Privacy Compliance
Under the federal Health Insurance Portability and Accountability Act (HIPAA), healthcare providers are required to:
-
Provide the ability to transfer and continue health insurance coverage for millions of American workers and their families when they change or lose their jobs;
-
Reduce health care fraud and abuse;
-
Meet industry-wide standards for healthcare information on electronic billing and other processes
-
Protect the confidentiality of personal health information
In practice, HIPAA requires UCI Health to:
- Implement privacy and security policies, including those for notifying patients of their privacy rights and implementing mechanisms for patients to exercise those rights — such as accessing and amending their records, and requesting an accounting of disclosures of their health information
- Provide education and training to all staff and faculty
- Establish mechanisms to accept and follow up on patient and other privacy complaints
- Take corrective action when needed and mitigate the impact to patients of any breaches of their privacy
- Designate a privacy officer and a security officer who are responsible for implementation of the HIPAA regulations within a covered entity
To protect patient privacy, we conduct surveys to ensure that:
- Paper and electronic records containing patient information are physically and electronically safeguarded
- Patient information is disclosed only as permitted by law or as authorized by the patient
- There is surveillance of appropriate access to electronic patient records
View forms and more information about specific UCI Health privacy policies *:
* UCI Health credentials are required to view some of these forms.