HIPAA was passed in 1996 to establish standards for privacy and security of health records. It requires healthcare workers to protect patient confidentiality and only disclose the minimum necessary information for treatment. HIPAA also sets compliance standards for electronic transactions, privacy, security, and identifiers. Violations can result in civil penalties up to $25,000 per violation or criminal penalties such as fines up to $250,000 and imprisonment.

1. Joint Commission In-Service Training and Self-Study

2. HIPAA COMPLIANCE SELF -STUDY

12. HIPAA COMPLIANCE Privacy Standards – Exceptions (cont.) Often, family members or friends want to talk to clinicians about the patient’s treatment or status. Before a staff member can do this, they must ask the patient for permission to do so, or otherwise give them a chance to object. Privacy Standards – Minimum Disclosure HIPAA requires that you limit the disclosure of any patient information to the minimum necessary for the immediate purpose.