X
GO
Overview

Through the data validation process, valuable information is gained that can then be used to improve performance around patient care or quality of care metrics.  Improving quality performance may take the form of improving data collection processes, better identifying patients who need additional interventions, or decreasing missed opportunities to provide patients appropriate interventions, among other possibilities. This section includes guidance on leveraging Health IT to improve quality performance including change packages for recommended approaches related to various quality of care measures.

Improving Performance Resources
Limited Waiver of HIPAA Sanctions and Penalties During Declared Emergency
Office for Civil Rights
/ Categories: Privacy and Security, HIPAA

Limited Waiver of HIPAA Sanctions and Penalties During Declared Emergency

Guidance from the Office for Civil Rights

From the OCR: Severe disasters – such as Hurricane Harvey – impose additional challenges on health care providers. Often questions arise about the ability of entities covered by the HIPAA regulations to share information, including with friends and family, public health officials, and emergency personnel. As summarized in more detail below, the HIPAA Privacy Rule allows patient information to be shared to assist in disaster relief efforts, and to assist patients in receiving the care they need. In addition, while the HIPAA Privacy Rule is not suspended during a public health or other emergency, the Secretary of HHS may waive certain provisions of the Privacy Rule under the Project Bioshield Act of 2004 (PL 108-276) and section 1135(b)(7) of the Social Security Act.

The Secretary of HHS has declared a public health emergency in Texas and Louisiana following the President’s declaration that a disaster exists in the States of Texas and Louisiana. Under these circumstances, the Secretary has exercised the authority to waive sanctions and penalties against a covered hospital that does not comply with the following provisions of the HIPAA Privacy Rule:

  • the requirements to obtain a patient's agreement to speak with family members or friends involved in the patient’s care. See 45 CFR 164.510(b).
  • the requirement to honor a request to opt out of the facility directory. See 45 CFR 164.510(a).
  • the requirement to distribute a notice of privacy practices. See 45 CFR 164.520.
  • the patient's right to request privacy restrictions. See 45 CFR 164.522(a).
  • the patient's right to request confidential communications. See 45 CFR 164.522(b).

 

Download the document or visit the link below to find out further details ->

Documents to download

Print
38107
Intended AudienceHealth IT Leadership, CIO, Health Center Staff

Acknowledgements

This resource collection was compiled by the HITEQ Center staff with guidance from HITEQ Advisory Committee members and collaborators of the HITEQ Center.

Need Assistance?
Would you like more assistance regarding Health IT Enabled QI strategies or support in using any of the included resource sets?

  Request Support

 

Upcoming Events
The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More >