• (888) 505-7724
  • updates@sbmamec.com
  • Employer Portal
  • Employee Portal
SBMA Benefits
  • Facebook
  • Instagram
  • LinkedIn
  • Mail
  • Services
  • Benefit Plans
  • Employees
  • Employers
  • Resources
    • Compliance Updates
    • No Surprises Act Resource Page
    • COVID-19 Vaccine & Testing Updates
    • SmithRx Formulary
    • COBRA
    • At-Home COVID-19 Tests
  • News & Insights
  • Contact SBMA
  • Search
  • Menu Menu

What does it mean to be HIPAA Compliant?

Your private information should remain that way – private. Ensuring your records are kept confidential requires important layers of protection. Without rules and processes in place, the lines of what information can be disclosed is blurred, especially in today’s technologically reliant world. Thankfully, there is a nationally mandated law to help guide the process on how to protect you and your information. 

What is HIPAA?

HIPAA stands for the Health Insurance Portability and Accountability Act of 1996. HIPAA is the structure that anyone with access to your private information – business associates and covered entities- uses to make sure Protected Health Information (PHI) is protected. At its core, it is the baseline of national standards any entity with private records must take to protect health information from anyone without proper consent from obtaining it.

Protected Health Information (PHI)

PHI is your personal private information. This includes details such as: 

  • Your name 
  • Address
  • Phone number
  • Social security number
  • Medical records
  • Photos
  • Financial information
  • Individually identifiable health information
  • Any other unique identifiers. 

All of this information must be protected in its written, verbal and electronic forms. This is all important data that you want to keep in the right hands. 

Learn more about Affordable Benefits, talk with one of our team members!

HIPAA Rules 

In order to fully understand what HIPAA is, and how to stay in compliance, it’s also important to understand the different HIPAA regulations in place.

One aspect of this is the HIPAA Privacy Rule. The Privacy Rule allows health records to be protected while simultaneously allowing the right information to be accessed by the right health term. This process promotes the best quality healthcare for the individual. It’s protecting your information while making sure the people who need your information, i.e. doctors,  your health insurance, etc. have access to it. 

The Privacy Rule comes into play when you verbally or electronically allow your information to be disclosed to a specific party. For example, your primary care physician must ask if they have your permission to send medical records to the specialist you were referred to. Look here to see when permitted users of your information are allowed to use PHI without authorization.  

Another rule that plays a large part in staying HIPAA compliant is the Security rule. This rule is important because it protects electronic protected health information (e-PHI). It does not protect verbal or written PHI. According to the CDC, these are the elements in place to comply with HIPAA’s Security Rule:

  • “Ensure the confidentiality, integrity, and availability of all electronic protected health information
  • Detect and safeguard against anticipated threats to the security of the information
  • Protect against anticipated impermissible uses or disclosures
  • Certify compliance by their workforce.”

Who has to follow HIPAA rules?

All entities that fall under the category of “covered entities,” must always enforce HIPAA compliance. These entities include:

  • Health care providers – doctors, hospitals, clinics, psychologists, pharmacies, dental offices, health plans, etc. 
  • Health Care Clearinghouses – organizations that process nonstandard health information into a standard form.
  • Health Plans – HMO, Company health insurance, Medicare, Medicaid, etc. 
  • Business Associates – A person or organization that uses PHI to provide services that can include claims processing, data analysis, reviews, and billing. 

Common HIPAA Violations

When holding sensitive and private information, it’s important to understand the most common ways HIPAA can be violated. This creates awareness and opportunities for preventative measures.

Here are a few examples of breaking HIPAA Compliance: 

  • Cyberattacks/ breaches 
  • Office break-ins
  • Sending incorrect PHI
  • Discussing PHI outside of work 
  • Posting PHI on social pages 
  • Theft of equipment containing PHI

Why is HIPAA important?

Overall, keeping the confidentiality of patient records and personal identifiers is important for safety and is a federal requirement. HIPAA protects sensitive information from the wrong hands.

Maintaining compliance provides the opportunity to build trust with patients or clients. Furthermore, staying HIPAA compliant is important to avoid any fines or penalties. Violating HIPAA policies can result in fines ranging $100 – $50,000 per violation. 

At SBMA Benefits, we understand the importance of HIPAA compliance when it comes to your health information. Click here to learn more about what we do and the insurance packages we have to offer. 

Search

Categories

LATEST NEWS IN ACA COMPLIANCE

  • Full-Time vs Part-Time Benefits:Full-Time vs Part-Time Benefits: Why It MattersJanuary 1, 2023 - 7:00 am
  • Affordable care act ACA or Obamacare and stethoscope.Received an ACA Penalty from the IRS? Here’s What to DoDecember 25, 2022 - 12:25 pm
  • affordable care act requirementsACA is Here to StayNovember 20, 2022 - 8:00 am

Archive

CONNECT WITH US

USEFUL LINKS

EMPLOYER PORTAL
EMPLOYEE PORTAL
PRIVACY POLICY 
THE BLOG

CONTACT SBMA

888-505-7724
UPDATES@SBMAMEC.COM

HOURS

Mon – Fri: 7:00am—5:00pm (PST)
Sat: CLOSED
Sun: CLOSED

FOLLOW US

© SBMA 2022 – all rights reserved

site designed by digitalstoryteller.io

© SBMA 2021 – all rights reserved
site designed by digitalstoryteller.io

Why is Health Insurance Important?Why is health insurance important?Pregnancy and Minimum Essential CoveragePregnancy and Minimum Essential Coverage Scroll to top

This site uses cookies. By continuing to browse the site, you are agreeing to our use of cookies.

Accept settings

Cookie and Privacy Settings



How we use cookies

We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.

Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.

Essential Website Cookies

These cookies are strictly necessary to provide you with services available through our website and to use some of its features.

Because these cookies are strictly necessary to deliver the website, refusing them will have impact how our site functions. You always can block or delete cookies by changing your browser settings and force blocking all cookies on this website. But this will always prompt you to accept/refuse cookies when revisiting our site.

We fully respect if you want to refuse cookies but to avoid asking you again and again kindly allow us to store a cookie for that. You are free to opt out any time or opt in for other cookies to get a better experience. If you refuse cookies we will remove all set cookies in our domain.

We provide you with a list of stored cookies on your computer in our domain so you can check what we stored. Due to security reasons we are not able to show or modify cookies from other domains. You can check these in your browser security settings.

Google Analytics Cookies

These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our website and application for you in order to enhance your experience.

If you do not want that we track your visit to our site you can disable tracking in your browser here:

Other external services

We also use different external services like Google Webfonts, Google Maps, and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.

Google Webfont Settings:

Google Map Settings:

Google reCaptcha Settings:

Vimeo and Youtube video embeds:

Other cookies

The following cookies are also needed - You can choose if you want to allow them:

Privacy Policy

You can read about our cookies and privacy settings in detail on our Privacy Policy Page.

Accept settings