (OCR) According to OCR testimony, about 2000 complaints have been filed, of which approximately one third have been resolved and closed. Complaints and Current Enforcement Actions inappropriate uses or disclosures (30%); inadequate safeguards (25%); inability to exercise rights of access (20%); absence of or ineffective notice (15%); incidental disclosures (i.e. oral communications)(10%); and inappropriate authorizations (5%). HIPAA infractions subject to fines from $100-$25,000 per year for any given incident; misdemeanors to felonies Knowing violation punishable with up to 1 year in prison or $50k fine False pretenses violation is a felony and can yield 5 years in prison or $100k fine Personal gain violations is a felony and can yield 10 year prison sentence or $250k fine
6	Is NDCHealth practice management software “HIPAA Compliant?” “HIPAA-compliant” software does not exist Software is HIPAA-ready Software designed to ensure, through proper software use coupled with well-designed offices procedures to help medical practices achieve HIPAA compliance HIPAA-compliance: is all about process and operations in a physicians office is a continuous journey, not a one-time achievement is a marathon, not a quick sprint to a finish line
7	Current HIPAA Standards Privacy Protect PHI (written, oral or electronic format); Compliance Deadline: April 14, 2003 Transaction and Code Sets Requires use of standard, specific electronic transaction formats developed by ANSI Compliance Deadline: October 16, 2003
8	Current HIPAA Standards National Employer Identifier Unique identifiers for healthcare providers, health plans, employers and patients to increase the efficiency of electronic transactions Compliance Deadline: July 31, 2004 Security Safeguards for physical storage, maintenance, transmission and access to individual health information Similar to the Privacy standard, but pertaining specifically to electronic information Compliance Deadline: April 25, 2005
9	Should medical practices care? Yes! Specifically those who: see HIPAA compliance as a prudent business move consistently conduct, use best practices see compliance as a patience care and service differentiator are image and community conscious realize the risk is real
10	Impact of Non-Compliance
11	What Kind of Help is Available? Medical associations General information, but little guidance Consultants/Attorneys Pricey and may not have medical office workflow expertise NDCMedisoft v10 and NDCLytec 2005: HIPAA-ready practice management software HIPAA Rx™ Compliance Toolkit Automates the compliance process
12
13	NDCMedisoft: HIPAA Readiness through changing regulation
14
15	NDCLytec: HIPAA Readiness through changing regulation
16	What is HIPAA Rx™? Interactive Software for HIPAA Privacy & Security Automates the compliance process Includes all required policies and procedures Extremely easy to use Available through NDCHealth value added resellers or NDCHealth Many NDCHealth value added resellers also provide HIPAA compliance consulting services
17	HIPAA Education and Marketing Now available: HIPAA Rx Education and Evaluation CD Introducing HIPAA Rx product Specially priced for NDCHealth channel: $349 Royalty-bearing VAR discounts apply
18	When will it be available? Week of August 9 Start selling it now! HIPPA Rx Compliance Toolkit: $349 HIPAARXKIT August 13 HIPPA RX VAR Demo CD: FREE HIPAARXVAR August 10 HIPAA Rx End User Demo CD: FREE HIPAARXEU August 10
19	The Future of HIPAA HIPAA legislation is a work in progress New policies and standards will continue to be implemented Potential future standards: Standards for electronic prescription writing National Standards for Electronic Medical Records There is no finish line for HIPAA!
20	Summary HIPAA compliance: is important for all physicians is a journey; a process is not a sprint to a finish line or a final destination HIPAA-ready software enables but does not accomplish compliance Current and future regulation changes will require medical practices to continuously and additions can help us and our channels drive upgrades and new sales
21	Conclusions NDCMedisoft software enables HIPAA compliance HIPAA Rx compliance toolkit automates the compliance process and includes all required policies and procedures NDCMedisoft, HIPAA Rx, and implementation of required policies and procedures can help medical offices achieve HIPAA compliance Contact your authorized NDCHealth Value Added Reseller or NDCHealth to help your medical office achieve ongoing HIPAA compliance!