海角社区

Human Resources

Home
About 海角社区
Policies & Procedures
Human Resources

Compliance with Health Insurance Portability and Accountability Act

Board of Trustees Policy: 6.9

Date: March 2022

Supersedes: January 2004

Purpose

The United States Department of Health and Human Services has mandated that each and every 鈥淐overed Entity鈥 (as such quoted term is defined and understood under the Health Insurance Portability and Accountability Act of 1996, as amended, and its implementing regulations (collectively, 鈥淗IPAA鈥)) comply with HIPAA.

HIPAA mandates that all Covered Entities adopt policies and procedures to address the privacy and security of 鈥減rotected health information鈥 (as such quoted term is defined by HIPAA and, where applicable, includes similar or related terms under the laws of Pennsylvania (鈥淪tate Law鈥)) that is created or maintained by the Covered Entity (鈥淧HI鈥).

Certain components of 海角社区, including its employee health plan (the 鈥淧lan鈥), are Covered Entities under HIPAA, thus the Board of Trustees is committed to providing leadership to promote a culture which emphasizes compliance with HIPAA and State Law and ensures that the privacy and security of PHI is recognized, valued and exemplified by all professional staff, employees, agents and volunteers of 海角社区.

Policy

The Board authorizes the adoption of policies and procedures governing the privacy and security of PHI (the 鈥淗IPAA Policies and Procedures鈥) which are developed to: (1) promote and enhance the commitment to confidentiality and security relating to PHI that has existed at 海角社区 and continues to exist today and (2) otherwise ensure compliance with HIPAA and State Law, and other federal and state laws and regulations relating to the privacy and security of PHI specifically:

  1. A Privacy Officer shall be appointed by the President and in consultation with the President and the Board, is authorized, empowered and directed to do such acts and things, retain such consultants, including counsel and internal and external auditors, and expend such monies within the budget of 海角社区, as authorized by the Board for the purpose of implementing and enforcing compliance with the HIPAA Privacy Policies and Procedures of 海角社区; and
  2. The Board authorizes the establishment of a multidisciplinary Privacy Committee, of which the Privacy Officer shall serve as the Chairperson and whose members shall be appointed by the President of 海角社区, to assist the Privacy Officer in carrying out his or her duties set forth in these Resolutions; and
  3. The Privacy Officer, in consultation with the President and the Board, shall prioritize the various objectives of HIPAA and State Law, and focus on the timely creation and implementation of HIPAA Policies and Procedures within the economic constraints of 海角社区; and
  4. The Privacy Officer, through the President, shall provide a detailed report to the Board regularly, but not less than annually, on the progress and results of the implementation and enforcement with the HIPAA Policies and Procedures of Montgomery County Community College.