It seems that today almost everyone knows someone who has been the victim of identity theft. Stolen social security numbers and other privacy violations are more common now than ever. With this increased need for protecting personal information there are some things you should be aware of as an employer.

In 2003, the U.S. Department of Health and Human Services enacted the Health Insurance Portability and Availability Act, often referred to as HIPAA. The privacy portion of the law is the most important for employers to keep in mind. It deals with retaining the privacy of employees in group health plans.

*Employee's private insurance related information should be protected at all times in electronic, paper, or spoken format. Information should be used with "minimum" disclosure, mainly for dealing with insurance plans, payment and treatment.

*Private information can only be used for specified reasons, and usually only with the written consent of the insured employee.

*Employees have the right to object to use of certain private information, can gain access to the information at all times, and are allowed to view the files related to who else has accessed the information.

*The group health plan company is in charge of ensuring responsible use of employee information.

*Employers are responsible for ensuring that employees that handle benefits claims and insurance information are retaining confidentiality as well.

There are a variety of other rules and regulations related to employee HIPAA rights in regards to health care plans. If you're unsure or confused about HIPAA We would be happy to help clarify some of the rules. Feel free to call our office the next time you have a question.