1 00:00:01,750 --> 00:00:04,141 Hi everybody, welcome to Module 9. 2 00:00:04,141 --> 00:00:06,990 Documentation of a patient's history, 3 00:00:06,990 --> 00:00:09,780 their symptoms, diagnosis, treatment, 4 00:00:09,780 --> 00:00:12,390 it's obviously essential to achieving 5 00:00:12,390 --> 00:00:15,570 the highest possible quality of care. 6 00:00:15,570 --> 00:00:18,840 This module reviews a broad range of issues 7 00:00:18,840 --> 00:00:21,723 involving management of that information. 8 00:00:23,580 --> 00:00:27,420 Patient records, medical records are important 9 00:00:27,420 --> 00:00:28,590 for a lot of reasons, 10 00:00:28,590 --> 00:00:30,894 mostly, they provide a comprehensive view 11 00:00:30,894 --> 00:00:33,810 of the patient's medical history, 12 00:00:33,810 --> 00:00:36,952 past diagnoses, treatments, test results. 13 00:00:36,952 --> 00:00:40,590 This information is really critical for healthcare providers 14 00:00:40,590 --> 00:00:43,380 to make informed decisions about a patient's care 15 00:00:43,380 --> 00:00:45,120 and ensure a continuity of care 16 00:00:45,120 --> 00:00:48,344 between providers and healthcare settings. 17 00:00:48,344 --> 00:00:51,210 Helps our goals of providing quality care 18 00:00:51,210 --> 00:00:52,830 by keeping detailed information 19 00:00:52,830 --> 00:00:54,780 about a patient's health status, 20 00:00:54,780 --> 00:00:58,317 about their medical history, about current conditions. 21 00:00:58,317 --> 00:01:00,180 And this information helps providers 22 00:01:00,180 --> 00:01:02,790 make more accurate diagnoses, 23 00:01:02,790 --> 00:01:04,890 helps them choose appropriate treatments, 24 00:01:04,890 --> 00:01:08,875 and monitor the effectiveness of interventions. 25 00:01:08,875 --> 00:01:13,538 But patient records are also subject to various legal 26 00:01:13,538 --> 00:01:15,918 and regulatory requirements. 27 00:01:15,918 --> 00:01:19,500 There's privacy and security laws 28 00:01:19,500 --> 00:01:21,633 and healthcare reporting requirements. 29 00:01:22,530 --> 00:01:25,798 Accurate and complete patient records are essential 30 00:01:25,798 --> 00:01:28,709 for compliance with these requirements 31 00:01:28,709 --> 00:01:32,130 and help protect healthcare providers organizations 32 00:01:32,130 --> 00:01:35,790 from legal and financial liability. 33 00:01:35,790 --> 00:01:37,860 So those of you doing research, 34 00:01:37,860 --> 00:01:40,470 and I believe a couple of you are, 35 00:01:40,470 --> 00:01:42,060 also understand the patient records 36 00:01:42,060 --> 00:01:47,060 are a valuable source for data, for public health 37 00:01:47,250 --> 00:01:49,752 and for research and education. 38 00:01:49,752 --> 00:01:53,490 By analyzing patient records 39 00:01:53,490 --> 00:01:55,800 we can identify patterns and trends 40 00:01:55,800 --> 00:01:58,379 in healthcare practices and outcomes. 41 00:01:58,379 --> 00:02:01,560 Can use this information to improve quality 42 00:02:01,560 --> 00:02:03,723 and effectiveness in healthcare. 43 00:02:05,250 --> 00:02:06,720 And patient records can also be used 44 00:02:06,720 --> 00:02:09,367 to engage patients in their own healthcare. 45 00:02:09,367 --> 00:02:13,650 By providing patients with access to their medical records, 46 00:02:13,650 --> 00:02:17,430 they can better understand their own health status, 47 00:02:17,430 --> 00:02:19,320 track their progress, 48 00:02:19,320 --> 00:02:23,760 and participate in that shared decision making process 49 00:02:23,760 --> 00:02:26,360 with their healthcare providers and healthcare team. 50 00:02:27,510 --> 00:02:30,360 Along with the importance of healthcare records 51 00:02:30,360 --> 00:02:32,530 comes some dangers. 52 00:02:32,530 --> 00:02:34,830 You know, what happens if we lose control 53 00:02:34,830 --> 00:02:37,230 of a patient's healthcare records? 54 00:02:37,230 --> 00:02:39,003 Who should we share those with? 55 00:02:42,510 --> 00:02:45,430 Historically, these were all questions of privacy law 56 00:02:46,524 --> 00:02:50,373 and you could see quite a bit of state by state variation. 