Individual's Right of Access to PHI - Step-by-Step HIPAA Compliance

Date: Friday January 31, 2020

10:00 AM PST | 01:00 PM EST

Duration: 90 Minutes
Instructor: Paul R. Hales
Webinar Id: 801926


One Attendee
Unlimited Attendees


One Attendee
Unlimited Attendees ?


Live + Recorded
$269 $318  
One Attendee
Live + Recorded
$599 $678  
Unlimited Attendees ?


OCR, the office that enforces HIPAA, fired important enforcement shots across the bow of two specific covered entities for failing to comply with the right of individuals to have access to their own protected health information (PHI).

No doubt OCR publicized these investigations resulting in money payments and detailed, supervised corrective action plans as a warning for all covered entities. Failure to provide access to PHI is well-known and widespread. Many covered entities even post PHI access instructions on their websites that blatantly confirm their ongoing violations.

OCR now is wielding its enforcement power because its repeated warnings, Internet-based education and guidance clearly have not convinced covered entities to follow correct right of access procedures.However, right of access procedures are easy to follow and document step-by-step. Covered entities have no excuse for not providing proper access to PHI. This webinar will explain clearly how to comply with an individual’s right of access to PHI easily and completely.

Why should you Attend: Attend this webinar to see how HIPAA lays out clearly, in order all procedures to provide - and in some cases deny - an individual with the right of access to PHI. It will explain the broad scope of information individuals have a right to inspect and copy, limited information they cannot access and information to which access may be denied subject to review. And it will explain allowable that may be charged for access. When explained, you'll see right of access procedures are easy to follow and document.

Areas Covered in the Session:

  • Broad Scope of an Individual's Right to Access
  • Proper procedures to start access to PHI and why making a patient fill out "HIPAA Authorization" form is wrong - OCR calls it an "impermissible obstacle"
  • Providing PHI in the form and format requested - options
  • When must a Covered Entity deny a request for access to PHI
  • When may a Covered Entity deny part or all of a request for access to PHI
  • Denials of access to PHI subject to review and procedures for review
  • Required communications with the Individual at all stages of the process
  • Procedures for providing a summary or explanation of the PHI
  • Fees a Covered Entity is allowed to charge for access
  • What to do when a Business Associate ROI vendor's fees are higher than fees Covered Entities are allowed to charge under HIPAA

Who Will Benefit:
  • Medical Record Managers - Covered Entities
  • Release of Information Vendors (Covered Entity Business Associates)
  • Covered Entity Senior Management and Owners
  • Attorneys for Covered Entities - In-house and Outside Counsel
  • Compliance Committee - Covered Entity Board of Trustees
  • Compliance Committee - Physician, Practitioner-owned Covered Entities
  • C-Suite Executives - all Covered Entities
  • Chief Compliance Officer – all Covered Entities
  • HIPAA Compliance Officials
  • HIPAA Privacy Officers
  • HIPAA Security Officers
  • Health Information Technology Supervisors
  • Practice Managers - Covered Entities
  • Risk Managers - Covered Entities
  • Health Care Providers practicing as individuals or in small groups
  • Group Health Plan Administrators
  • Third Group Party Health Plan Administrators

Speaker Profile
Paul R. Hales, J.D. is widely recognized for his expert knowledge and ability to explain the HIPAA Rules clearly in plain language. Paul is an attorney licensed to practice before the Supreme Court of the United States and a graduate of Columbia University Law School with an international practice in HIPAA privacy and security. He is the author of all content in The HIPAA E-Tool®, an Internet-based, complete HIPAA compliance solution with separate editions for Covered Entities, Business Associates, Health Plans and Third Party Administrators.

You Recently Viewed