Policy Manual sample

MDT Home Health Care Agency, Inc. POLICY ON HIPAA ("Health Insurance Portability and Accountability Act") HITECH Act ENROLLMENT Our Home Health Agency shall, in compliance of Federal regulations, enroll in all HIPAA standards and regulations and HITECH Act regulations. Our Agency shall to comply with these requirements for the "CONFIDENTIAL, Privacy, Security and Electronic Signature Standards." All originals/copies of hand written, or computer generated Clinical data of our clients, including OASIS assessment, Sign Up package, clinical notes, Plan of Care, Modify orders, etc, for each time point completed, must be filed in the patient’s record, and maintained Confidential and Private. No information may be disclosed from the patient’s file without the written consent of the patient or the patient’s guardian. All information received by any employee, contractor, or State Regulatory Agency employee regarding a patient of the Agency is confidential. If the patient transfers to another home health agency, a copy of his record must be transferred at his request/authorization, if needed for continuing care. All clinical records must be retained by the Agency for a period of five years following the termination of service (death/discharge). (Clinical records shall be maintained for five (5) years, for all adults patients, minors clients records will be retained for a minimum of (4) five years after the age of majority is reached, Client records involved in litigation are retained until after settlement.) Retained records can be stored as hard paper copy in authorized/secure storage, and must be retrievable for use during unannounced surveys. And full “Movement log” for access of client’s records must be maintained up to date. The Agency’s administrator will be in charge for create and maintain a “HIPAA Compliance Manual/Plan”. We shall to use a standard version for electronic billings transmission including third party HIPAA compliance software source, or HIPAA compliance software provided by Medicare or Medicaid contracted vendor. STATEMENT OF PATIENT PRIVACY RIGHTS: As a home health patient, our patient have the right to know why we need to complete all Clinical Forms, and be informed that their personal health care information will kept confidential, and restricted the access only to authorized personnel, also they have the right to look at any time, by previous request, their personal health information. All admissions process will include the CMS OASIS’s STATEMENT OF PATIENT PRIVACY RIGHTS, and HIPAA Privacy Rights rule, which will be left at Client’s home for further consult/review by Patient or Patient’s family. The CMS’s PRIVACY ACT STATEMENT-HEALTH CARE RECORDS, is also included in our Admission procedures, and will be left at Patient’s home for further reference.