57 00:02:51,360 --> 00:02:53,520 Then we got the Health Insurance Portability 58 00:02:53,520 --> 00:02:55,770 and Accountability Act, or HIPAA, 59 00:02:55,770 --> 00:02:59,571 as you've probably all heard of, in 1996, 60 00:02:59,571 --> 00:03:03,180 which really changed everything in an attempt 61 00:03:03,180 --> 00:03:08,070 to try to create consistency across the nation. 62 00:03:08,070 --> 00:03:09,990 HIPAA has two main components 63 00:03:09,990 --> 00:03:13,953 and you'll see some information about HIPAA this week. 64 00:03:16,110 --> 00:03:17,730 One part is the Privacy Rule 65 00:03:17,730 --> 00:03:20,430 and the other part is the Security Rule. 66 00:03:20,430 --> 00:03:23,460 The Privacy Rule established kind of a national standard 67 00:03:23,460 --> 00:03:25,080 for protecting the privacy and security 68 00:03:25,080 --> 00:03:28,863 of individually identifiable health information. 69 00:03:30,300 --> 00:03:34,552 That's called Protected Health Information. 70 00:03:34,552 --> 00:03:37,040 This rule sets limits on the use 71 00:03:37,040 --> 00:03:39,900 and disclosure of Public Health Information 72 00:03:39,900 --> 00:03:44,360 and requires healthcare providers and other covered entities 73 00:03:44,360 --> 00:03:49,293 to obtain patient consent before disclosing anything in PHI. 74 00:03:50,310 --> 00:03:53,550 There are limited circumstances there are accepted, 75 00:03:53,550 --> 00:03:58,083 such as treatment, payment, or operational. 76 00:03:59,010 --> 00:04:01,530 The rule also requires covered entities 77 00:04:01,530 --> 00:04:05,640 to provide patients with notices of their privacy rights 78 00:04:05,640 --> 00:04:08,193 and the entity's privacy practices. 79 00:04:09,514 --> 00:04:13,890 They have the Security Rule established national standards 80 00:04:13,890 --> 00:04:18,127 for protecting electronic PHI, 81 00:04:21,270 --> 00:04:23,190 how it's received, how it's transmitted, 82 00:04:23,190 --> 00:04:27,390 how it's maintained by healthcare entities. 83 00:04:27,390 --> 00:04:31,770 That rule requires entities to implement reasonable 84 00:04:31,770 --> 00:04:34,530 and appropriate administrative, physical, 85 00:04:34,530 --> 00:04:38,640 technical safeguards to the confidentiality, integrity 86 00:04:38,640 --> 00:04:42,513 and availability of that electronic record. 87 00:04:45,390 --> 00:04:48,150 HIPAA applies to covered entities, 88 00:04:48,150 --> 00:04:49,890 so you probably have heard of that, 89 00:04:49,890 --> 00:04:51,930 which includes healthcare providers, 90 00:04:51,930 --> 00:04:54,820 health plans, healthcare clearinghouses 91 00:04:55,920 --> 00:04:59,667 that transmit that health information electronically. 92 00:04:59,667 --> 00:05:02,860 Business associates is another term you will see 93 00:05:03,752 --> 00:05:06,570 such as third party billing companies 94 00:05:06,570 --> 00:05:09,900 or medical transcriptionist. 95 00:05:09,900 --> 00:05:12,540 Those entities, or people, 96 00:05:12,540 --> 00:05:15,398 who perform functions on behalf of a covered entity 97 00:05:15,398 --> 00:05:18,330 that involve the use or disclosure 98 00:05:18,330 --> 00:05:20,900 of that public health information, 99 00:05:20,900 --> 00:05:23,640 which is subject to HIPAA. 100 00:05:23,640 --> 00:05:24,930 HIPAA violations can result 101 00:05:24,930 --> 00:05:29,280 in significant financial penalties, reputational damage, 102 00:05:29,280 --> 00:05:34,280 and it's important to follow the rules when you are able. 103 00:05:34,950 --> 00:05:36,510 So this week we are going to look at 104 00:05:36,510 --> 00:05:40,350 how privacy in healthcare has become a complex issue. 105 00:05:40,350 --> 00:05:43,770 And we'll see a couple of examples of what happens 106 00:05:43,770 --> 00:05:46,020 when things go pretty wrong. 107 00:05:46,020 --> 00:05:49,320 So I will see you in the discussion board 108 00:05:49,320 --> 00:05:52,353 and let's talk a little bit about healthcare privacy.