HIPAA PRIVACY COMPLIANCEHow the Health Insurance Portability and Accountability Act (HIPAA) impacts your business and your employeesHIPAA is not just for health care providers. Every employer, HR staff member, IT provider or manager with access to employee data, health or insurance information is liable for its security.

ü Learn how HIPAA applies to employees … and to you

ü Master the fundamentals of HIPAA’s Privacy Rule

ü Discover the specific circumstances when you can disclose a person’s information without prior consent

ü Learn exactly what the HIPAA security rules are—and who they apply to

ü And much more critical information to keep your company free of violations and out of court

Don’t guess at what’s legal! Protect yourself, your company and your employees by knowing the law.

In just one day, get the powerful compliance training that will make you a virtual human firewall protecting patient, customer and employee records and information!

Enroll online at NationalSeminarsTraining.com/PRHIP or call 1-800-258-7246

T H E E M P L O Y E R ’ S G U I D E T O

Enroll online at NationalSeminarsTraining.com/PRHIP or call 1-800-258-72462

Are you or your employees playing a dangerous game in regard to HIPAA compliance?

For small business owners, company executives or human resources managers not involved directly in the medical profession, it’s one of the most stressful questions they can ask themselves: “Am I 100 percent sure that all my employees are complying with HIPAA laws?” If you can’t say with certainty that your people, processes and safeguards are compliant, you could be facing huge fines and maybe even jail time if something goes wrong.

That’s why we created this unique one-day training event—for employers that aren’t necessarily in the medical profession to learn how they, too, are impacted by the HIPAA laws and could be a target for legal action. And because the chance for slipups and noncompliant activities are many times greater when HIPAA regulations aren’t at the top of your employees’ minds.

It’s HIPAA Compliance Training Every Company Must Have!Join us and get a crash course on the fundamentals of HIPAA privacy regulations … how to educate your employees on the relationship between noncompliance and their use of social media … and the importance of identifying who in your company is allowed access to sensitive employee health information and who definitely isn’t.

You’ll return to work armed with a plan to self-audit your procedures for the risk of noncompliance, educate your employees about why it is crucial that they act in a compliant manner and walk through the possible ramifications for them and the company if they don’t.

Stay Compliant and Stay Out of TroubleHIPAA privacy compliance never takes a day off and must be monitored vigilantly. However, we also realize that you have a lot on your plate. That’s why we created this training to only take one day of your time and to make it as enjoyable as it is impactful. Join us and take one much-needed day out of the office to learn and network with your peers. You’ll get recharged about HIPAA privacy laws, and your organization will be better off with the compliance knowledge you bring back with you. It’s a win-win for everyone. Don’t wait … enroll today.

3

How well do you know the HIPAA privacy rule?HIPAA is an ever-evolving set of rules to reform the handling of health information first enacted in 1996. It’s had two major revisions: In 2009 with the ARRA/HITECH Act, and again in 2013 with the Omnibus Rule. It is a zero-tolerance policy that carries the real threat of hefty fines and even prison time if you are found in violation. Take the following quiz and see where you stand:

1 What kind of personally identifiable health information is protected by the HIPAA Privacy Rule?A. PaperB. ElectronicC. The spoken word D. All of the above E. None of the above

2 If you suspect someone is violating the facility’s privacy policy, you should:A. Say nothing. It is none of your business. B. Watch the individual involved until you

have gathered solid evidence against him or her

C. Report your suspicions to your clinical instructor for further follow-up

3 HIPAA security and privacy regulations apply to: A. Attending physicians, nurses and other

health care professionalsB. Health information managers,

information systems staff and other ancillary personnel only

C. Anyone working in your company D. Only staff who have direct patient contact

4 If a person has the ability to access facility or company systems and applications, they have a right to view any information contained in those systems or applications.A. TrueB. False

5 Protected Health Information (PHI) gathered on a patient in a health care event at a hospital setting is defined differently than Research-related Health Information (RHI) collected from a willing research volunteer. Therefore, HIPAA privacy regulations don’t apply to your company if you handle a person’s RHI.A. True B. FalseC. It depends

6 Copies of employee information may be disposed of in any garbage can in your facility.A. TrueB. False

7 You work in the marketing department for a major U.S. university that is designated as a Hybrid Entity because of the affiliated on-campus research and medical hospital. But, because you don’t access health records in your job, you’re exempt from the Privacy Rule. A. TrueB. FalseC. Well, hold on there …

8 The criminal penalties for improperly disclosing another person’s health information can be as high as a fine of $250,000 and a prison sentence of up to 10 years.A. TrueB. False

How did you do? Would you be willing to bet $100 of your own money for every incorrect answer? Because that’s the minimum fine you can get hit with for every violation! Would you be willing to bet the maximum fine of $50,000 per violation? On the other hand, you can enroll in this critical compliance training and guarantee that your HIPAA privacy knowledge is 100 percent up to date and accurate—the peace of mind you’ll have means the small course fee will pay for itself many times over.

