NMU's Compliance Database - Northern Michigan University
Health Insurance Portability and Accountability Act (HIPAA)
Reviewed By | Internal Auditor Owner |
URL: | https://nmu.edu/hr/annual-compliance-notices |
Regulation Reference Cite | Public Law No. 104-191: 45 C.F.R. § 160; 45 C.F.R. § 164 |
Report Due Date (Actual) | 11-23-2019 (every 3 years) |
Level | Consumer Protection Posting |
Oversight Unit | HUMAN RESOURCES |
Person Responsible | Heather Haupt |
Secondary Person Responsible | Kimberly Hongisto |
President / VP Level | Finance |
Description |
Health plans must provide a Notice of Privacy Policy to enrollees once every three years and when there is a change to the policy. The policy must be available upon request at all times. Establishes national standards to protect individuals medical records and other personal health information. Requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. Gives patients rights over their health information, including rights to examine and obtain a copy of their health records, and to request corrections. Once an employer becomes aware that an employee’s need for leave is for a reason that may qualify under the FMLA, the employer must notify the employee if he or she is eligible for FMLA leave and, if eligible, must also provide a notice of rights and responsibilities under the FMLA. If the employee is not eligible, the employer must provide a reason for ineligibility. Employers must notify its employees if leave will be designated as FMLA leave, and if so, how much leave will be designated as FMLA leave. |
Contacts and Data Sources |
Heather Haupt and Kim Hongisto |
Internal Notes |
This compliance item has notes that are available internally to the oversight unit. Please contact the Risk Management Department for more information |