Data Storyteller

New guidelines from SAMHSA released in July 2020 are designed to improve coordination of care for patients in treatment for substance disorder, while protecting confidentiality against unauthorized disclosure and use of patient information. View this HITEQ webinar on changes to SAMHSA’s 42 CFR Part 2 rule (Part 2) which protects individuals receiving substance use disorder treatment by defining privacy and security requirements for written, electronic and verbal information. This webinar features expert presenters from the University of New Hampshire Institute for Health Policy and Practice and the Center of Excellence for Protected Health Information who present on the new final Part 2 rule and future changes in the CARES Act, including what has changed, what has not changed, what this means for health centers in regard to consents and disclosures, and the implications for care coordination. This presentation also addresses privacy considerations for tele-behavioral health and exceptions during the state of emergency waiver.

Health centers are having to dramatically change approaches to patient care as the COVID-19 public health emergency keeps patients at home and ramps up the demands of telehealth and other remote care modalities. This resource is a quick start guide for health centers making this change. 

This HITEQ Center webinar explored key concepts and best practices that should be followed by Health Centers seeking to develop Defense in Depth and effectively implement hardened security programs at their sites. There are ever-increasing cybersecurity guidelines and protection measures that Health Centers must navigate and digest. This webinar sought to motivate and educate the health center workforce on critical privacy and security concepts and methods for defense. Aspects of Security Risk Assessment, security awareness training, and breach protection were covered with an emphasis on health center-wide information protection.

The U.S. Department of Health & Human Services (HHS), Office for Civil Rights (OCR) has developed a Cyber Security Checklist and a corresponding Cyber Security Infographic that explains the steps for a HIPAA covered entity or its business associate (the entity) to take in response to a cyber-related security incident. 

Health Centers are made up of many different levels of IT Security & Privacy expertise, both in terms of staff skills and organizational maturity. This resource will help guide both beginners and more advanced staff and leadership to understanding how to best manage and promote security and privacy risk management at their health center.