Group Discount: When three enroll from your organization, a fourth attends FREE!

Enroll online at NationalSeminarsTraining.com/PRHIP or call 1-800-258-72464

YOUR COMPREHENSIVE

AGENDAWorkshop hours: 9 a.m. to 4 p.m.

Registration begins at 8:15 a.m.

Understand How HIPAA Applies to Employers■ Identify what employee health care

information falls under HIPAA protection

■ Learn how civil and criminal penalties for violations are determined—and how to avoid the most common violations

■ What HIPAA requires of employers in order to protect employees’ medical privacy rights

■ Understand how the 2009 economic stimulus package, the American Recovery and Reinvestment Act (ARRA), significantly expanded HIPAA’s privacy and security regulations

■ Recognize and accommodate allowable employee requests for personal health information

■ Social media and HIPAA—understand the dangers employers face and how to educate employees

■ Additional obligations for employers that self-fund or self-insure employee health care benefits

■ HIPAA’s Privacy Rule “Procedural Requirements” for group health plans

The HIPAA Privacy Rule■ Determine your organization’s risk level and

ensure that you’re meeting the requirements of HIPAA’s Privacy Rule

■ Understand the Privacy Rule’s “minimum necessary” standard

■ Learn exactly what is considered “personally identifiable health information”

■ The 6 principal rights of patients under the Privacy Rule

■ Identify who is—and who is not—allowed access to employee medical and health care records

■ Circumstances when gossip could be considered a HIPAA violation

■ Identify all of the touchpoints your company has with employee health information and make certain you’re doing what’s required

■ How to avoid unintentionally creating compliance obligations

■ Privacy requirements and health care flexible spending accounts—how to correctly manage and protect this information

Group Discount: When three enroll from your organization, a fourth attends FREE!5

Disclosure of Information■ HIPAA requirements and disclosure of

employee health care information in relation to the ADA, FMLA and workers’ compensation

■ Identify and understand the 4 categories of uses and disclosure of health information

■ Health care benefit plans and contractual agreements: How to ensure the protection of employee health care information when working with insurers, plan administrators, insurance brokers, consultants, cost-management groups and others

■ Understand what an incidental disclosure is and the rules concerning it

■ Special rules for using Protected Health Information (PHI) in areas not directly related to health care

■ Instances where you can disclose information without prior consent of the employee

■ HIPAA-required amendments employers must agree to make if receiving employee PHI in connection with managing a group health plan

■ The purpose and advantages of having an individual “valid authorization”

Records Distribution, Retention and Destruction■ Understand what the HIPAA Security Rule is

and what it applies to

■ Learn the correct way to handle physical security when it comes to documents and files

■ Guidelines for using computer security to ensure privacy

■ How to protect employee health care information—and safeguard your business from costly penalties and fines

■ Security guidelines for safely disposing of secure documents

■ Policies and procedures for protecting electronic and online records

■ Security breach notification requirements—what employers are required to do when a breach occurs

■ How to avoid employee theft and negligence of PHI and what to do if it occurs

Unlimited Seminars, Webinars and On-Demand Content … With the STAR12 Professional Edition

For one low annual fee, STAR12 gives you unlimited access to the most comprehensive collection of seminar training and online learning resources in North America. Give yourself the edge you need to achieve your dream career. Join STAR12 today! Sign up today at joinSTAR12.com or call 1-800-258-7246.

Does anyone in your company touch any of the following employee or client information? If so, you could be liable under HIPAA regulations.

• Names• Dates directly related to

an individual• Phone or fax numbers• Email addresses• Account numbers• Social Security numbers• Medical record numbers• Health insurance beneficiaries• Web uniform resource

locators (URLs)• Internet protocol (IP) addresses• Full face photographic images• Any other unique personal

identifiers or characteristics

Why do YOU need this critical training?We’ve all been exposed to the regulations surrounding the Health Insurance Portability and Accountability Act (HIPAA), from standing in line at the local pharmacy to checking in at the doctor’s office.

But HIPAA regulations don’t just apply to doctor’s offices and hospitals. They apply to anyone who comes into contact with sensitive employee, customer or patient information … whether it’s an intern in human resources or the person who gathers bins of paper documents that need to be shredded in an office building.

