Many of the business practices at Moda Health will remain the same as a result of the Privacy Rule. We have been in the process of reviewing, revising and developing the policies and procedures to support the rule. The following is a synopsis of the changes:
We have done a complete review of the companies that do business on our behalf where the function performed requires Protected Health Information. As we engage other companies, a business associate agreement will be put in place at the time of initial contracting or at a time such that the arrangement involves the sharing of PHI.
We have developed a set of authorizations to support the requirements of the rule. These include:
· Authorization for Moda Health to Release Information
· Authorization for a Healthcare Provider/Entity to Release Information to Moda Health
· Authorization for the Release of Psychotherapy Notes
· Conditional Authorization—(primarily used in Individual Market)
We have always performed caller authentication (asking for specific information in order to feel certain that the caller is who they say they are). It is now more structured as a result of the Inquiry Tracking System (ITS). We have also implemented authentication for healthcare provider offices.
· Request for an Accounting of Disclosures
· Request for the Amendment of Records
· Request for Restriction on the Use/Disclosure of Information
· Request for Confidential Communications
· Complaints of Privacy Violations
Where we have Business Associates who may receive requests from members regarding these additional rights, we have reviewed the policies and procedures for ensuring the additional privacy rights are supported.
We have an ongoing program to restrict application system access based on job function and ‘need to know’.
Privacy training has been completed to each member of the Moda Health workforce. Departments such as Customer Service and Healthcare Services have more in-depth training in areas such as Caller Authentication, Information Sharing Practices and Authorizations. Privacy training will be an ongoing program for Moda Health.
We have established a Privacy Office as required by the rule. The designated Privacy Officer is Pat Van Dyke.
As Moda Health continues to upgrade systems, we choose technology that provides better security for member information. We have referred to the requisites of the Proposed Security Rule as we have enhanced systems. We are in the process of reviewing the Final Rule on Security and the requirements of that rule. We also provide administrative safeguards and have included Security training along with Privacy training. Security Training will be an ongoing program within Moda Health.
The Notice is effective on April 14, 2003. We will provide the Notice of Privacy Practices with member enrollment packets to ensure that all members have access to this document. The notice will also be available on our website.
The rule requires sanctions for members of the workforce who fail to comply with privacy policies. The sanctions vary from review and retraining to termination.
If you can't find an answer, please feel free to contact our Customer Service Customer Service Customer Service
If you can't find an answer, please feel free to contact our Customer Service
Check benefits, eligibility, incentive and utilization
We have exciting news to share. ODS is changing its name to Moda Health.
Moda comes from the latin term "modus" and means "a way". We picked it because that's what we are here to do: help our communities find a way to better health.
Together, we can be more, be better.
Please select the state you live in, or the state where your employer is headquartered, so we can tailor your experience:
Please select the state you live in, or the state where your employer is headquartered, so we can tailor your experience:
You can return to your previous location in the site header.