Learn how healthcare providers can manage diverse health data sources while ensuring compliance with HIPAA and privacy laws.
In today’s technological environment within the health care industry, there are almost innumerable sources of patients’ health information. Many providers are accustomed to information received from other providers, such as physicians or hospitals. However, now there are many other sources, including information generated by patients themselves (such as through apps and smart devices) and AI-generated data. In this presentation, we will discuss how providers can best prepare to manage these multiple streams of data and take precautions that protect themselves and prevent any problems under HIPAA and other data privacy laws.Learning Objectives
- You will be able to define key terms related to health data privacy, including covered entities, protected health information (PHI), and the distinctions between HIPAA and state laws.
- You will be able to identify and categorize various sources of external health information, including data from patients, other providers, and third partiesYou will be able to discuss best practices for managing external health information within an electronic medical record (EMR), including data segregation and preventing inadvertent disclosures.
- You will be able to explain the impact of emerging data sources, such as AI-generated health information and marketing data, on healthcare privacy and compliance.
Agenda
Background and Basic Definitions- Limitations of Definitions of Covered Entity
- Limitations on Definition of Protected Health Information
- HIPAA vs. State Law
- Information From Patients
- Information From Other Providers
- Information From Third Parties
- Segregating Information in a Separate Data Set
- Preventing Inadvertent Disclosures
- Information Generated by AI
- Marketing Information
- Agreements (Are You a Business Associate?)
- Patient Authorizations
Speaker(s)
Adam LaughtonGreenberg Traurig
- Shareholder at Greenberg Traurig
- Works extensively with healthcare providers in multiple areas of compliance
- Has assisted providers and hybrid entities with establishing HIPAA compliance programs
- Has assisted providers with breach notifications and incident reporting obligations
- Works extensively with providers around the integration/expansion of their operations (and security environment)
- Has worked and presented with security consultants in developing offerings for clients and providers
