The First National HIPAA Summit The Leading Forum on Healthcare Privacy, Confidentiality, Data Security and HIPAA Compliance Featured Speakers Commissioner Sheila F. Anthony, Federal Trade Commission Donna Z. Eden, Esq., Senior Attorney, Office of General Counsel, Department of Health and Human Services Barbara Fuller, JD, RHIA, Senior Policy Advisor, National Human Genome Research Institute Deborah Landis, Esq., Special Counsel for Health Care Fraud, Department of Justice Toby Milgrom Levin, Esq., Team Leader, Internet Advertising, FTC Thomas Perez, Esq., Office of Civil Rights, Department of Health and Human Services Karen Trudel, Advisor on Health Information Policy, Department of Health and Human Services Summit Sponsored By American Hospital Association American Medical Group Association Association for Electronic Health Care Transactions Blue Cross and Blue Shield Association Computer-Based Patient Records Institute- Healthcare Open Systems and Trials Federation of American Hospitals Health Care Compliance Association Healthcare Financial Management Association Health Insurance Association of America Hi-Ethics Internet Healthcare Coalition IPA Association of America Privacy Officers Association Science and Technology Section, American Bar Association The eHealthcare Association (URAC) American Accreditation HealthCare Commission Workgroup for Electronic Data Interchange October 15–17, 2000 Co-Sponsored By AHA News Health Affairs Hospitals & Health Network Grand Hyatt Hotel Healthcare Business Modern Healthcare Healthcare Forum Journal Modern Physician HIPAAadvisor.com The Group Practice Journal Washington, DC Trustee Medical Education Collaborative A Nonprofit Education Organization ACCME ACPE CNA ACHE ABA MCLE NASBA ACMPE HCCB Educational Grantor CREDIT CREDIT CREDIT CREDIT CREDIT CREDIT CREDIT CREDIT PricewaterhouseCoopers THE FIRST NATIONAL HIPAA SUMMIT: HIPAA Who Should Attend: The Health Insurance Portability and Accountability Act of 1996 (HIPAA) imposes extensive requirements on every area within health- The planning and implementation of HIPAA requires a joint care. Indeed, regulations will govern the transmission, maintenance, effort of healthcare executives throughout your organization. security and privacy of electronic health information transmitted by Therefore, team attendance is encouraged. Specifically, the health care providers, payors and others. While HIPAA legislation Summit will benefit healthcare leadership teams from hospitals, should ultimately lead to administrative simplification and significant healthcare systems, health plans, TPAs, insurance companies, cost savings, the implementation of HIPAA is anything but easy. It will physician group, government agencies, consulting firms and require changes in the health information systems and procedures. others including the following individuals: To be successful, HIPAA must be integrated into the overall strategic Chief Executive Officers initiatives of your organization. To do so, will require organizational Chief Operating Officers time and commitment. Chief Technology Officers Chief Financial Officers The Summit Compliance Officers The Sponsoring Organizations of the Summit are leaders in meeting Health Law Attorneys the challenges and opportunities of HIPAA. Together, the Sponsors Medical Directors have developed The First National HIPAA Summit, the most com- Physicians prehensive educational event on Healthcare Privacy, Confidentiality, Managed Care Professionals Data Security and HIPAA Compliance. Learn from leading policy- Medical Group Managers makers, who will share with you the latest breaking news on HIPAA. Examine winning strategies from leading hospitals, healthcare sys- Data Managers tems, health plans, and physician organizations. Take advantage of Ethics Officers special events to network with your colleagues. The time to prepare Health Insurance Executives for HIPAA is NOW. The place to prepare for HIPAA is the SUMMIT. Consultants Government Agency Employees HIPAA Summit Course Objectives: Health Administration Faculty At the end of the Summit, attendees should be able to: Risk Managers • Describe the basic terminology, provisions, and policies Pharmacists connected with the HIPAA regulation. Quality Assurance Professionals • Articulate the current status of the HIPAA regulation. Registered Nurses • Outline the steps needed to determine organizational Long Term Care Professionals readiness to incorporate HIPAA into the organization. • Describe what actions similar organizations are Billing and Coding Professionals taking to address HIPAA. Third Party Billing Professionals Prerequisites: None Sponsoring Organizations Health Insurance Association of America - American Hospital Association (AHA) - www.aha.org. (202) 