Gift Guide

Practical Guide to HIPAA Privacy and Security Compliance

Hardcover (Print)
Buy New
Buy New from
Used and New from Other Sellers
Used and New from Other Sellers
from $24.35
Usually ships in 1-2 business days
(Save 81%)
Other sellers (Hardcover)
  • All (2) from $24.35   
  • Used (2) from $24.35   


HIPAA is very complex. So are the privacy and security initiatives that must occur to reach and maintain HIPAA compliance. Organizations need a quick, concise reference in order to meet HIPAA requirements and maintain ongoing compliance.

The Practical Guide to HIPAA Privacy and Security Compliance is a one-stop resource for real-world HIPAA privacy and security advice that you can immediately apply to your organization's unique situation. This how-to reference explains what HIPAA is about, what it requires, and what you can do to achieve and maintain compliance. It describes the HIPAA Privacy and Security Rules and compliance tasks in easy-to-understand language, focusing not on technical jargon, but on what you need to do to meet requirements.

IT managers, CIOs, consultants, security professionals, office managers, physicians and anyone else preparing an organization for HIPAA will receive expert guidance on requirements and other commonly-discussed topics. Everyone will be affected by HIPAA; this book enables you to determine how HIPAA will impact you regardless of whether your business or organization is a HIPAA Covered Entity.

Read More Show Less

Editorial Reviews

Doody's Review Service
Reviewer: Nicholas Greco IV, MS, BCETS, CATSM (Columbia College of Missouri)
Description: This book provides an excellent and thorough presentation of the often confusing and difficult task of understanding and implementing HIPAA. It is through this comprehensive and easy-to-read format that the reader comes away with an ample amount of knowledge and confidence to implement HIPAA.
Purpose: The authors' main purpose is to provide guidance on HIPAA requirements and the more commonly discussed topics. Overall, this book is designed for anyone who needs to configure either their organization or someone else's for the HIPAA laws. The book meets the authors' objectives and gives readers a much-needed resource.
Audience: The beauty of this book is that it crosses over all health-related disciplines as well as the administrative and ancillary staff behind the disciplines (e.g. attorneys, consultants, office managers, hospital administrators, etc.). Any profession that is a covered entity under HIPAA will need this book. The authors are well-versed and well-trained in this area.
Features: The book is comprehensive and is broken down into six main areas that include: HIPAA Essentials, HIPAA Privacy Rule, HIPAA Security Rule, Covered Entity Issues, HIPAA Technology Considerations, and Managing Ongoing HIPAA Compliance. The standout highlights include a terrific glossary, chapter quizzes, case studies, sample documents, HIPAA resources, and a helpful index.
Assessment: This is a much-needed resource for those in the healthcare field, and one from which all can gain the knowledge and the clear, unbiased understanding that they so desperately need. Clearly a true resource for individual and group learning that can be referenced time and again. Strongly recommended!

4 Stars! from Doody
Read More Show Less

Product Details

  • ISBN-13: 9780849319532
  • Publisher: Taylor & Francis
  • Publication date: 11/24/2003
  • Edition description: Older Edition
  • Pages: 496
  • Sales rank: 1,146,588
  • Product dimensions: 6.20 (w) x 9.10 (h) x 1.30 (d)

