Overview
8:00 AM – 8:05 AM
Welcome/Announcements
8:05 AM – 9:30 AM
Release of Information: Basic Rules of Disclosure
- HIPAA Privacy Rule Review
- TPO and Continuity of Care – what does not require an authorization and what does
- HIPAA and Oregon Law
- Other Laws – 42 CFR Part 2, FERPA, Psychotherapy Notes, COPA, Oregon Statute
- ROI specifics: Timeframes, Charging for Records, Record Retention and ROI
Chris Apgar, CISSP – CEO & President, Apgar and Associates
CE: 1 – Information Protection: Access, Disclosure, Archival, Privacy and Security
9:30 AM – 9:45 AM
Break
9:45 AM – 10:45 AM
Reporting to Authorities
- Mandatory Reporting
- Law Enforcement
- Public Health
HIPAA Permitted Reporting (e.g., military, correctional institutions, whistleblowers, etc.)
Anne Greer, JD, VP, Chief Privacy Officer and Legal Counsel Legacy Health System
CE: 1 – Information Protection: Access, Disclosure, Archival, Privacy and Security
11:00 AM – 12:30 PM
Patient Rights
- Accounting of Disclosure, Access, Amendment, Restriction, etc.
- Anatomy of an Authorization and Patient Access Form – requirements of a valid form
- General
- 42 CFR Part 2
- Personal Representatives and ROI
- Legal Documents (Guardianship, POA, Advanced Directives, etc.)
- Minors, Decedents, Estates
- Denial of Access (Clinical Judgment, How to deny/ what to send the requestor)
Aurae Beidler, MHA, RHIA, CHC, CHPS – HIM Faculty, Portland Community College
Claire Cieri, MS, CHC, CHPS, CHCO, CPMA, CHCA, CPC, CEMC – Certified Healthcare Compliance and Privacy Officer/ Auditor
CE: 1.5 – Information Protection: Access, Disclosure, Archival, Privacy and Security
12:30 PM – 1:15 PM
Lunch Break
1:15 PM – 3:00 PM
Legal Proceedings from Discovery to Trial and Key Legal Documents
- Legal Health Record vs Designated Record Set
- Subpoenas and Court Orders
- Affidavit, Custodian of Records
- Risk Management
Cindy Hahn, JD, Senior Assistant County Attorney and Chief Privacy Officer, Office of the Multnomah County Attorney
CE: 1.5 – Information Protection: Access, Disclosure, Archival, Privacy and Security
3:00 PM – 3:15 PM
Break
3:15 PM – 4:15 PM
ROI Hot Topics and Roundtable
- Minors
- SUD consent and records
- Information Blocking
- Other topics (as time permits)
CE: 1 – Information Protection: Access, Disclosure, Archival, Privacy and Security
Date Published
November 30, 2021
Speaker
Chris Apgar, CISSP
Chris Apgar, CISSP, CEO and President of Apgar & Associates, LLC, is a nationally recognized information security, privacy and electronic health information exchange expert. He has over 19 years of experience assisting health care organizations comply with HIPAA, HITECH and other privacy and security laws. Mr. Apgar has assisted healthcare, utilities and financial organizations implement privacy and security safeguards to protect against organizational harm and harm to consumers. Mr. Apgar served as a member of the Workgroup for Electronic Data Interchange Board of Directors for eight years. He is chair of the Oregon Prescription Drug Monitoring Program Advisory Commission and he’s a member of the OrHIMA Board of Directors. Mr. Apgar has been a Certified Information Systems Security Professional since 2002 and is a senior member of the Information Systems Security Association.
Aurae Beidler, MHA, RHIA, CHC, CHPS
Aurae Beidler is currently full-time faculty in the online Health Information Management degree program at Portland Community College. She served nearly four years as the Compliance and Privacy Officer at Linn County Department of Health Services where she oversees the compliance and privacy program. Prior to working at the county, she served as the Oregon Health Authority’s Privacy Officer and an assistant professor and program director for the healthcare compliance graduate certificate program at Pacific University. She has ten years’ experience in healthcare compliance including auditing and monitoring coordination, investigations, education and HIPAA Privacy Officer duties. She has also published several articles in Compliance Today. She currently serves as the Speaker of the House of Delegates.
Aurae holds a Master’s degree in Healthcare Administration from Pacific University, a graduate certificate in biomedical informatics from Oregon Health and Sciences University and a B.A. in Journalism from University of Oregon. Aurae is currently credentialed as a CHC, certified in healthcare compliance, RHIA, registered health information administrator and CHPS, Certified in Healthcare Privacy and Security.
