Corporate Compliance

Tip: Notice of privacy practice

Compliance Monitor, August 11, 2010

Organizations covered under HIPAA are required to issue a written Notice of Privacy Practices to patients outlining their privacy practices and patients’ rights. Include the following information in the Notice of Privacy Practices:

  • Inform patients of their rights and how they can exercise them
  • Disclose the organization’s privacy practices
  • Notify patients about the organization’s responsibilities under the law
  • Inform patients about all of the uses and disclosures of protected health information (PHI) required or allowed by law
  • Explain the process by which patients can access their medical records and amend their information

This week’s tip was adapted from The Compliance Officer’s Handbook. For more information about the book or to order your copy, visit the HCMarketplace.

Most Popular