MyHIPAA Guide Documentation & Consulting

Ask about our breach response & audit preparation services


Are you protecting privacy to the best of your ability?  MyHIPAA Guide can help you be sure. 

MyHIPAA Guide helps HIPAA-covered organizations understand what they need to do on a daily basis. Subscribers gain access to a comprehensive, human-centered HIPAA program.  Our templates, forms and other materials are the most user friendly you can find on the market.  Plus, we can work with you personally to help you turn privacy protections into good business and elevated integrity within your organization. And at the end of the day, it's all about upholding the trust of those who entrust their care your care.  Our success is when people feel great about protecting privacy -- because it's the right thing to do.

Diane Evans of – News and Rules for HIPAA ComplianceSincerely,

Diane Evans

About Diane Evans

Our mission is to deliver meaningful information and user-friendly tools to help you achieve and maintain HIPAA compliance and uphold confidentiality for those you serve.

  • Subscription with Consult

    Unlimited phone & email consultation on HIPAA processes

    Everything you need to complete Privacy & Security Policies

    Risk Assessment instruction and templates

    An annual compliance work plan

    We hold your hand through everything!

Know Patients’ Privacy Rights

Patients may have more rights over their health records than you realize.

Under today’s privacy rules, consent entails far more than a “check-the-box” exercise as in the past.

In a public awareness effort, the feds recently released information to educate the public so people can make choices based on personal preferences.

Here are some of the key points to keep in mind:

  • Patients are permitted to see, or get an electronic or paper copy, of their medical record and other health information a doctor has about them. Generally patients should expect to have copies of their records within 30 days of a request, and they may be charged a reasonable fee, based on allowable calculations.
  • Patients may ask their doctor to correct health information they believe is incorrect or incomplete. The doctor may say no, but should offer a written explanation of why within 60 days.
  • Patients may ask for a list of the times their health information has been shared, who received it and why, going back six years
  • If a patient pays out-of-pocket in full for a service or health care item, the patient can ask a doctor not to share that information with the patient’s health insurer. The doctor should say yes unless a law requires the sharing of certain information.

In addition, a patient can ask to be contacted in a specific way, such as at an office phone or at a different mailing address. In its Guide to Privacy and Security of Electronic Health Information, the feds tell health care providers they “must accommodate reasonable requests” from patients. For example, a patient may request that appointment reminders be left on their work voicemail rather than home phone voicemail.

For those who prefer email communications, healthcare providers may send unencrypted emails. However, the patient should consent to unsecured emails based on an understanding of the risks.

There are certain things that HIPAA does not do, and these limitations should be understood as well, as detailed in a federally produced Fact Sheet titled Medical Privacy of Protected Health Information.

For example, the Fact Sheet points out that healthcare providers can share protected health information, without a patient’s permission, with:

  • Other professionals who are treating that individual;
  • Health plans and other entities for billing and payment purposes;
  • Certain public health and safety officials, for situations such as disease prevention, product recalls, suspected abuse, neglect or domestic violence.

"Seriously the best money I ever spent! MyHIPAA Guide made this cumbersome process painless and easy to complete."

–Gina Kerman, Executive Director
Rose-Mary Center, Cleveland, OH

10 Step HIPAA Plan

  • Step 1: Make Sure you Must Comply with HIPAA +

    What's Inside:
    Lists of who is generally covered and who is not, plus contact for inquiries.
  • Step 2: Designate Team Leaders +

    What's Inside:
    • 7-page HIPAA basics
    • 62-page guide to security and privacy of ePHI
    • Compliance Charter Template
  • Step 3: Develop Security Policies & Procedures +

    What's Inside:
    Templates for Security Policies and Procedures
  • Step 4: Conduct a security risk analysis +

    What's Inside:
    • Guides
    • Short videos
    • Interactive quizzes on risk assessment and contingency preparation
    • 10 common myths

    Interactive tutorial – 156 questions with fill-able PDFs for Windows or iPad. All material from federal sources.
  • Step 5: Develop an action plan +

    What's Inside:
    • 11-page overview on ePHI for small practices
    • 4-page Q&A addresses email with patients
    • Checklists

    Toolkit on 45 implementation specifications
  • Step 6: Reduce Risks of a Breach +

    What's Inside:
    • Overview of expectations
    • Annual Work Plan Template
  • Step 7: Train the Team +

    What's Inside:
    • Form for reporting breach notification
    • Links to details on the notification process and what constitutes a breach.
    • Suite of Training Materials
  • Step 8: Customize Privacy Notices +

    What's Inside:
    FOR ALL:
    • Privacy notice templates to help achieve meaningful consent, in English & Spanish.

    • Professionals' guide covering 2013 updates on communications.

    • Electronic toolkit with patient education and meaningful consent sample materials.
  • Step 9: Execute Business Associate Agreements +

    What's Inside:
    • Sample Business Associate Agreement (BAA) provisions
    • Suite of BA Management Tools
  • Step 10: Verify Compliance with HIPAA +

    What's Inside:
    • Tip sheets
    • Short videos
    • Overviews

    • 94-page guide on the EHR incentive program
    • Beginners' toolkit on reporting to the government

    All from federal sources.
  • 1

Peek inside the guide

This presentation will quickly show you the most important tools available to subscribers.


Site Search

Member Access