Claire Cieri, MS, CHC, CHPS, CPCO, CPMA, CPC, CHCA
Claire Cieri is a Certified Compliance and Privacy officer, auditor and coder who partners with clinic administrators and providers to keep healthcare clinics profitable while still being compliant with the many privacy, security and compliance laws and regulations. She has been working in the healthcare field for a decade, continually growing her skills. Claire has been an independent consultant for the past 6 years, helping clinic managers with compliance and privacy projects that they know they are required to do, but just do not have the time or the staff. Claire truly enjoys meeting and working with all types of clinic personnel, knowing that the true measure of healthcare is how we take care of patients, including their protected health information. She has taught workshops on implementing compliance plans, risk assessments, HIPAA policies and procedures, plus updating your business associate agreements and notice of privacy practices. Claire provides HIPAA and Cybersecurity training, plus policies and procedures for all types of clinics. She was instrumental in educating clinics on what was required for the Omnibus Bill in 2013. Claire believes that, in terms of security and compliance issues, you are only as strong as your weakest link so she knows that training, and training often, is the best way to ensure that your clinic does not run the risk of losing it all due to a simple human error. Claire worked with Lane Community College Health Clinic on their data breach last year that concerned over 2000 patients. She helped administration inform the OCR, media, and patients plus she rewrote their privacy and security policies, including training. Claire has a Masters of Science in Industrial Relations from the University of Oregon and a Bachelors of Art from Smith College.
Anne T. Greer
Anne is currently the Vice President, Chief Privacy Officer and General Counsel for Legacy Health. Responsible for advising on a broad range of legal issues affecting health care providers including managing all areas of regulatory compliance, business planning, contract negotiation and preparation, review and development. Provide counsel and legal representation with respect to patient care issues including consent to treatment, HIPAA privacy and security including use, release and disclosure of medical information, EMTALA, behavioral health, and end-of-life decision making. Legal advisor to hospital Ethics Committees, Utilization Management Committees and Research Department. Assistant Secretary to hospital Foundation Boards.
Prior to joining Legacy, practiced in both the private and public sectors in the areas of commercial litigation, bankruptcy, securities, insurance defense and contract litigation, including work as a trial attorney for the Commercial Litigation Branch of the U.S. Department of Justice. Graduated from Stanford University with a bachelor’s degree in political science. Received law degree from the University of California, Hastings College of Law.
She is a Past President and member of the Oregon Health Lawyers Association, member of the American Health Lawyers Association and the Corporate Counsel and Health Law Sections of the Oregon State Bar, Hospital Representative to the Oregon Advisory Committee on Genetic Privacy and Research. She is also a current member and past Chair of the Compliance Advisory Committee of the Oregon Association of Hospitals and Health Systems.
Cindy Hahn JD, FIP, CIPP/US, CIPM, CHC
Cindy is a Senior Assistant County Attorney and the Chief Privacy Officer for Multnomah County, Oregon. Cindy represents the County in matters related to privacy, the protection of personal information, and data sharing. Prior to her role at the County, she held previous privacy and compliance roles at two large health plans and worked as a software engineer prior to and during law school. She earned a BBA in Management Information Systems from the University of Texas at Austin, JD from the University of Denver Sturm College of Law, and LLM in Cybersecurity and Privacy Law from Albany Law School.
Pricing
- Member – $99
- Non-member – $149
- Student – $39
CE
# of CEs: 6.0
AHIMA
This educational offering has been approved for continuing education credit for use in fulfilling the continued education requirements of the American Health Information Management Association (AHIMA).
AAPC
CEUs are accepted from programs sponsored by AHIMA national offices and the state or regional AHIMA branches. One hour of instruction is worth one CEU. A certificate of attendance or completion is necessary to show participation.
Instructions
Register
Registration has closed for this course.
Already Purchased Course?
If you have already purchased this course, then you will need to sign in to access and then click on the session(s) listed under Course Content.
Access instructions for the course will be emailed to you within 2 business days following receipt of payment.
You will have 60 days to access the course after access has been granted.
How Do I Receive the CE?
You must click on the button labeled “Mark Complete” at the bottom of each course page before the CE will appear on the My Certificates page
FAQs
- Access instructions for the course will be emailed to you within 2 business days following receipt of payment.
- You will have 60 days to access the course. If your course has expired, and you need an extension, please contact us.
- You must click on the button labeled “Mark Complete” at the bottom of each course page before the CE will appear on the My Certificates page.
View more FAQs.
Need assistance? Contact us.
Course Includes
- 8 Lessons
- Course Certificate
