Course Name:  Health Care Privacy and Security 
Course Prefix: HIM
Course Number: 2250
             Submitted by (Name & E-Mail):  Patricia Shaw, pshaw@weber.edu

Current Date:  11/2/2009
College: Health Professions
Department:   Health Admin Services                              
From Term: Fall  2010 

Substantive

new 

Current Course Subject N/A
Current Course Number

New/Revised Course Information:

Subject:  HIM            

Course Number: 2250

 Check all that apply:
    This is for courses already approved for gen ed.
    Use a different form for proposing a new gen ed designation.
DV  SI  CA  HU  LS  PS  SS 
EN  AI  QL  TA  TB  TC  TD  TE

Course Title: Health Care Privacy and Security

Abbreviated Course Title:

Course Type:  LEL

Credit Hours:  3  or if variable hours:    to

Contact Hours: Lecture 2  Lab 1   Other

Repeat Information:  Limit 1   Max Hrs 0 

Grading Mode:  standard

This course is/will be: a required course in a major program
a required course in a minor program
a required course in a 1- or 2- year program
elective

Prerequisites/Co-requisites:

Course description (exactly as it will appear in the catalog, including prerequisites):

The HIPAA privacy and security law, institutional review boards and human subjects research, development of policies and procedures for privacy and security, and release of information are discussed.

Justification: A dedicated course is needed to focus solely on the Health Insurance Portability and Accountability Act (HIPAA) of 1996. In an existing course, HIM 2200 we had combined healthcare related statistical content in with the privacy and security information for the past several years and have found that the two subjects just do not blend together as well as they once did. In addition, our external program accreditating organization, the Commission on Accreditation of Health Informatics and Information Management Education (CAHIIM) has made this same observation and asked us to separate the two content areas. The statistical component will be move into an existing course HIM 2500 Healthcare Databases and Security as it fits in with the data elements discussed at the beginning of this course.

INFORMATION PAGE
for substantive proposals only

1. Did this course receive unanimous approval within the Department?

true

If not, what are the major concerns raised by the opponents?

2. If this is a new course proposal, could you achieve the desired results by revising an existing course within your department or by requiring an existing course in another department?

No, we have tried this for several years now and it is just not working well.

3. How will the proposed course differ from similar offerings by other departments? Comment on any subject overlap between this course and topics generally taught by other departments, even if no similar courses are currently offered by the other departments. Explain any effects that this proposal will have on program requirements or enrollments in other department. Please forward letters (email communication is sufficient) from all departments that you have identified above stating their support or opposition to the proposed course.

The institutional review boards and human subjects information would be taught in many courses on research methods and design but this is small part of the issues discussed in this course. HAS 4400 Legal and Ethical Aspects of HAS discussed the HIPAA legislation generally. In this course, we will be discussing implementation of the HIPAA legislation, the specific components of the legislation and required education, training, and documentation necessary to be compliant with it. In addition, this is the only course on campus that teaches the procedures required for release of confidential patient information.

4. Is this course required for certification/accreditation of a program?

yes

If so, a statement to that effect should appear in the justification and supporting documents should accompany this form.

5. For course proposals, e-mail a syllabus to Faculty Senate which should be sufficiently detailed that the committees can determine that the course is at the appropriate level and matches the description. There should be an indication of the amount and type of outside activity required in the course (projects, research papers, homework, etc.).

WEBER STATE UNIVERSITY

COLLEGE OF HEALTH PROFESSIONS

HEALTH INFORMATION TECHNOLOGY

 

Title: HIM 2250 Healthcare Privacy and Security

 

 

Credits:                       3 credits

 

Instructor:                               Heather Merkley, M.Ed., RHIA

MH 206

Office Telephone: 626-7074

Office Hours:                          Tuesday 2:00 - 3:00 PM

 

Email:                                                  hmerkley@weber.edu

 

Website:                                  http://faculty.weber.edu/hmerkley

 

TEXTS:                                   Johns, M.L. (2009) Health Information Management Technology, 2nd Edition, Chicago, IL: AHIMA ISBN:1-58426-141-2

                                                            Thomason, M.C. (2008) HIPAA by Example, Chicago, IL: AHIMA ISBN: 9781584261803

 

CLASS OUTLINE

 

Week 1

                                    Syllabus, Course overview and outline

                                    Discussion: Chapter 1, Introduction to U.S. Legal System

                                    Assignment: Ch 1 & Intro to Legal principles in HIM

Week 2

                        Discussion: Ch 2, medical staff specialties, appointments and  privileges

Case Scenario: Restricting Access of Physicians to the electronic health record

Assignment: Medical staff specialties and credentialing (25 pts) assessment                       

Week 3

                                    Discussion: Chapter 13, Influence of Federal legislation in the healthcare delivery system and state laws

                                    Case Scenario: Do we need authorizations or court orders to disclose information for child abuse investigations?

