• Make an Appointment
  • Our Pricing
  • Our Services
    • One Time Shredding(Purge)
    • Business Shredding(Monthly)
    • Residential Shredding(One time)
    • Hard Drive Shredding Services
    • Drop Off Shredding Locations
    • Shredding Events
  • Home
    • Reviews
    • Privacy Law
  • Home
  • HIPAA FAQ

HIPAA FAQ

HIPAA requires that all shredding be witnessed by your practice. If you have a document shredding service, you should always follow your privacy protected health care documents to the truck and watch the shredding take place, this is required by law. Don’t let your shredding service take the documents away with out seeing them destroyed. I’ve seen Iron Mountain wheel documents from a health care facility and put the cart into a box truck and drive off. If this happens to your practice, ask your shredding service for a video showing YOUR documents being destroy…better yet, just find a shredding service like Shred Bull and watch your HIPAA protected documents and hard drives shredded right there at your location.

Questions To Consider

Why was the Health Insurance Portability and Accountability Act (HIPAA) established?

  • The focus of the statute is to create confidentiality systems within and beyond healthcare facilities.
  • The goal of keeping protected health information private.

Whom does HIPAA cover?

  • All persons working in a healthcare facility or private office
  • Students
  • Non-patient care employees
  • Health plans (e.g., insurance companies)
  • Billing companies
  • Electronic medical record companies

What are basic HIPAA goals?

  • To limit the use of protected health information to those with a “need to know.”
  • To penalize those who do not comply with confidentiality regulations.

What health information is protected?

  • Any health care information with an identifier that links a specific patient to healthcare information (name, social security number, telephone number, email address, street address, among others)

Differentiate between HIPAA privacy rules, use and disclosure of information?

  • Use: How information is used within a healthcare facility
  • Disclosure: How information is shared outside a health care facility
  • Privacy rules: Patients must give signed consent for the use of their personal information or disclosure

What are the legal exceptions when health care professionals can breach confidentiality without permission?

  • Gunshot wound
  • Stab wound
  • Injuries sustained in a crime
  • Child/Elderly abuse
  • Infectious, communicable or reportable diseases

What types of data does HIPAA protect?

  • Written, paper, spoken, or electronic data
  • Transmission of data within and outside a health care facility
  • Applies to anyone or any institution involved with the use of healthcare-related data
  • Data size does not matter

What types of electronic devices must facility security systems protect?

  • Both hardware and software
  • Unauthorized access to health care data or devices such as a user attempting to change passwords at defined intervals

What is the job of a HIPAA security officer?

  • IT background
  • Document and maintain security policies and procedures
  • Audit the systems
  • Risk assessments and compliance with policies/procedures

What does a security risk assessment entail?

  • Should be undertaken at all healthcare facilities
  • Assess risk of virus infection and hackers
  • Create safeguards against risks

What are physical safeguards?

  • Secure printers, fax machines, and computers
  • Locks on computer and record rooms
  • Destroy sensitive information

What type of employee training for HIPAA is necessary?

  • Ideally under the supervision of the security officer
  • Level of access increases with responsibility
  • Annual HIPAA training with updates mandatory for all employees

What type of reminder policies should be in place?

  • E-mail alert, posters
  • Log-on, log-off computer notices

How should a sanctions policy for HIPAA violations be written?

  • Clear, non-ambiguous plain English policy
  • Apply equally to all employees and contractors
  • Sale of information results in termination
  • Repeat offense increases the punishment

What discussions regarding patient information may be conducted in public locations?

  • None
  • Conversational information is covered by confidentiality/HIPAA
  • Do not talk about patients or protected health information in public locations

How do you protect electronic information?

  • Point computer screens away from public
  • Use privacy sliding doors at the reception desk
  • Never leave protected health information unattended
  • Log off workstations when leaving an area

How do you ensure password protection?

  • Do not share the password
  • Do not write down the password
  • Do not verbalize password
  • Do not email your password

How do you select a safe password?

  • Do not select consecutive digits
  • Do not select information that can be easily guessed
  • Choose something that can be remembered but not guessed

ADDITIONAL HIPAA RESOURCES

  • https://www.ncbi.nlm.nih.gov/books/NBK500019/
  • https://www.hhs.gov/hipaa/index.html
  • https://www.hhs.gov/hipaa/for-professionals/security/laws-regulations/index.html
  • https://www.cms.gov/Outreach-and-Education/Medicare-Learning-Network-MLN/MLNProducts/Downloads/HIPAAPrivacyandSecurity.pdf

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)
  • Click to share on Facebook (Opens in new window)
EZ Pricing - Up front pricing saves you time

HARD DRIVE SHREDDING!

HARD DRIVE SHREDDING
Do you have any old hard drives or cell phones you’d like to get rid of?  Now, you can watch us shred your HARD DRIVES & iPhones.  Just take the HD out of your computer, and we’ll shred it during our paper shredding appointment, just $10 each HD or phone!


Orange County’s Best Shredder

shredbull paper shreddingShred Bull® Mobile Shredding – We promise you will get great service, at a great price. Our service area is all of Orange County, CA.

Monthly Business Shredding

Monthly Shredding Cost

What a deal! Just $25 per Month!

How long does the IRS require you to keep records?

Most of the time it’s 3 years…there are exceptions….
The length of time you should keep a document depends on the action, expense, or event which the document records.

★★★★★ 5 star service!

See all reviews or Review Us

Check out our brand new, state of the art, shredding truck! This truck is the best shredding truck available today. We can shred 100 boxes of paper in 30 Minutes!!!

We service All Orange County!

Our Local Shredding Service Area | Aliso Viejo | Capistrano | Costa Mesa | Dana Point | Irvine | Ladera Ranch | Laguna Hills | Laguna Niguel | Laguna | Lake Forest | Local Shredding Service | Mission Viejo | Newport Beach | Newport Coast | Rancho Santa Margarita | San Clemente | Santa Ana | shredbull.com | Tustin

Call or Text (949)459-FAST

Shred Bull Orange County Drop-Off Locations
  • Lake Forest, CA >> 23122 El Toro Rd, Lake Forest, CA 92630
  • Irvine, CA >> 15333 Culver Dr #340, Irvine, CA 92604
  • Laguna Niguel, CA >> 30025 Alicia Pkwy, Laguna Niguel, CA 92677
  • Tustin, CA >> 2681 Walnut Ave, Tustin, CA 92780

    Click for More info and Maps

  • ★★★★★ Shred Bull Shredding Company, Orange County, CA -- All Rights Reserved