Privacy, Disclosures, and HIPAA
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) set a federal standard for accessing and handling medical information. At the same time, Congress saw the need to address growing public concern about privacy and security of personal health data. In 2003, the Department of Health and Human Services (DHHS) issued the HIPAA Privacy Rule, which was signed into federal law. The Privacy Rule protects all individually identifiable protected health information (PHI) maintained by covered entities. PHI includes written, oral, and electronic information.
Pyxis is committed to protecting the privacy and security of PHI created and retained in the delivery of services and day-to-day administration of the Company. Pyxis has established policies and procedures designed to protect the information and outline the procedures for disclosing the information. Pyxis employees are trained to understand and comply with the Company’s privacy practices.
Participants and their legal guardians, if applicable, are given the Company’s Privacy Notice brochure at intake, assessment, or orientation. Participants may receive additional copies of the Notice at any time they request it. The information is explained in more detail in the Notice of Privacy Practices, a handout also given at intake, assessment, or orientation. Employees are able to briefly and simply explain the contents and intent of the Privacy Notice to their participants. Employees will also assist participants in accessing their private information maintained at Pyxis.