A key to successful HIPAA compliance is properly training staff to understand HIPAA, and what their particular obligations are depending on their job function. Train new staff members on their first day and make sure they sign a confidentiality agreement documenting that they understand their responsibilities under HIPAA. Include cybersecurity awareness training to help staff avoid becoming a victim of phishing.
Re-train staff members annually, and provide refresher training for employees as needed. Make sure that all staff members know who the designated HIPAA Privacy Official is and how to reach them.
Your staff needs to know exactly what is and isn’t allowed by HIPAA. They need to understand how to respond when a patient asks for their medical records or when a third party requests information.
The HIPAA E-Tool® includes staff training (study materials, quizzes and answer keys) and answers to all these questions.
