HNS Policy 

Contracted health care professionals must comply with the Health Information Portability and Accountability Act (HIPAA) and must develop, implement, and enforce policies and procedures to ensure the privacy and security of protected health information (PHI) and the confidentiality of financial, personnel, and other information protected by statute.
 
HNS providers must comply with all state and federal laws with respect to the confidentiality of health care records and protected health information (PHI).

Providers must:  

• Maintain the confidentiality of the patient and his/her healthcare information in a manner consistent with state and federal laws and maintain the security of electronic protected health information.
  
  

• Develop and implement practices that protect confidentiality of information and data.
  
  

• Ensure that healthcare records are stored and archived confidentially.
  
  

• Ensure that those accessing (or seeking to access) documentation have the authority to access it.
  
  

• Ensure that information is used, managed, stored, and/or destroyed appropriately. 

Providers have legislative, professional, and ethical obligations to protect patient confidentiality.  It is essential that the confidentiality of that information be safeguarded and shared only as necessary to protect the interests of the patient.  This includes maintaining confidential documentation and patient healthcare records.

Because electronic information, mail, and communication systems are increasingly used to maintain and transfer information, precautions must be taken to ensure that providers and staff are fully informed of appropriate, safe and secure use of information systems.