Table of Contents

Introduction to HIPAA
How HIPAA Came to Be
What HIPAA Covers
Organizations that Must Comply with HIPAA
Compliance Deadlines
HIPAA Penalties and Enforcement
Insight into the Electronic Transactions and Code Sets Rule
Chapter 1: Practical Checklist
Preparing for the HIPAA Changes
Managing Change
Creating the Mindset
It's Up to You
Chapter 2: Practical Checklist
HIPAA Cost Considerations
Privacy Implementation Costs
Privacy Ongoing Maintenance Costs
Costs Related to Providing Access to PHI
Privacy Officer Costs
Security Implementation Costs
Security Ongoing Maintenance Costs
Security Officer Costs
Chapter 3: Practical Checklist
The Relationship Between Security and Privacy
Privacy Rule and Security Rule Overlaps
Chapter 4: Practical Checklist
Section 1 Quiz
HIPAA Privacy Rule Requirements Overview
Uses and Disclosures
Incidental Uses and Disclosures
Minimum Necessary
Business Associates
Notice of Privacy Practices for PHI
Individual Rights to Request Privacy Protection for PHI
Individual Access to PHI
Amendment of PHI
Accounting Disclosures of PHI
PHI Restrictions Requests
Administrative Requirements
Personal Representatives
Transition Provisions
Compliance Dates and Penalties
Looking Forward
Performing a Privacy Rule Gap Analysis and Risk Analysis
Gap Analysis and Risk Analysis
Chapter 6: Practical Checklist
Writing Effective Privacy Policies
Notice of Privacy Practices
Example NPP
Organizational Privacy Policies
Chapter 7: Practical Checklist
State Preemption
What is Contrary?
Preemption Criteria
Exceptions to Preemption
Preemption Analysis
Chapter 8: Practical Checklist
Crafting a Privacy Implementation Plan
Some Points to Keep in Mind
Chapter 9: Practical Checklist
Privacy Rule Compliance Checklist
Security Rule Requirements Overview
Introduction to the Security Rule
What's New in the Final Security Rule
General Rules for Security Rule Compliance
Required versus Addressable
Insight Into the Security Rule
Other Organizational Requirements
Reasons to Get Started on Security Rule Initiatives
Chapter 11: Practical Checklist
Performing a Security Rule Risk Analysis
Risk Analysis Requirements According to HIPAA
Risk Analysis Essentials
Stepping Through the Process
Calculating Risk
Managing Risks Going Forward
Chapter 12: Practical Checklist
Writing Effective Information Security Policies
Introduction to Security Policies
Critical Elements of Security Policies
Sample Security Policy Framework
Security Policies You May Need for HIPAA Security Rule Compliance
Managing Your Security Policies
Chapter 13: Practical Checklist
Crafting a Security Implementation Plan
Some Points to Keep In Mind
Chapter 14: Practical Checklist
Security Rule Compliance Checklist
Healthcare Provider Issues
Privacy Notices
Fees for Record Review
Mitigation Measures
Fax Use
Sheets
Patient Charts
Business Associates
Chapter 16: Practical Checklist
Healthcare Clearinghouse Issues
Financial Institutions
Chapter 17: Practical Checklist
Health Plan Issues
What is a Health Plan?
What is a Small Health Plan?
Health Plan Requirements
Marketing Issues
Notice of Privacy Practices
Types of Insurance Plans Excluded from HIPAA
Government and Law Enforcement
Chapter 18: Practical Checklist
Employer Issues
"Small" and "Large" Employers
Health Benefits
Enforcement and Penalties
Organizational Requirements
Health Information
Medical Surveillance
Workers' Compensation
Chapter 19: Practical Checklist
Business Associate Issues
Is Your Organization a Business Associate?
Business Associate Requirements
What You Can Expect to See or Hear from Covered Entities
Issues to Consider
Moving Forward
Chapter 20: Practical Checklist
Building a HIPAA Compliant Technology Infrastructure
Areas of Technology to Focus On
Looking Deeper into Specific Technologies
Mobile Computing Concerns
Chapter 21: Practical Checklist
Crafting Security Incident Procedures and Contingency Plans
Handling Security Incidents
Security Incident Procedure Essentials
Basics of Contingency Planning
Moving Forward
Chapter 22: Practical Checklist
Outsourcing Information Technology Services
Reasons to Consider Outsourcing
What Functions to Outsource
What to Look for in Outsourcing Firms
Common Outsourcing Mistakes
Chapter 23: Practical Checklist
HIPAA Training, Education, and Awareness
Creating an Effective Awareness Program
Identify Awareness and Training Groups
Training Design and Development
Awareness Options
Document Training and Awareness Activities
Get Support
Measure Effectiveness
Chapter 24: Practical Checklist
Performing Ongoing HIPAA Compliance Reviews and Audits
Privacy Issues
Security Issues
Making Audits Work
Chapter 25: Practical Checklist
HIPAA Case Studies: Experiences Shared
Sample Documents
HIPAA Resources
Answers to Chapter Quizzes
HIPAA Glossary
Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously
Sort by: Showing 1 Customer Reviews
  • Anonymous

    Posted May 19, 2004

    A must have for all Information Security Professionals!

    As the title states, the book provides a very practical guide to HIPAA Privacy and Security. I used this book as a key reference to understanding the HIPAA privacy and security rule and in building a comprehensive roadmap (project plan) for compliance -- nicely done! I strongly recommend the book to all Security Professionals that are working to build an environment based on standards of good practice -- including HIPAA compliance.

    1 out of 1 people found this review helpful.

    Was this review helpful? Yes  No   Report this review
Sort by: Showing 1 Customer Reviews

If you find inappropriate content, please report it to Barnes & Noble
Why is this product inappropriate?
Comments (optional)