To establish a policy that ensures compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) i , Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 ii and Omnibus Privacy Final Rule of 2013 iii in the destruction and disposal of documentation containing Protected Health Information (PHI).
Under the direction of the President, the Sr. Vice President for Healthcare, Sr. Vice President and CIO, General Counsel, Dean, Associate Deans, Department Chairs, Chief Compliance & Privacy Officer, Vice President for Research, Executive Director, and the Information Security Officer shall implement and ensure compliance with this policy.
This policy shall apply to health information that is generated during provisions of health care to patients in any of the RowanSOM patient care units, patient care centers or faculty practices as well as Human Subjects research under the auspices of RowanSOM or by any of its agents in all RowanSOM Schools, Units, Departments and RowanSOM owned or operated facilities.
“Protected Health Information (PHI)” - Protected health information means individually identifiable health information that relates to the past, present or future physical or mental health or condition of an individual, the provision of health care to an individual or the past, present or future payment for the provision of health care to an individual and identifies or could reasonably be used to identify the individual. The PHI of an individual patient, who has been deceased for more than 50 years, is no longer protected [164.502(f)].
XXX
A. XXX
A. XXX...xxx
B. YYY
1. XXX
2. Hyperlinks