Site Map

  • News | National Electronic Attachment, Inc. Ranked in Inc. Magazine Top 5000 List

  • News | National Electronic Attachment, Inc. Adds Several New Payors to Begin Receiving Electronic Dental Attachments via FastAttach™

  • News | National Electronic Attachment, Inc. And Quality Systems, Inc. Enter Into Channel Partner Agreement

About Callout

Privacy Policy

HIPAA Privacy

HIPAA clearly defines exactly what information, if maintained by those providers and plans that are subject to HIPAA, must be protected from unauthorized use or disclosure. The privacy standards apply to individually identifiable health information that is used, transmitted or stored in any form, such as paper, electronic, data, or verbally, that concerns the individual's past, present, or future health, or that addresses the individual's means of receiving that care. Examples of identifiable information protected by HIPAA: names, addresses, cities, phone numbers, fax numbers, e-mail addresses, web addresses, license numbers, zip codes, account numbers, and birth dates.

HIPAA also affords patients a number of new rights under these standards. They have the right to receive privacy policies from providers who are subject to HIPAA, the right to access and copy their own health information, the right to a history of certain types of disclosures of their information, and the right to request an amendment of their information. Covered entities are required to adopt processes in order to notify patients of their rights, and to handle patient requests to exercise their rights. The administrative requirements under the HIPAA privacy rules are many, including a requirement that covered entities appoint privacy officers and train all their work force in privacy issues.

In connection with certain types of disclosures of health information, covered entities are generally permitted to transfer the protected health information to their contractors known as business associates, as long as written contractual assurances are in place with those business associates, requiring the business associate to safeguard the information as required by the HIPAA regulations. Note that a contract for disclosure of health information is not required when that information is being passed from one provider to another for purposes of treatment.

HIPAA Security

The Final Rule adopting HIPAA standards for the security of electronic health information was published in the Federal Register on February 20, 2003. NEA has hired an outside consulting team who spends time with NEA to be sure that Privacy and Security Standards are met constantly.

This final rule adopts standards for the security of electronic protected health information to be implemented by health plans, health care clearinghouses, and certain health care providers. The use of the security standards will improve the Medicare and Medicaid programs, and other Federal health programs and private health programs, and the effectiveness and efficiency of the health care industry in general by establishing a level of protection for certain electronic health information. This final rule implements some of the requirements of the Administrative Simplification subtitle of the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

NEA'S Comments

We trust that the electronic standards and code sets and subsequent objectives of HIPAA will improve the general efficiency in which healthcare is administered. More importantly, we are confident that HIPAA will provide for the security and confidentiality of an individual's health information and provide specific, undeniable rights to the patient with regard to the handling and administration of that information. Under those auspices, NEA will provide products and services that are designed to comply with the law and to help you comply in a timeframe mandated by law. NEA customers can rely on us to support them to this extent. However, NEA will not give you legal advice on your obligations under HIPAA, and software and services alone cannot make a healthcare practice HIPAA compliant.

NEA will submit to all required testing and certification of its products and services covered by HIPAA. Additionally, NEA is investing significant resources to analyze and revise all company policies and procedures to ensure complete compliance.

As we have done for more than 11 years, we will continue to provide our customers with significant upgrades and enhancements, many of which will assist our customers in their efforts to become compliant. Please note that HIPAA standards require our customers to address internal policies and procedures and change their practices in ways that extend beyond the scope of our products and services. While we will continue to provide our customers with product upgrades and information that will assist customers in becoming compliant, we also strongly encourage our customers to become familiar with all HIPAA regulations and how they impact their own respective practices. NEA actively attends standards meetings across the country and will continue to work with organizations that are involved not only with standards but engaged with RHIOs and Attachments.