Myth: HIPAA Will Go Away

Fact: Many people think that the extension of the HIPAA Transactions and Code Sets compliance date, along with the recent proposed changes to the Privacy Rule, are signs that HIPAA compliance will never actually be required. This is simply not true. The Bush administration has announced its committment to strong patient privacy protections, and continues to take steps to protect PHI while maintaining access to quality health care. The compliance deadline for Privacy is April 14th, 2003, and October 16th, 2002 for Transactions and Codes Sets (October 16th, 2003 if you file an extension). Changes to the HIPAA regulations can only be made by a Notice of Proposed Rule Making (NPRM), which must go through an exhaustive review process before being finalized.

Myth: HIPAA is a Technology Issue

Fact: HIPAA will impact all areas within and employees of health care organizations, including clinical and medical, admitting staff, billing staff, receptionists, housekeeping staff and more. HIPAA Privacy provisions will require most organizations to review their current policies and procedures relating to patient confidentiality, patient rights, disclosures of health care information and workforce training. It has been estimated that 70% of the impact HIPAA will have on health care organizations will be related to behavioral and procedural changes.

Myth: My Organization Can Rely on Our Vendor or Clearinghouse for HIPAA Transactions and Code Sets Compliance

Fact: HIPAA transactions involve new data, new codes for existing data and new identifiers being communicated between providers and payers. Clearinghouses can't create this data; it has to be collected by people at provider sites who are using modified registration, order entry and billing systems. Vendors can provide the modified systems, but they can't train your workforce, modify paper forms, and do other implementation activities that are necessary to comply with HIPAA regulations.

Myth: HIPAA will decrease the quality and efficiency of patient care

Fact: HIPAA Regulations are actually intended to improve the quality of care. Concerns about lack of privacy now drive a wedge between patients and their providers and impede the provision of quality care because patients withhold information, avoid asking certain questions or fail to seek care altogether. Among other benefits, HIPAA creates the opportunity for patients and their health care providers to engage in a dialogue about how their information will be used and gives patients more control over uses and disclosures.

Myth: HIPAA is Another Y2K

Fact: HIPAA regulations are often compared to Y2K. However, unlike Y2K, HIPAA is not solely an IT systems issue. HIPAA involves many legal, procedural, administrative, behavioral and technological facets that must be carefully evaluated before a health care organization can begin the implementation process. Y2K was strictly a systems issue with a defined ending and a limited and identifiable scope, whereas compliance with HIPAA will be a constantly evolving process with no defined end.