1 / 14

HIPAA Compliance: Addressing Web-based Tracking, Social Media & Patient Reviews

Discover crucial steps to safeguard patient privacy rights and ensure HIPAA compliance in your healthcare marketing efforts. Our webinar explores simple administrative safeguards from the HIPAA Privacy Rule that protect healthcare providers from common, yet dangerous, online HIPAA violations. Don't let your online marketing efforts put your organization at risk! Join our webinar to understand the complexities of HIPAA compliance in digital technology. Register Now, https://conferencepanel.com/conference/new-hipaa-compliance-for-web-sites-tracking-technologies-social-media-patient-reviews

Download Presentation

HIPAA Compliance: Addressing Web-based Tracking, Social Media & Patient Reviews

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. HIPAA COMPLIANCE FOR WEB SITES & SOCIAL MEDIA NEW - TRACKING TECHNOLOGIES AND PATIENTREVIEWS PRESENTED BY PAUL R. HALES, J.D. EDUCATIONAL WEBINAR 1 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  2. HIPAA Rules - Web Sites, Social Media & Patient Reviews PAUL R. HALES ATTORNEY AT LAW HealthInformation – HIPAA Protecting Patient Privacy is Our Job® Legal Education – Not Legal Advice AttorneyHales.com @hipaaetool 314-534-3534 PaulHales@AttorneyHales.com 2 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  3. HIPAA Rules - Web Sites, Social Media & Patient Reviews What Are WeGoing to Cover? Why is this Important? HIPAARules for WebSitesand Social Media WebSites Subject to HIPAA Rules CoveredEntity’s WebSite CoveredEntity’s SocialMediaWeb Site 2 Simple Web Site Safeguards Major New HIPAA Web Site Liability– Tracking Technologies Howto AvoidTracking TechLiability HIPAARules coveringPatientReviews How Patient Reviews Violate HIPAA Simple PatientReview Safeguards www.thehipaaetool.com Protecting Patient Privacy is our Job® 3 © 2024 ET&C Group LLC

