Stedman's Guide to the HIPAA Privacy & Security Rules / Edition 2

Paperback (Print)
Buy Used
Buy Used from
(Save 29%)
Item is in good condition but packaging may have signs of shelf wear/aging or torn packaging.
Condition: Used – Good details
Used and New from Other Sellers
Used and New from Other Sellers
from $3.01
Usually ships in 1-2 business days
(Save 94%)
Other sellers (Paperback)
  • All (14) from $3.01   
  • New (7) from $3.01   
  • Used (7) from $8.99   


Addressing the needs of all health information management  professionals, from medical transcriptionists, coders, and billers to medical office administrators and managers, Stedman's Guide to the HIPAA Privacy & Security Rules has been completely revised to include not only the Security Rule, but also the new HITECH Act passed in 2009. Writing in a lively, engaging style, Kathy Nicholls cuts through the daunting legalese and gets right to the core of each relevant piece of legislation, clearly and concisely explaining the meaning and purpose of the law, while also providing clean, easy-to-follow checklists for compliance. Helpful hints and key items are pulled out and highlighted for ease of studying and retention, and real-world stories anchor the legal information in the real world of healthcare information, demonstrating both the necessity and the application of the law, and enlivening the material. An FAQ section at the end is a handy reference as students move into the professional world, and as professionals need a refresher on key questions. The online resources include dozens of sample forms that can be modified to suit the user's needs. This concise, clear guide explains even the most complicated of the HIPAA legislation in terms that are easy to understand and relevant to students and professionals responsible for safeguarding the privacy and integrity of healthcare information.
Read More Show Less

Product Details

  • ISBN-13: 9781608310531
  • Publisher: Lippincott Williams & Wilkins
  • Publication date: 2/1/2011
  • Edition description: Second
  • Edition number: 2
  • Pages: 256
  • Sales rank: 1,140,496
  • Product dimensions: 6.00 (w) x 8.90 (h) x 0.30 (d)

Table of Contents

Chapter 1 Introduction to HIPAA and the Privacy and Security Rules 1

Introduction 2

What Is HIPAA? 3

The Privacy and Security Rules 7

Terminology 8

General Terminology in Healthcare 13

Significant Points 14

Compliance Deadlines 16

Chapter 2 The Privacy and Security Rules and Healthcare Documentation 21

Introduction 22

What Does the Privacy Rule Really Do? 23

What Does the Security Rule Really Do? 23

Privacy for Protected Health Information Is the Goal! 24

What Constitutes Protected Health Information? 25

Who Must Comply and How Does Compliance Impact the Work Setting? 25

State Laws 26

Application of the Privacy Rule in Healthcare Documentation 26

Policies and Procedures 27

Training 27

Use and Disclosure 28

Minimally Necessary Information 29

Access Control 29

De-identified Information 30

Confidentiality Agreements 32

Computer Security 32

Work Areas 33

Transfer of Data 33

Destruction of Hard Copy protected Health Information 34

Use of the Fax 34

Use of E-Mail 36

Disaster Recovery 37

Offsite Workers 37

Storage and Retention 38

Audit Trails 39

Termination Procedures 39

Recycling of Computers 40

Access to PHI for Educational Purposes 40

Vendors 41

Breaches 42

Complaints 43

Penalties 44

Enforcement 46

HIPAA for the Independent Contractor 46

Are You a Business Associate? 47

General Requirements 47

Chapter 3 A Blueprint for Compliance with the Privacy Rule 57

Introduction 58

Where Do I Start? 58

Gap Analysis Checklist 59

Vendor Compliance Checklist 63

Training Checklist 63

What Policies Do I Need? 65

Privacy Officer Policy 66

Policy for the Use of Protected Health Information 67

Policy for the Use of Protected Health Information in Quality Assurance and Educational Programs 67

Training Policy 69

Computer Security Policy 69

Policy for Confidentiality Agreements 73

Policy for Work Area Arrangements 74

Access Policy for Digital Dictation Systems 75

Policy for the Use of Hard Copy Protected Health Information 76

Policy for Use of the Fax Machine 77

E-Mail Policy 78

Disaster Recovery Policy 80

Policy for Offsite Workers 81

Termination Policy 84

Breaches and Sanctions Policies 86

Complaint Policy 87

Vendor Policy 88

Policies for Business Associates 88

Sample Contracts and Agreements 90

Policy for Subcontractors 99

Policy for Offshore Contractors 99

A Word About Disclosures 100

What About Indemnification? 100

Chapter 4 The Security Rule and Healthcare Documentation 109

Introduction 110

What Does the Security Rule Really Do? 110

What Constitutes Protected Health Information? 111

Who Must Comply and How Does Compliance Impact the Work Setting? 112

State Laws 112

Application of the Security Rule 113

Administrative Safeguards 113

Physical Safeguards 121

Technical Safeguards 125

Organizational Requirements 127

Policies and Procedures and Documentation Requirements 127

Penalties 128

Enforcement 129

HIPAA for the Independent Contractor 130

Are You a Business Associate? 130

Chapter 5 A Blueprint for Compliance with the Security Rule 137

Introduction 138

Administrative Safeguards 139

Security Management Process 139

Assigned Security Responsibility 145

Workforce Security 146

Information Access Management 148

Security Awareness and Training 150

Security Incidents 152

Contingency Plans 155

Evaluation 157

Business Associate Contracts and Other Arrangements 158

Physical Safeguards 162

Facility Access Control 162

Workstation Use 165

Workstation Security 166

Device and Media Controls 167

Technical Safeguards 169

Access Control 170

Audit Controls 172

Integrity 172

Person or Entity Authentication 173

Transmission Security 174

Organizational Requirements 175

Business Associate Contracts and Other Arrangements 175

Requirements for Group Health Plans 176

Policies and Procedures and Documentation Requirements 177

Policies and Procedures 177

Documentation 178

A Final Note on Security 179

Chapter 6 Frequently Asked Questions 185

Appendix A Industry Resources 199

Appendix B AAMT Paper on Special Considerations for Offsite Medical Transcriptionists 205

Appendix C Abbreviations and Acronyms 211

Glossary 213

Index 219

Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)