Agency Header

BBHHF Privacy Practice Manual

HIPAA POLICY, PROCEDURE AND FORMS

   
    McBain Copyright Notice

 0.1

  Index to DHHR HIPAA Policies on the Intranet
 1.1.1   General Policy Use and Disclosure of PHI Policy
 1.1.2   General Policy Use and Disclosure of PHI Procedure
 1.2.1   Authorization or Consent to Use or Disclose PHI Policy
 1.2.2   Authorization or Consent to Use or Disclose PHI Procedure
 1.2.3   Authorization or Consent to Use or Disclose PHI Validation Checklist 
 1.3.1   Standards for Form and Content of Authorization Forms
 1.3.2   Standards for Form and Content of Authorization Forms Policy
 1.3.3   Standards for Form and Content of Authorization Forms Procedure
 1.4.1   Conflicts Between Authorizations and Restrictions Policy  
 1.4.2   Conflicts Between Authorizations and Restrictions Procedure
 1.5.1   Verification of the Identity and Authority of a Person Requesting Disclosure of PHI Policy
 1.5.2   Verification of the Identity and Authority of a Person Requesting Disclosure of PHI Procedure
 1.6.0   DHHR Policy - Separation of Functions - Health Plan, Health Care Provider, and Health Care Clearinghouse
 2.1.1   Facility Directories Policy
 2.1.2   Facility Directories Procedure
 2.2.1   Providing Medical Information to Family, Friends, or Other Directly Involved in Patient's Care Policy
 2.2.2   Providing Medical Information to Family, Friends, or Other Directly Involved in Patient's Care Procedure
 2.3.1   Disclosure of PHI that are Required by Law - General Policy
 2.4.1   Disclosure of PHI for Public Health Purposes Policy
 2.4.2   Disclosure of PHI for Public Health Purposes Procedures
 2.5.1   Disclosure of PHI to Report Child Abuse, or Other Abuse, Neglect, or Domestic Violence Policy
 2.5.2   Disclosure of PHI to Report Child Abuse, or Other Abuse, Neglect, or Domestic Violence Procedure
 2.6.1   Reporting PHI to Employers Under OSHA and Similar Laws Policy
 2.6.2   Reporting PHI to Employers Under OSHA and Similar Laws Procedure
 2.6.3   Reporting PHI to Employers Under OSHA and Similar Laws Notice to be Given Employee 
 2.6.4   Reporting PHI to Employers Under OSHA and Similar Laws Notice to be Posted in Public Area
 2.7.1   Disclosure of PHI to Regulators Policy 
 2.7.2   Disclosure of PHI to Regulators Procedures
 2.8.1   Subpoenas, Court Orders, Discovery Requests, or Other Legal Processes and the Disclosure of PHI Policy
 2.8.2   Subpoenas, Court Orders, Discovery Requests, or Other Legal Processes and the Disclosure of PHI Procedure
 2.9.1   Disclosure of PHI for Law Enforcement Purposes Policy
 2.9.2   Disclosure of PHI for Law Enforcement Purposes Procedure
 2.10.1   Disclosure of PHI in Disaster Situations Policy
 2.10.2   Disclosure of PHI in Disaster Situations Procedure
 2.11.1   Disclosure of PHI Without Authorization, to Avert a Serious Threat to Health or Safety Policy
 2.11.2   Disclosure of PHI Without Authorization, to Avert a Serious Threat to Health or Safety Procedure
 2.12.1   Disclosure of PHI for Certain Government Functions Policy
 2.12.2   Disclosure of PHI for Certain Government Functions Procedure
 2.13.1   Disclosure of PHI Pertaining to Inmates Policy
 2.13.2   Disclosure of PHI Pertaining to Inmates Procedure
 2.14.1   Disclosure of PHI to Workers' Compensation Programs Policy
 2.14.2   Disclosure of PHI to Workers' Compensation Programs Procedure
