HIPAA Training in Colorado

HIPAA training in Colorado is designed to provide certification opportunities to medical professionals who want to expand their knowledge and requirements on the job. Most HIPAA training in Colorado is offered online and provided by employers. Students of the training program can log in and receive a three to four hour training course that is offered in real-time and taught by one instructor. Some programs are individual and students are able to receive one-on-one training online by a certified instructor. Areas of certification include privacy security expert, security expert, privacy expert, and privacy associate. HIPAA certifications can improve eligibility for higher paid positions and expand the employee’s acumen in the workplace.

University of Phoenix

Master
MS in Counseling/Mental Health Counseling
Lone Tree

CollegeAmerica

Bachelor
BS in Health Science *Online
Colorado Springs, Denver, Fort Collins

ITT Technical Institute

Associate
School of Health Sciences
Thornton

HIPAA Security

The complex HIPAA law, designed to protect patient health information, can be confusing. This guide will give you an outline of the HIPAA Security Rule and how it affects your practice or business.

What are HIPAA security regulations all about?

HIPAA can be defined as a privacy rule, which provides security for identifiable health information that is created, received, maintained, or transmitted electronically. It does not apply to information that is transmitted in writing or through oral communication. The law requires that all administrative, physical, and technical safeguards be undertaken to protect electronic personal health information, also called e-PHI. This includes:

  • Assurance of confidentiality from unauthorized access
  • Protection against anticipated threats
  • Protection against unlawful uses of information

The HIPAA Security Rule also dictates that employers must ensure compliance by staff members.

Who must follow the Security Rule?

The same organizations required to follow the HIPAA Privacy Rule are also compelled to follow the Security Rule if they make use of e-PHI. Just a few of the groups, or "covered entities", must enact these protections including:

  • Health care providers
    • Physicians
    • Dentists
    • Hospitals
  • Insurance providers
    • Health
    • Vision
    • Dental
  • Clearinghouses or billing services

There are three parts to Security Rule compliance:

  • Administrative Safeguards

Covered entities are required to implement a security management process, appoint a security officer, train staff members on compliance, and periodically evaluate security policies. Part of implementing administrative safeguards is conducting a risk analysis that includes actions such as evaluating the likelihood and impact of potential risks and documenting security measures and the rationale for why those measures were chosen.

  • Physical Safeguards

In addition, covered entities must limit physical access to the information as well as implement policies that govern the proper use of electronic media and computer workstations. The law also requires procedures for the removal and disposal of protected information. In addition, covered entities must use electronic measures to ensure identifiable health records aren't destroyed or altered in an improper way.

  • Technical Safeguards

From controlling who can access e-PHI to crafting a policy that ensures the proper disposal of information, the Security Rule requires a number of technical safeguards.

What happens if they don't?

There's a price for non-compliance. The Department of Health and Human Services, which oversees HIPAA regulations, uses a graduated scale to assess fines. At the low end of the scale, violators are fined $100 for each incident. However, serious violators can be fined as much as $50,000 per incident. Furthermore, the most egregious cases may bring criminal charges against those who violate the regulations, regardless of whether it's a staff member or a company officer. 

The HIPAA law mandates workforce training but gives covered entities freedom to decide how that training should be done. Some practices might choose to handle it on their own; however others choose to invest in a high-quality training program. These courses offer the most up-to-date information that will guide you and your office to compliance. Training is ideal for any staff member who works with electronic personal health information. It's also appropriate for training new staff members and updating experienced members of your team.

A word of advice...

Part of managing your organization effectively—and legally—is managing HIPAA Security Rule compliance. Look at your policies and procedures today to make sure your office is doing its government-mandated part in protecting personal health information.

Other cities in Colorado

Online Schools

The following is a list of schools that offer online HIPAA Training programs.

Independence University

  • AS - Allied Health
  • MS - Public Health