  4. HIPAA Rules - Web Sites, Social Media & Patient Reviews 2024 – OCR HIPAA ComplianceAudits HIPAA Compliance Audits are Back February 20, 2024 The HHS Office for Civil Rights (OCR) announced HIPAA compliance audits resume in 2024 in line with a ramped-up enforcement program. They're Back: HHS OCR Plans to Resurrect Random HIPAA Audits February 13, 2024 The HIPAAaudits - and the planned potentialupdate to the HIPAAsecurity rule - help round out HHS' evolving strategy to push healthcare sector entitiesinto implementingstronger cybersecurityprograms. 4 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  5. HIPAA Rules - Web Sites, Social Media & Patient Reviews FOR IMMEDIATERELEASE June 5, 2023 HHS Office for Civil Rights Reaches Agreement with Health Care Provider in New JerseyThat Disclosed Patient Informationin Response to Negative Online Reviews New Jersey psychiatry practice pays $30,000 to settle complaint about impermissible disclosure of protected healthinformation by disclosing this information in onlinereview OCR continues to receivecomplaints about health care providers disclosing their patients’ protected health information on social media or on the internet in response to negative reviews. Simply put, this is not allowed,” said OCR Director Melanie FontesRainer. “The HIPAAPrivacy Rule expressly protects patients from this type of activity, which is a clear violation of both patient trust and the law. OCR will investigateand take action when we learn of such impermissible disclosures, no matter how large or small the organization.” 5 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  6. HIPAA Rules - Web Sites, Social Media & Patient Reviews Highly Visible ? The Internet Provider Web Sites Provider Social Media Patient Reviews 6 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  7. HIPAA Rules - Web Sites, Social Media & Patient Reviews Why Protecting PHI Privacy is Essential Medical Identity Theft – Criminal Black Market Criminals Attack People of All Ages & All Walks of Life • Social Engineering Clever Scripts & Messages • Vishing • Phishing • Smishing • Quishing – Malicious QR Codes – FBI 7 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  8. HIPAA Rules - Web Sites, Social Media & Patient Reviews Web Sites subjectto HIPAA Rules Facebook The Hospitals’ Facebook Web Site Hospitals, both facilities, XXXXXXXXXXXXXXXXXXXXXXXXXXXXX provide comprehensive inpatient and outpatient servicesthat serve the larger Community. XXXXXXXXXXXXXXXX Services at include theXXXXXXXXXXX Cancer Center,Breast Health and Women’s Center,the Cardiology Center,and the Outpatient Surgery and Endoscopy Center. Services at include general surgery, disease management and prevention, comprehensive women’s services and a pediatric emergency department in partnership with Compassion - We promise to care about you. Respect - Wepromise to treat you with dignity. “covered entity's customer services or benefits” XXXXXXXXXXXXX XXXXXXXXXXXXXXX XXXXXXXXXXXXXXXX . XXXXXXXXXXXXXXXX 8 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  9. HIPAA Rules - Web Sites, Social Media & Patient Reviews Safeguard # 2 – Before posting PHI Get a Valid HIPAA Authorization Facebook Posts by Patients and Others You'llneed to be an admin to control what visitors can post on your Page. Tocontrolwhat visitorscan post on your Page: • Click Settings at the top of your Page. • From General, click Visitor Posts. • Select Allow visitors tothe Page to publish posts or Disable posts by other people on the Page. If you allow visitorsto publish posts,you can choose to: • Allow photo and video posts • Review posts by other people before they're published tothe Page 9 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  10. HIPAA Rules - Web Sites, Social Media & Patient Reviews Tracking Technologies Background – What is Tracking Technology? OCR’s Description Tracking technologies are used to collect and analyze information about how users interact with regulated entities’ websites or mobile applications (“apps”). Key Points • Tracking Technologies are complex • There are many types of Tracking Technologies • Until 2022, Tracking Technology functions and risks were largely unknown to Health Care Provider senior management and compliance officials www.thehipaaetool.com Protecting Patient Privacy is our Job® 10 © 2024 ET&C Group LLC

  11. HIPAA Rules - Web Sites, Social Media & Patient Reviews How to Avoid Tracking Tech Liability Due Diligence Careful Audit (Risk Analysis) – All Your Organization’s Web Sites Identify Tracking Technology Locations Inclusive, Multi-Specialty Expert Audit Team • Information Technologyand Security • Privacy/Compliance • Legal • Marketing – in house and Marketing Consultants and Vendors • Senior Management • Others as necessary and appropriate 11 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  12. HIPAA Rules - Web Sites, Social Media & Patient Reviews How to Avoid Tracking Tech Liability Due Diligence Risk Management Removeall TrackingTechnology Google Analytics & Facebook provide instructions Developand implement Policies and Procedures to • RegularlyMonitor Websites, Apps, and locations of TrackingTech • Vett (Due Diligence) allvendors • Web Site Builders • Patient Engagement Specialists • Marketing Consultants • Review Regularly– HIPAA Compliance is a Process 12 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

  13. HIPAA Rules - Web Sites, Social Media & Patient Reviews In conclusion,we have covered Why this is Important HIPAARules for WebSitesand Social Media WebSites Subject to HIPAA Rules CoveredEntity’s WebSite CoveredEntity’s SocialMediaWeb Site 2 Simple Web Site Safeguards Major New HIPAA Web Site Liability– Tracking Technologies How to AvoidTracking TechLiability HIPAARules coveringPatientReviews How PatientReviewsViolateHIPAA Simple PatientReview Safeguards www.thehipaaetool.com Protecting Patient Privacy is our Job® 13 © 2024 ET&C Group LLC

  14. HIPAA Rules - Web Sites, Social Media & Patient Reviews ThankYou Register Now Paul Hales, J. D. PaulHales@AttorneyHales.com 314-534-3534 14 www.thehipaaetool.com Protecting Patient Privacy is our Job® © 2024 ET&C Group LLC

More Related