And trust us, a feeble “We didn’t know” excuse isn’t going to save you when you’re going through a HIPAA audit after you’ve had a privacy or security breach. Don’t take a chance … enroll today!

A Note to Management: Think a HIPAA fine can’t happen to you? You’ve read this far, but you’re still having trouble committing to enrolling in this training? The information and skills you’ll receive in just one day probably would have saved these 11 companies from some serious trouble.

Here are the top 10 fines recently handed out over HIPAA violations:

1 A health care provider in Illinois: $5.55 million

2 A New York-based hospital and university: $4.8 million

3 A national health insurance company headquartered in Maryland: $4.3 million

4 An insurance company in Puerto Rico: $3.5 million

5 A university medical center in Mississippi: $2.75 million

6 A health and science university in Oregon: $2.7 million

7 A top-5 national pharmacy chain: $2.25 million

8 A hospital in New York: $2.2 million

9 A Texas-based health insurer: $1.7 million

10 (Tie) Alaska Department of Health and Social Services: $1.7 million

10 (Tie) A national health insurer based in Indiana: $1.7 million

Source: Becker’s Health IT and CIO Review 8/10/2016

If you’re in management, those are some sobering numbers. Are you sure everyone on your staff is following HIPAA regulations to the letter? Is anyone thinking, “Ah, nobody will notice if I ______ .” Don’t end up like the companies above. Safeguard your employees or your customers and your organization. Enroll yourself and your management staff in this important training today!

Enroll online at NationalSeminarsTraining.com/PRHIP or call 1-800-258-72466

Enrollment Fee

Group discount: When three enroll from your organization, a fourth attends FREE. Group discounts apply to seminar registrations only and cannot be used for STAR12 or on-demand seminars.

STAR12 Professional Edition—only $499*: STAR12 entitles you to unlimited access to all NST seminars (retail priced $399 or less) + Webinars, online courses and more for 12 months. Enroll today at joinSTAR12.com.*Plus tax where applicable

To Enroll …Register online at NationalSeminarsTraining.com/PRHIP

Call toll-free 1-800-258-7246

Registration InformationOur Registration Center is open weekdays from 7 a.m. to 7 p.m. CST. Enrollments taken online 24/7.

Check-in begins at 8:15 a.m. The workshop schedule is 9 a.m. to 4 p.m. Lunch is on your own.

Cancellations and substitutions. Cancellations received up to five working days before the seminar are refundable, minus a $10 registration service charge. After that, cancellations are subject to the entire seminar fee, which you may apply toward a future seminar. Please note that if you don’t cancel and don’t attend, you are still responsible for payment. Substitutions may be made at any time.

CEUs: Continuing education credit may be recognized by your professional board. Contact your own board to find out what’s required. You may also call us at 1-800-258-7246 for additional assistance.

Tax deduction: The expense of continuing education, when taken to maintain and improve professional skills, is tax deductible. Please contact your accountant for complete details.

7

Bring This Training to Your Organization

If you have multiple employees who could benefit from this training, consider bringing it on-site to your organization. On-site training is one of the most effective ways to facilitate employee development and success. You get …

ü Tailored Curriculum: We’ll match the training to your organization’s goals

ü Flexibility: We’ll deliver the training when and where you want

ü Consistent Learning: Deliver the same message at the same time, creating synergy and on-the-job application

ü Expert Instructors: Choose from more than 150 instructors to facilitate your training; watch video samples to see who fits best with your team

ü Maximum ROI: Get all your employees the development they need in a minimal amount of time for one flat fee

Call 1-800-344-4613 or email onsite@natsem.com for more information.

NONPROFIT ORG.U.S. POSTAGE

PAIDGraceland College Center

for Professional Developmentand Lifelong Learning, Inc.

Time-Sensitive Material

Printed in the USA

Need to correct name, title or address? Did you receive duplicate brochures or want to be removed from our list? Please fax the mailing label with corrections to 1-877-270-6185 or mail to us at 6900 Squibb Road, P.O. Box 2768, Mission, KS 66201-2768, Attention: List. Allow 15 weeks for processing.

6900 Squibb Road • P.O. Box 2768 • Mission, KS 66201-2768a division of the Graceland College Center for Professional Development and Lifelong Learning, Inc.

HIPAA PRIVACY COMPLIANCE

T H E E M P L O Y E R ’ S G U I D E T O

Enroll online at NationalSeminarsTraining.com/PRHIP or call 1-800-258-7246

How the Health Insurance Portability and Accountability Act impacts your business and your employees

PRHIP #06171 A