grey bullet Columbia University Medical Center Health Insurance Portability and Accountability Act of 1996 (“HIPAA”)
grey bullet HIPAA Overview
grey bullet What is Covered
grey bullet Who is Covered
grey bullet Business Associates
grey bullet Basic HIPAA Requirements
grey bullet Permitted Uses/Disclosure of PHI
grey bullet Notice of Privacy Practices
grey bullet Required Notice of Privacy Practices
grey bullet Required Notice of Privacy Practices
grey bullet Handling Requests for Patient Information
grey bullet Patient Rights
grey bullet Columbia University Policy
grey bullet Electronic Transmission of Patient Information
grey bullet Wrongful Disclosure
grey bullet Permitted by Law
grey bullet PatientThird Party Requests for Information
grey bullet Minimum Information Necessary
grey bullet Minimum Information Necessary
grey bullet Misplaced or Lost Information
grey bullet Unintended Uses and Disclosures
grey bullet Public Discussions
grey bullet Public Displays of Patient Information
grey bullet HIPAA and Research
grey bullet HIPAA Authorization
grey bullet HIPAA Waiver Criteria
grey bullet HIPAA Waiver Criteria con't
grey bullet Research View of PHI
grey bullet Research Data Flow
grey bullet Research Covered Health Information
grey bullet Questions & Answers
HIPAA Overview - HIPAA Waiver Criteria


HIPAA Waiver Criteria



Waiver requires IRB/Privacy Board approval
and documentation of three (3) waiver criteria:

  1. Use or disclosure involves no more than minimal risk to privacy of the subject based on, at least:



a) Adequate plan to protect the information from improper use and disclosure;
b) Adequate plan to destroy identifiers; and
c) Written assurances that the PHI will not be disclosed further than as set forth in the waiver



Back
Forward

Last updated 11/12/2003