What are the training requirements under HB 300?

ByEditor

What are the training requirements under HB 300?

HB 300 Training Requirements All employees who are required to handle PHI or sensitive personal information (SPI), or are likely to encounter PHI, are required to undergo formal privacy training within 90 days of commencing employment (the original 60 day requirement was amended by SB 1609 in 2013).

Does Texas HB 300 expand training requirements?

In addition to expanding the definition of a “covered entity,” mandatory customized employee training regarding state and federal patient privacy and security laws is one of the significant changes to the Texas Act through the adoption of HB 300.

What are ways that Texas HB 300 expands individual privacy protections beyond HIPAA?

Texas House Bill 300 Significantly Expands State’s Patient Privacy Protections for Covered Entities

  • revising the definition of a “covered entity”;
  • increasing mandates on covered entities, including requiring customized employee training;
  • establishing standards for the use of electronic health records (“EHRs”);

How often do you need HB 300 training?

twice every two years
How often must HB300 be trained on? All employees who work or do business in the state of Texas, must complete Texas HB300 within 60 days of hire. After initial training, ongoing training needs to be taken every year or at least twice every two years.

Is Texas HB 300 stricter than HIPAA?

Texas H.B. 300 Strict Regulations Texas H.B. 300 goes beyond federal HIPAA regulations to keep PHI secure.

What disciplinary actions can a licensing agency take if a covered entity license in Texas violates Texas Medical Records privacy laws?

If the court finds that the violations are a “frequent pattern of practice,” a covered entity can face up to $1.5 million dollars in fines as well as license revocation, civil action from the Texas Attorney General, and the Attorney General can independently request an audit by the U.S. Department of Health and Human …

What is the penalty for not taking reasonable action to disclose a security breach of sensitive personal information?

The penalties are capped at $250,000 annually, but only if the disclosure was to another covered entity and for treatment, payment, health care operations, or otherwise required by law; and the information was encrypted, the recipient did not use or release the PHI, and the covered entity that disclosed the information …

What is the objective of HB300?

Texas HB 300 and the existing laws it amended oblige all individuals and organizations that possess, obtain, assemble, collect, analyze, evaluate, store, or transmit protected health information (hereafter referred to as covered entities) to train their workforce on the requirements of the legislation.

Which state does HB 300 pertain to?

Texas
Like HITECH, House Bill 300 (HB300) requires covered entities in Texas that handle PHI to provide notification to individuals in the event of a privacy breach.

What is the Texas medical privacy Act?

The Texas Medical Privacy Act prohibits any release of PHI for marketing purposes without consent or authorization from the individual. Civil penalties: $100 per violation/day, up to $25,000/year each violation.

Does Texas HB 300 expand breach notification?

Like HITECH, House Bill 300 (HB300) requires covered entities in Texas that handle PHI to provide notification to individuals in the event of a privacy breach. However, House Bill 300 imposes additional penalties for failure to do so.

Who does the Cmia apply to?

CMIA requires a health care provider, health care service plan, pharmaceutical company, or contractor who creates, maintains, preserves, stores, abandons, destroys, or disposes of medical records to do so in a manner that preserves the confidentiality of the information contained within those records.

What is HIPAA and Texas HB 300 training?

This online training covers both HIPAA and Texas HB 300 training requirements for all Texas Healthcare and Non-Healthcare Professionals dealing with confidential protected health information.

When did Texas HB 300 become effective?

Texas HB 300 becomes effective September 1, 2012 and requires all employees be trained on it in addition to HIPAA. This online training covers both HIPAA and Texas HB 300 training requirements for all Texas Healthcare and Non-Healthcare Professionals dealing with confidential protected health information.

What are the penalties and fines for Texas HB 300 compliance?

To avoid penalties and fines, Texas HB 300 compliance is extremely important. Texas civil penalties range from $5000 to $1.5 million for covered entities that wrongfully disclose PHI. Federal HIPAA Privacy and Security fines range from $100 to $1.5 million annually. A data breach may also be classified as a felony.

What does HB 300 stand for?

Texas HB 300 (Texas House Bill 300) was a bill passed and signed by Texas Governor Rick Perry in June of 2011.