Laserfiche WebLink
Now, we'll explore the next level of HIPAA - specifics that, for many of us, cause more confusion than <br />clarity. Let's try to make "Administrative Simplification" simple! <br /> <br />HIPAA's "Administrative Simplification" provision is composed of four parts, each of which have <br />generated a variety of "rules" and "standards." Many of the rules and standards are still in the "proposed" <br />(by DHHS) stage; however, most ara expected to become "final" rules within the year 2000. Even more <br />confusing, the rules, when final, will often have different compliance deadlines. <br /> <br />The four parts of Administrative Simplification are: <br /> <br />I. ELECTRONIC HEALTH TRANSACTIONS STANDARDS <br />II. UNIQUE IDENTIFIERS <br />III. SECURITY & ELECTRONIC SIGNATURE STANDARDS <br />IV. PRIVACY & CONFIDENTIALITY STANDARDS <br /> <br />I, ELECTRONIC HEALTH TRANSACTIONS STANDARDS <br /> <br />The term "Electronic Health Transactions" includes health claims, health plan eligibility, enrollment and <br />disenrollment, payments for care and health plan premiums, claim status, first injury reports, coordination <br />of benefits, and related transactions. <br /> <br />Today, health providers and plans use many different electronic formats. Implementing a national <br />standard will mean we will all use one format, thereby "simplifying" and improving transaction efficiency <br />nationwide. The proposed rule requires use of specific electronic formats developed by ANSI, the <br />American National Standards Institute, for most transactions except claims attachments and first reports <br />of injury. Proposed regulations for these exceptions are not yet out. <br /> <br />Virtually all health plans will have to adopt these standards, even if a transaction is on paper or by phone <br />or FAX. Providers using non-electronic transactions are not required to adopt the standards; although if <br />they don't, they will have to contract with a clearinghouse to provide translation services. <br /> <br />Health organizations also must adopt STANDARD CODE SETS to be used in all health transactions. For <br />example, coding systems that describe diseases, injuries, and other health problems, as well as their <br />causes, symptoms and actions taken must become uniform. All parties to any transaction will have to use <br />and accept the same coding. Again, in the long run, this is intended to reduce mistakes, duplication of <br />effort and costs. Fortunately, the code sets proposed as HIPAA standards are already used by many <br />health plans, clearinghouses and providers, which should ease the transition. <br /> <br />II. UNIQUE IDENTIFIERS FOR PROVIDERS, EMPLOYERS, HEALTH PLANS and PATIENTS <br /> <br />The current system allows us to have multiple ID numbers when dealing with each other, which HIPAA <br />sees as confusing, conducive to error and costly. It is expected that standard identifiers will reduce these <br />problems. <br /> <br />III. SECURITY OF HEALTH INFORMATION & ELECTRONIC SIGNATURE STANDARDS <br /> <br />The new Security Standard will provide a uniform level of protection of all health information that is <br /> <br />1. housed or transmitted electronically and that <br />2. pertains to an individual. <br /> <br />In addition, organizations who use Electronic Signatures will have to meet a standard ensuring message <br />integrity, user authentication, and non-repudiation. <br /> <br />The Security standard mandates safeguards for physical storage and maintenance, transmission, and <br />access to individual health information. It applies not only to the transactions adopted under HIPAA, but to <br /> <br /> <br />