Private Practice HIPAA Compliance

What Your Practice Needs to Know

Figuring out what your private practice needs for HIPAA compliance can be a difficult task. This is because HIPAA applies to a variety of healthcare organizations, small and large. So how do you know what is right for your practice? Read more to find out about private practice HIPAA compliance, and what your organization can implement now.

What is Required for Private Practice HIPAA Compliance?

Private Practice HIPAA Compliance

HIPAA requires the same basic things from healthcare organizations, regardless of their size. 

  1. Annual self-audits
  2. Remediation plans
  3. HIPAA policies and procedures
  4. Employee HIPAA training
  5. Business associate agreements
  6. Incident management

The differences come down to the details. For instance, you must ensure that you are adequately securing patient information, but the measures you take to do so may differ from another organization. A security protection that is appropriate for a large hospital is not necessarily appropriate for a private practice. This is why it is important to partner with an experienced HIPAA solution provider. Compliancy Group provides clients with the guidance they need to implement an effective HIPAA compliance that is appropriate for your specific needs.

See how we helped this sole practitioner become HIPAA compliant!

What is Protected Health Information?

A key component of understanding HIPAA is understanding what protected health information (PHI) is. This is because much of the regulation revolves around how you handle PHI, how PHI is protected, and what to do if PHI is compromised in a breach.

The Department of Health and Human Services (HHS), which is responsible for creating HIPAA laws, defines PHI as any individually identifiable health information that relates to the past, present, or future provision of healthcare.

PHI is classified into these 18 identifiers:

  1. Name
  2. Address (including subdivisions smaller than state such as street address, city, county, or zip code)
  3. Any dates (except years) that are directly related to an individual, including birthday, date of admission or discharge, date of death, or the exact age of individuals older than 89
  4. Telephone number
  5. Fax number
  6. Email address
  7. Social Security number
  8. Medical record number
  9. Health plan beneficiary number
  10. Account number
  11. Certificate/license number
  12. Vehicle identifiers, serial numbers, or license plate numbers
  13. Device identifiers or serial numbers
  14. Web URLs
  15. IP address
  16. Biometric identifiers such as fingerprints or voice prints
  17. Full-face photos
  18. Any other unique identifying numbers, characteristics, or codes

Let’s Simplify Compliance

Are you a private practice that needs help with HIPAA? Compliancy Group can help!

Learn More!
HIPAA Seal of Compliance