HIPAA POLICY

---

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires regulations to protect the privacy and security of certain health information of patients. 

The HIPAA Privacy Rule establishes standards to protect the confidentiality of individuals’ records and other personal health information (PHI). This may include information in client records and information created or collected as a result of services provided. The Privacy Rule requires safeguards to protect the privacy of PHI, and sets limits and conditions on the uses and disclosures that may be made of such information. Patients’ rights are also maintained over their health information, including rights to examine and obtain a copy of their health records. 

The HIPAA Security Rule establishes standards to protect individuals’ electronic PHI that is created, received, used, or maintained by a covered entity. The Security Rule requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic PHI. 

In required programs (where services involve clinical treatment), JBWS will maintain and adhere to privacy and security practices with respect to personal health information in compliance with HIPAA.