 2.15.1   Extension of Privacy Protection to Deceased Individuals Policy
 2.15.2   Extension of Privacy Protection to Deceased Individuals Procedure
 2.16.1   Disclosure of PHI to Personal Representatives Policy
 2.16.2   Disclosure of PHI to Personal Representatives Procedure
 2.17.1   Use and Disclosure of PHI in an Emergency Policy
 2.17.2   Use and Disclosure of PHI in an Emergency Policy
 3.1.1   Minimum Necessary Rule Policy
 3.2.1   Assignment of Access Privileges Policy
 3.2.2   Assignment of Access Privileges Procedure
 3.3.1   Routine and Recurring Requests For and Disclosures of PHI Policy
 3.3.2   Routine and Recurring Requests For and Disclosures of PHI Procedure
 3.4.1   Requests for, and Disclosures of, PHI that are Not Routine and Recurring Policy
 3.4.2   Requests for, and Disclosures of, PHI that are Not Routine and Recurring Procedure
 3.5.1   De-Identified Information Policy
 3.5.2   De-Identified Information Procedure
 3.6.1   Limited Data Set Policy
 3.6.2   Limited Data Set Procedure
 4.1.1   Training Program - Uses, Disclosures, and Safeguarding PHI Policy
 4.1.2   Training Program - Uses, Disclosures, and Safeguarding PHI Procedure
 4.2.1   Sanctions for Violating Privacy and Security Policies and Procedures Policy
 4.2.2   Sanctions for Violating Privacy and Security Policies and Procedures Procedure
 4.3.1   Disclosure of PHI by Whistleblowers Policy
 4.3.2   Disclosure of PHI by Whistleblowers Procedure
 4.4.1   Disclosure of PHI by Workforce Members Who are the Victims of Crime Policy
 5.1.1   Patient Requests to Restrict the Use of Disclosure of PHI Information Policy
 5.1.2   Patient Requests to Restrict the Use of Disclosure of PHI Information Procedure
 5.2.1   Alternative Communication of Health Information Policy
 5.2.2   Alternative Communication of Health Information Procedure
 5.3.1   Right of Access of PHI Policy
 5.3.2   Right of Access of PHI Procedure
 5.4.1   Individual Requests to Amend Health Information Policy
 5.4.2   Individual Requests to Amend Health Information Procedure
 5.4.3   Individual Requests to Amend Health Information Request for Amendment Form
 5.4.4   Individual Requests to Amend Health Information Denial of Request for Amendment Form
 5.4.5   Individual Requests to Amend Health Information Rebuttal Statement Form
 5.5.1   Accounting of Disclosures of Health Information Policy
 5.5.2   Accounting of Disclosures of Health Information Procedure
 5.5.3   Accounting of Disclosures of Health Information Request for Accounting of Disclosures Form
 5.5.4   Accounting of Disclosures of Health Information Accounting of Disclosures of PHI Form
 5.6.1   Complaints About Privacy Practices Policy
 5.6.2   Complaints About Privacy Practices Procedure
 5.7.1   Free Exercise of Privacy Rights Policy
 6.1.1   HIPAA Transaction and Code Set Standards Policy
 6.1.2   HIPAA Transaction and Code Set Standards Procedure
 6.2.0   DHHR Policy - Designation of Covered Health Care Components: Hybrid Entity
 6.3.1   Use and Disclosure of PHI for Marketing Purposes Policy
 6.3.2   Use and Disclosure of PHI for Marketing Purposes Procedure
 6.4.1   Designation of Record Sets Policy
 6.5.1   Designation of Privacy Official and Contact for Complaints and Requests
 6.6.1   Use and Disclosure of PHI for Fundraising Policy
 6.6.2   Use and Disclosure of PHI for Fundraising Procedure
 6.7.1   Duty to Report Sercurity or Privacy Breach and Mitigate the Effect Policy