Assignment: Chapter 13 Assessment

 

Week 4

                                    Discussion: Ethical Issues in HIM

                                    Assignment: Ch 4 Assessment

                                    Group Assignment: Students will find 1 area within the AHIMA Code of Ethics and create presentation to give to HIM department.

                                               

Week 5

                                    Discussion: Confidentiality & Ethical Case Studies Assignment (groups of 2)

                                    Group presentations of Ethical training to HIM staff

                                    Case Scenario: How can healthcare providers know when it is okay to talk to family members about a patient?

 

 

Week 6

                                    Discussion: Ch 12, Basic Research Principles

                                    Assignment: Ch 12 Assessment

                                    Case Study: How Can HIM Assist in Research Studies?

                                   

Week 7

2/18                             Discussion: IRB and Research methods, Data Access and Confidentiality

                                    Assignment: Complete a IRB certificate through NIH

                                   

                                    Midterm Exam

Week 8

 

                                    Discussion: Ch 15 HIPAA and Legal Issues facing HIM

                                    Assignment: Ch 15 Assessment

 

Week 9

                                    Discussion: HIPAA Privacy regulations

                                    Guest Speaker: HIPAA Privacy Officer

                                    Assignment: HIPAA Assessment

 

Week 10

                                    Discussion: The U.S. court system in regard to a health care record trial

Movie: The Verdict

Case Scenario: What health information can we give to a medical examiner?

Assignment: Importance of documentation in The Verdict

 

Week 11

                                    Discussion: Ch 15, Legal issues in health information technology, HIPAA privacy officer interview, HIPAA privacy regulations

                                    Case Scenario: What happens if we fail to initiate a business associate agreement with someone who meets the definition of a business associate?

                                    Assignment: Ch 15 assessment (25 pts)

 

Week 12

 

                                    Discussion: Electronic Health Record, The Legal Health Record, Incident Reports, Psychotherapy notes, & Notice of Privacy Practice

                                    Case Scenario: When do we need a data use agreement?

Assignment: HIM Legal Issue Assignment & NPP Assignment

 

                                   

Week 13

Discussion: HIM release of information, (ROI) function, Requirements of a HIPAA authorization, fulfilling a subpoena 

                                    Video Case Study:  Fulfilling a subpoena for a deceased patient     

                                    HIM Virtual lab: verification of ROI practice

Case Scenario: Does HIPAA define what can be charged for record copies?

Case Scenario 2: Are out-of-state subpoenas valid?

                                    Assignment: HIPAA assessment

                                   

Week 14         

4/15                 Discussion: Ch 19, Information Security

Case Scenario: What are the technical, administrative, and physical security safeguards?

Case Scenario 2: What criteria should we use to identify inappropriate access when reviewing access audit logs?

Assignment: Ch 19 Assessment

                                   

Week 15

                        Discussion: Compliance policy

                        Video Case Study: Assessing the Compliance Plan

 

                        Final Exam

 

Assignments:  Assignments are due one week from date given unless otherwise stated.  If it is turned in late, there will be a 50% deduction.


 

 

Grading:

 

Assignments

points

U.S. Legal system

20

Med Specialty & credentials

25

Chapter 13

15

Chapter 14

20

Ethical Issue for HIM staff

25

Chapter 12, Basic Research Principles

20

IRB certificate

25

Chapter 15

25

HIPAA Assessment

20

Verdict video assignment

20

HIM Legal Issue Assignment

25

NPP Assignment

25

HIPAA assessment

20

Chapter 19

20

Final Exam

100

 

 

Total pts for HIM 2200

470

 

Note: Your grades are available on WebCT grade:

 

93%-100%      A

                        90%-92%        A-

                        87%-89%        B+

                        83%-86/%       B        

                        80%-82%        B-

                        77%-79%        C+

                        73%-76%        C

                        69%-72%        C-

                       

            Below 68% will result in a failing grade or incomplete

To pass this course successfully within the Health Information Technology program you must receive a ‘C’ grade or better.           

 

University Policy:

Failure to maintain academic ethics/academic honesty including the avoidance of cheating,  plagiarism collusion, and falsification will result in a E in the course, and may result in charges being issued, hearings being held and/or sanctions being imposed.

 

ADA Statement: Any student requiring accommodations or services due to a disability must contact Services for Students with Disabilities (SSD) in room 181 of the Student Services center.