2,654
edits
Retention and Destruction/Disposal of Private and Confidential Information: Difference between revisions
Jump to navigation
Jump to search
Retention and Destruction/Disposal of Private and Confidential Information (view source)
Revision as of 10:35, October 28, 2022
, October 28, 2022no edit summary
No edit summary |
No edit summary |
||
| (2 intermediate revisions by the same user not shown) | |||
| Line 30: | Line 30: | ||
Policy No.: '''6056'''<br /> | Policy No.: '''6056'''<br /> | ||
Effective Date: '''03/17/03'''<br /> | Effective Date: '''03/17/03'''<br /> | ||
Revised Date: ''' | Revised Date: '''10/28/22 draft''' <br /> | ||
Reviewed Date: ''' ''' | Reviewed Date: ''' ''' | ||
<br /><br /> | <br /><br /> | ||
| Line 106: | Line 106: | ||
==Definitions== | ==Definitions== | ||
===Affiliated Covered Entity (ACE)=== | ===Affiliated Covered Entity (ACE)=== | ||
Legally separate covered entities that designate themselves as a single covered entity for the purpose of HIPAA Compliance. Current ACE members are: The Nebraska Medical Center, UNMC Physicians, UNMC, University Dental Associates, Bellevue Medical Center and Nebraska Pediatric Practice, Inc. ACE membership may change from time to time. The Notice of Privacy Practices lists current ACE members. Access and amendment rights apply to designated record sets throughout the ACE. | Legally separate covered entities that are affiliated and designate themselves as a single covered entity for the purpose of HIPAA Compliance. Current ACE members are: The Nebraska Medical Center, UNMC Physicians, UNMC, University Dental Associates, Bellevue Medical Center and Nebraska Pediatric Practice, Inc. d/b/a Children’s Specialty Physicians. ACE membership may change from time to time. The Notice of Privacy Practices lists current ACE members. Access and amendment rights apply to designated record sets throughout the ACE. | ||
===Business Associate=== | ===Business Associate=== | ||
A third party | A third party who performs services on behalf of Nebraska Medicine/UNMC that involve the creation, receipt, maintenance or transmission of PHI. Some examples of such services include claims processing, data analysis, data processing, practice management, utilization review, quality assurance, patient safety activities, billing, benefit management and repricing. | ||
===Confidential Information=== | ===Confidential Information=== | ||
Protected Health Information and proprietary information, including contracts, business plans and practices, financial information, employee records and meeting minutes. | |||
===Protected Health Information (PHI)=== | |||
Individually identifiable health information including demographic information, collected from an Individual, whether oral or recorded in any medium, that: | |||
*is created or received by UNMC/ACE; and | |||
*relates to the past, present or future physical or mental health or condition of an Individual; the provision of health care to an Individual; or the past, present or future payment for the provision of health care to an Individual and identifies the Individual or with respect to which there is a reasonable basis to believe the information can be used to identify the Individual. | |||
PHI includes genetic information, which includes information about the following items (and excludes information about an Individual’s sex or age): | |||
*an Individual’s genetic tests; | |||
*the genetic tests of an Individual’s family members; or | |||
*the manifestation of a disease or disorder in such Individual’s family members (i.e., family medical history); or | |||
*any request for, or receipt of, genetic services (e.g., genetic test, genetic counseling, genetic education), or participation in clinical research which includes genetic services by the Individual or any family member of the Individual. | |||
PHI excludes: | |||
*individually identifiable health information of a person who has been deceased for more than fifty (50) years. | |||
*education records covered by the Family Educational Rights and Privacy Act (FERPA); and | |||
*employment records held by UNMC in its role as employer. | |||
==Additional Information== | ==Additional Information== | ||
*Contact the [mailto:infosecurity@unmc.edu Information Security Office] | *Contact the [mailto:infosecurity@unmc.edu Information Security Office] | ||