HIPAA is vast and complex, and is one of the most difficult regulations to understand. AHIMA and Teach Privacy have collaborated to produce a new, three-part online course series that makes HIPAA easy to comprehend. The course series points out HIPAA’s key components, shows how the various parts of the regulation work together, explains the regulation in easy to comprehend terms, and discusses how HIPAA applies to various situations.
Created by leading privacy expert, Professor Daniel Solove, with the aid of Paul Frisch, a seasoned regulator and consultant, these three courses bring HIPAA to life! Designed by subject-matter experts with teaching experience, our courses are highly effective, interactive, visually stimulating, and filled with concrete examples and scenarios.
AHIMA Online Education allows you to develop your professional knowledge on your terms. Each course in the series has an access period of eight weeks to allow you to complete the course at your own pace, offers one CEU, and requires no course pre-requisite or materials other than the course itself:
View Course Demo
HIPAA Privacy: The Pillars of a Privacy Program
HIPAA Privacy: Rights and Responsibilities
HIPAA Security: Safeguarding Personal Health Information
Corporate pricing is available for groups of 6 or more. Contact firstname.lastname@example.org for additional information.
Courses created by:
TeachPrivacy produces enterprise-wide HIPAA privacy and security training programs.
This first course of this series, HIPAA Privacy: The Pillars of a Privacy Program, provides an introduction to the HIPAA Privacy Rule in an easy-to-follow, engaging manner, with an in-depth focus on the scope and enforcement of HIPAA and its internal governance requirements. Ideal both as an introductory course or a refresher, the learner will gain a solid foundational understanding of the Privacy Rule.
The course begins with a bird’s eye overview of HIPAA, including its history and relationship to state health privacy law. It also discusses the types of entities covered by HIPAA, the definition of protected health information (PHI), de-identification of PHI, HIPAA enforcement, the pillars of a privacy program that HIPAA requires, how HIPAA defines business associates, and the provisions that must be included in business associate agreements.
This course is perfect for healthcare personnel needing an introduction and roadmap to the HIPAA Privacy Rule.
View Course Demo
The second course of this series, HIPAA Privacy: Rights and Responsibilities, discusses the rights patients have regarding their PHI and responsibilities of organizations required by the HIPAA Privacy Rule regarding the use and disclosure of PHI. Ideal both as an introductory course or a refresher, the learner will gain a solid foundation and understanding of the Privacy Rule.
This course begins with the general requirement that PHI be kept confidential. It then covers the minimum necessary rule, HIPAA’s rules regarding disclosure of PHI, accounting for disclosures, authorization, patient rights, notice of privacy practices, access to records under HIPAA and state law, marketing and sale of PHI, fundraising, and psychotherapy notes.
The third course in this series, HIPAA Security: Safeguarding PHI, provides an introduction to the HIPAA Security Rule. Ideal both as an introductory course or a refresher, the learner will gain a clear understanding of the requirements mandated for the protection of electronic PHI (ePHI).
The course begins with a discussion of the scope of the Security Rule’s coverage and its basic structure in terms of safeguards, standards, and implementation specifications. The course also discusses the HIPAA Privacy Rule’s general safeguards of all PHI. The course then focuses on the HIPAA Security Rule’s administrative, physical, and technical safeguards. The various implementation specifications, the organizational requirements, and policies and procedures and documentation requirements are also covered. Finally, the course covers HIPAA’s requirements regarding handling and reporting of data breaches.
Daniel J. Solove is the John Marshall Harlan Research Professor of Law at the George Washington University Law School, a Senior Policy Advisor to the law firm Hogan Lovells, and the President and CEO of TeachPrivacy, a privacy and security training company He was chosen by the American Law Institute (ALI) to serve as co-reporter on the ALI’s Restatement Third: Information Privacy Principles.
One of the world’s leading experts in privacy law, Solove is the author of numerous books, including Nothing to Hide: The False Tradeoff Between Privacy and Security (Yale 2011), Understanding Privacy (Harvard 2008), The Future of Reputation: Gossip and Rumor in the Information Age (Yale 2007) (winner of the 2007 McGannon Award), and The Digital Person: Technology and Privacy in the Information Age (NYU 2004).
Professor Solove is also the author of the textbook, Information Privacy Law with Aspen Publishing Co. now in its fifth edition, with co-author Paul Schwartz. This 1200-page textbook is the most widely-used casebook about information privacy law in the world. He is also the author of several other textbooks, including Privacy and the Media (1st edition, Aspen Publishing Co. 2009) and Privacy, Information, and Technology (2nd edition, Aspen Publishing Co. 2009). Additionally, he is the author of the treatise, Privacy Law Fundamentals (IAPP 2nd edition, 2013) (with Paul Schwartz).
Professor has written more than 50 law review articles in the Harvard Law Review, Yale Law Journal, Stanford Law Review, and Columbia Law Review, among others. He has served as a consultant or expert witness in a number of high-profile privacy cases involving Fortune 500 companies and celebrities. His work has been cited in more than 1800 publications, excerpted in many casebooks, and discussed in many judicial opinions, including those by the U.S. Supreme Court, federal courts of appeal, district courts, and state supreme courts. Professor Solove blogs at LinkedIn as one of its “thought leaders,” and he has more than 850,000 followers.
Paul Frisch served as the General Counsel to the Oregon Medical Association for almost 25 years. For three years he served as Compliance Services Director at a Portland-based company, where he counseled covered entity and business associate clients nationally on issues related to compliance with HIPAA Privacy and Security Rules, PCI DSS as well as other consumer protection regulations. Paul continues to serve clients nationally by providing HIPAA compliance strategic planning, breach investigation, risk analysis and compliance audits as well as virtual compliance officer services. Paul has been an adjunct professor of Health Law and Bioethics at the University of Oregon School of Law for 11 years. In addition, he recently joined the adjunct faculty at Willamette University College of Law where he teaches the Health Care law survey and liability courses. He also teaches in the Accelerated Online MBA in Health Care Management program at Marylhurst University.