824-1849/www.hiaa.org American Medical Group Association - Hi-Ethics - (800) 706-9646/www.Healthwise.org. (703) 838-0033/www.amga.org Internet Healthcare Coalition - www.ihealthcoalition.net. Association for Electronic Health Care Transactions (AFEHCT) - Science and Technology Section, American Bar Association - (202) 244-6450/www.afehct.org. (312) 988-5522/www.abanet.org Blue Cross and Blue Shield Association - Privacy Officers Association (POA) - (800) 266-6501/ (312) 297-6000/www.bcbs.com www.privacyassociation.org Computer-based Patient Record Institute and Healthcare Open The eHealthcare Association (TeHA) - (800) 277-0572/ Systems and Trials (CPRI-HOST) - www.ehealthcareassociation.com. (706) 650-1482 /www.cpri-host.org (http://www.cpri-host.org) The IPA Association of America (TIPAAA) - Federation of American Hospitals - (510) 569-6561/www.tipaaa.org. (202) 624-1500/www.fahs.com URAC (American Accreditation HealthCare Commission) - Health Care Compliance Association (HCCA) - (202) 216-9010/www.urac.org (800) 580-8373/www.hcca-info.org. Workgroup for Electronic Data Interchange (WEDi) - www.wedi.org Healthcare Financial Management Association - (800) 252-HFMA/www.hfma.org THE LEADING FORUM ON HEALTHCARE PRIVACY,CONFIDENTIALITY, DATA SECURITY & HIPAA COMPLIANCE Sunday, October 15, 2000 1:00 p.m. PRECONFERENCE SESSIONS (Choose One Session) PRECONFERENCE I – The Basics of HIPAA for Clinicians, Healthcare Executives and Trustees, Compliance Officers, Privacy Officers and Legal Counsel James J. Moynihan, Principal, McLure-Moynihan, Inc., Agoura Hills, CA PRECONFERENCE II – The HIPAA Strategic National Implementation Process (SNIP) Larry Watkins, Director, eHealth and HIPAA Strategies, Per-Se Technologies, and Co-chair, WEDI SNIP, Atlanta, GA Richard W. Landen, Senior Representative, Blue Cross Blue Shield Association, Boulder, CO PRECONFERENCE III – HIPAA for Chief Financial Officers Trinita C. Robinson, MA Technical Director, Healthcare Financial Management Association, Washington, DC 5:00 p.m. Adjournment Monday, October 16, 2000 8:00 a.m. Welcome Nancy-Ann Min DeParle, (invited) Administrator, Health Care Financing Administration (HCFA), Washington, DC 8:15 a.m. Overview of HIPAA Karen Trudel, Advisor on Health Information Policy, Department of Health and Human Services, Washington, DC 9:00 a.m. Implementation of the HIPAA Law and Regulations Donna Z. Eden, Esq., Senior Attorney, Office of General Counsel, Department of Health and Human Services, Baltimore, MD 9:45 a.m. HIPAA Enforcement and Penalties Thomas Perez, Esq., Director, Office of Civil Rights, Department of Health and Human Services, Washington, DC 10:30 a.m. BREAK 11:00 a.m. I.A. Privacy Officer Job Description, Role and Responsibility Brent Saunders, JD, MBA, Director, PricewaterhouseCoopers, and President, Privacy Officers Association, CONCURRENT Washington, DC SESSIONS I Lynn D. Fleisher, PhD, JD, Of Counsel, Sidley and Austin, Chicago, IL I.B. The Proposed HIPAA Privacy and Security Rule – Coverage and Implementation Richard Marks, Esq., Partner, Davis Wright Tremaine LLP, Washington, DC Robyn A. Meinhardt, Esq., Partner, Foley and Lardner, Denver, CO I.C. HIPAA Compliance Tools: HIPAA Security Summit Guidelines and Implementation Strategies – The Industry Approach to Security Jon Zimmerman, Principal, SMS, Inc., Malvern, PA I.D. Data Collection: How HIPAA Will Impact Strategic Planning and Marketing Efforts Gary Pickton, Senior Vice President, HCIA-Sachs, Evanston, IL I.E. Risk Management and Coverage for Privacy, Data Security and HIPAA Violations Peter Biagiotti, Vice President, AON, Granada Hills, CA Edward B. Robin, President, NAS Insurance Services, Encino, CA Kathleen A. Stillwell, RN, MPA, HAS, President, SQM Consulting Group, Seal Beach, CA I.F. International Privacy and Data Security Requirements Benedict Stanberry, LLB, (Hons) LLM (Wales), MRIN, Director, Centre for Law Ethics and Risk in Telemedicine, Wales, UK I.G. Case Studies in HIPAA Compliance for Employers, METs and MEWAs Alan C. Brown, Esq., Partner, McKenna & Cuneo, LLP, Washington, DC 12:00-1:45 p.m. LUNCHEON AND PRESENTATIONS 12:45 p.m. The Role of the Federal Trade Commission in Privacy and Data Security Commissioner Sheila F. Anthony, Federal Trade Commission, Washington, DC THE FIRST NATIONAL HIPAA SUMMIT: 1:15 p.m. Prosecuting Violations of Privacy Obligations and HIPAA Requirements Deborah Landis, Esq., Special Counsel for Health Care Fraud, Department of Justice, Washington, DC 1:45 p.m. BREAK 2:00 p.m. II.A. Coordination Strategies for HIPAA Compliance Among Compliance Officers, Privacy Officers, Ethics Officers, Chief Information Officers and Legal Counsel CONCURRENT Randolf Frank, Corporate Compliance Officer, University of Virginia Health System, Charlottesville,