5 MINUTE HIPAA RESEARCH SURVEY
Description
Collection
Title:
5 MINUTE HIPAA RESEARCH SURVEY
Date:
8/9/2002
Text:
You may find that participating in the following survey will assist with your efforts to become HIPAA compliant, and help you measure your progress. This survey is part of an NCOPE residency research project, and grateful appreciation is extended to all participants. The raw data collected will be published, but not directly linked to the donors of the information (i.e. 72% of participants responded yes). If you like, your name / facility / location, will not be listed with the participants. Due to limitations, only the first 50 responses can be listed, but additional groups of 50 may be collected.
Clicking on the following link will take you into the survey:
<URL Redacted>
The questions asked on the survey are the following:
1. Do you have a designated privacy officer?
2. Have you filed for an extension?
3. Do you have a printed copy of your extension application?
4. Have you received a confirmation number?
5. Do you have any Business Associate contracts in place?
6. Do you use ANSI X12 N for your transactions / code sets?
7. Do you have a statement on file from your computer systems or other software providers stating that they are, or will be, HIPAA compliant?
8. Has anyone from your office attended a HIPAA seminar?
9. If yes to #8, which one?
10. Have you purchased a HIPAA manual or CD?
11. If yes to #10, which one?
12. Have you held at least one HIPAA employee-training meeting?
13. Do you have a Notice of Privacy Practices posted?
14. As referenced in AOPA In Advance (AIA), have you conducted a “security gap analysis?”
15. As referenced in AOPA In Advance (AIA), do you have a list of where Protected Health Information (PHI) is?
16. Please indicate use of name / facility / location
17. Please type your name / facility / location for addition to the list of providers.
From AOPA in Advance, Volume 6, Number 9, April 30, 2002
Copyright 2002 American Orthotic & Prosthetic Association. 17 United States Code, The Copyright Act, prohibits reproduction of this copyrighted material without permission of the owner.
…Applicable to all protected health information (PHI) that is electronically maintained or transmitted, the proposed security rules require you to assess potential risks and vulnerabilities to PHI in your possession and to develop, implement and maintain appropriate security measures. Electronic transmissions include transactions using magnetic tapes, disks and compact discs and transactions over the Internet or through private internal computer networks. The proposed rules do not apply to telephones or fax machines, but the final rules might.
AOPA recommends that you conduct this “security gap analysis” now to pinpoint areas where you might need to increase the security of PHI.
First, list physical assets that you use for storage or transmittal of patient information, such as computers, PDA devices and laptops.
Second, note whether or not there are ways to secure patient data stored electronically, such as through password protections. Determine if there are methods in place to back up computer data, recover lost data and operate your computers in the event of a fire, vandalism or system failure.
Third, evaluate your employee training on securing electronic patient information, as well as your office policies and procedures, such as ensuring former employees cannot gain access to your computer files. List your vulnerabilities in these areas….
Special thanks to all who have participated. Please include your name, facility, and location, with your responses in the survey question #17. If you wish to remain anonymous on the published results, please indicate so in your reply to question #16.
Thank you for participating in this survey!
Additional thanks go out to:
John Michael, CPO, for technical and advisory support; and,
Malissa Bennett, AOPA Director of Membership and Communications, for copyright permission.
To view survey website privacy statements go to:
<URL Redacted>
Clicking on the following link will take you into the survey:
<URL Redacted>
The questions asked on the survey are the following:
1. Do you have a designated privacy officer?
2. Have you filed for an extension?
3. Do you have a printed copy of your extension application?
4. Have you received a confirmation number?
5. Do you have any Business Associate contracts in place?
6. Do you use ANSI X12 N for your transactions / code sets?
7. Do you have a statement on file from your computer systems or other software providers stating that they are, or will be, HIPAA compliant?
8. Has anyone from your office attended a HIPAA seminar?
9. If yes to #8, which one?
10. Have you purchased a HIPAA manual or CD?
11. If yes to #10, which one?
12. Have you held at least one HIPAA employee-training meeting?
13. Do you have a Notice of Privacy Practices posted?
14. As referenced in AOPA In Advance (AIA), have you conducted a “security gap analysis?”
15. As referenced in AOPA In Advance (AIA), do you have a list of where Protected Health Information (PHI) is?
16. Please indicate use of name / facility / location
17. Please type your name / facility / location for addition to the list of providers.
From AOPA in Advance, Volume 6, Number 9, April 30, 2002
Copyright 2002 American Orthotic & Prosthetic Association. 17 United States Code, The Copyright Act, prohibits reproduction of this copyrighted material without permission of the owner.
…Applicable to all protected health information (PHI) that is electronically maintained or transmitted, the proposed security rules require you to assess potential risks and vulnerabilities to PHI in your possession and to develop, implement and maintain appropriate security measures. Electronic transmissions include transactions using magnetic tapes, disks and compact discs and transactions over the Internet or through private internal computer networks. The proposed rules do not apply to telephones or fax machines, but the final rules might.
AOPA recommends that you conduct this “security gap analysis” now to pinpoint areas where you might need to increase the security of PHI.
First, list physical assets that you use for storage or transmittal of patient information, such as computers, PDA devices and laptops.
Second, note whether or not there are ways to secure patient data stored electronically, such as through password protections. Determine if there are methods in place to back up computer data, recover lost data and operate your computers in the event of a fire, vandalism or system failure.
Third, evaluate your employee training on securing electronic patient information, as well as your office policies and procedures, such as ensuring former employees cannot gain access to your computer files. List your vulnerabilities in these areas….
Special thanks to all who have participated. Please include your name, facility, and location, with your responses in the survey question #17. If you wish to remain anonymous on the published results, please indicate so in your reply to question #16.
Thank you for participating in this survey!
Additional thanks go out to:
John Michael, CPO, for technical and advisory support; and,
Malissa Bennett, AOPA Director of Membership and Communications, for copyright permission.
To view survey website privacy statements go to:
<URL Redacted>
Citation
“5 MINUTE HIPAA RESEARCH SURVEY,” Digital Resource Foundation for Orthotics and Prosthetics, accessed November 2, 2024, https://library.drfop.org/items/show/219373.