 6.7.2   Duty to Report Sercurity or Privacy Breach and Mitigate the Effect Procedure
 6.8.1   Maintenance of Privacy and Security Policies - Policy
 6.8.2   Maintenance of Privacy and Security Policies - Procedure
 6.9.1   Document Retention Period - Documents Relating to the Privacy of PHI Policy
 6.9.2   Document Retention Period - Documents Relating to the Privacy of PHI Procedure
 6.10.1   Use and Disclosure of Health Information Acquired Prior to Compliance Date for Federal Privacy Regulations
 7.1.1   Notice of Privacy Practices Policy
 7.1.2   Notice of Privacy Practices Procedure
 7.1.3   Acknowledgment Sheet
 7.1.4   Acknowledgment Sheet William R. Sharpe
 7.1.5   Mildred Mitchell Bateman Hospital NPP
 7.1.6   Hopemont Hospital NPP
 7.1.7   Lakin Hospital NPP
 7.1.8   Marion Health Care Hospital NPP
 7.1.9   Pinecrest Hospital NPP
 7.1.10   William R. Sharpe hospital NPP
 7.1.11   Welch Community Hospital NPP
 7.2.1   Disclosure of PHI to Business Associates and Other Contractors Policy
 7.2.2   Disclosure of PHI to Business Associates and Other Contractors Procedure
 7.3.1   State Laws Governing the Confidentiality of PHI Policy
 7.3.2   State Laws Governing the Confidentiality of PHI Procedure
 7.4.1   Cooperation with Federal Complaint Investigations and Compliance Reviews Policy
 7.4.2   Cooperation with Federal Complaint Investigations and Compliance Reviews Procedures
 7.5.1   Trading Partner Agreement Policy
 7.5.2   Trading Partner Agreement Procedure
 8.1.1   Safeguards to Protect the Privacy of PHI Policy
 8.2.1   Termination or Modification of Access to PHI - Electronic Systems Policy
 8.2.2   Termination or Modification of Access to PHI - Electronic Systems Procedure
 8.3.1   Assignment of Security Responsibility Policy
 8.4.1   Media Control Policy
 8.5.1   Physical Access Controls Policy
 8.5.2   Physical Access Controls Procedure
 8.6.1   Polices and Guidelines on Work Station Use and Location Policy
 8.6.2   Polices and Guidelines on Work Station Use and Location Procedure
 8.7.1   Facsimile Machines and PHI Policy
 8.7.2   Facsimile Machines and PHI Procedure
 8.8.1   E-mail and PHI Policy
 8.8.2   E-mail and PHI Procedure
 8.9.1   General Guidelines to Safeguard PHI Policy
 8.10.1   MIS Policy 0500
 8.10.2   MIS Policy 0501
 8.10.3   MIS Policy 0502
 8.10.4   MIS Policy 0503
 8.10.5   MIS Policy 0504
 8.10.6   MIS Policy 0504 Attachment A
 8.10.7   MIS Policy 0505
 8.10.8   MIS Policy 0505 Webmaster Agreement Form A
 8.10.9   MIS Policy 0505 Request to Post Information to DHHR Web Site Form B
 8.10.10   MIS Policy 0507
 8.10.11   MIS Policy 0510
 8.10.12   MIS Policy 0510 Granting Approval to Access Email Communication of Others
 8.10.13   MIS Policy 0511
 9.1.1   Employee Health Benefit Plan - Applicability of Federal Privacy Regulations Policy
 9.1.2   Employee Health Benefit Plan - Applicability of Federal Privacy Regulations Procedure
 9.2.1   Employee Health Benefit Plan - Use and Disclosure of PHI Policy
 9.2.2   Employee Health Benefit Plan - use and Disclosure of PHI Procedure
 9.3.1   Standards for Employee Welfare Benefit Plan Documents: Privacy of PHI Policy
 9.3.2   Standards for Employee Welfare Benefit Plan Documents: Privacy of PHI Procedure
 0.0.0   BBHHF HIPAA Manual Index
   

Privacy, Security and Accessibility | WV.gov | USA.gov | © 2014 State of West Virginia