AS A MEMBER OF THE WORKFORCE OF BAPTIST
HEALTH WHO HAS RECEIVED TRAINING UNDER BAPTIST’S COMPLIANCE PLAN, I ACCEPT
Take reasonable safeguards to protect patient information
at all times when a patient’s protected health information is created,
maintained, transported and/or transmitted.
no longer needed, destroy paper containing protected health information by
placing it into designated Baptist Health shred bins. Do not put material
containing PHI in the regular trash.
Participate in and complete all required
training that is offered or assigned to me, in a timely manner.
Be familiar with the policies and procedures
that apply to me and my job.
Ask questions and get correct answers when
unsure of how HIPAA Privacy/Security rules or Baptist Health’s policies and procedures apply to a
situation or the performance of my job.
patient privacy by not photographing or video/audiotaping a patient, visitor or
workforce member. Any filming,
recording, photographing for the purposes of patient identification, diagnosis
or treatment must have appropriate authorization in accordance to Baptist
Upon discovery, immediately report in good
faith, if you believe there has been a violation of HIPAA, Baptist Health’s
Compliance Plan or an improper use or disclosure of protected health
information through the following reporting mechanisms :
Ethics Hot Line: 1-800-621-5966
Corporate Compliance Department: 334-273-4442
Corporate Compliance Email: firstname.lastname@example.org
To a workforce member’s direct supervisor and/or
manager, only if the direct supervisor and/or manager is not directly involved
and/or implicated in the suspected violation
To a member of your facility’s Senior Leadership
team, if that individual is not directly involved and/or implicated in the
Cooperate with Corporate Compliance during any
ongoing investigation by promptly responding to all inquiries and truthfully and
promptly provide any relevant information relating to the investigation.
Not retaliate against a patient or workforce
member who files a complaint, reports, or exercises rights permitted by HIPAA
or Baptist Health’s policies.
Refer patients who ask to see or copy their
record, amend their record, obtain an accounting of disclosures, file a
complaint, obtain voluntary restrictions on use and disclosure, or receive
communications via alternate means, to a department/unit supervisor, Health
Information Management or Corporate Compliance.
Use technology given to me, including remote
access/VPN, in accordance with Baptist Health standards and the Acceptable Use
of Technology and Remote Access Policies.
Access, use and/or disclose protected health information
only as permitted by law, by Baptist Health’s policies, and as necessary to
perform my job responsibilities.
I will not access patient information for
personal reasons; this includes my own information or that of my family/friends
or any other patient.
Not post or comment on information or
photographs about patients, visitors, or other workforce members on
social-networking sites such as Facebook, Twitter, LinkedIn, YouTube, etc. in
accordance with Baptist Health Social Media Policy.
Never share a password with another person;
never allow another person to access information under my identity; never
access information under another person’s identity.
Not email or text protected health information
to an external source including, but not limited to, websites, email address,
etc., without the appropriate encryption and safeguards.
Log-off or lock my computer when unattended and
secure any papers that contain protected health information.
If you have
any questions regarding your HIPAA responsibilities and/or any Baptist Health
hesitate to contact Corporate Compliance at 334-273-4442 or email@example.com.