For many people, the Health Insurance Portability and Accountability Act (HIPAA) is as much of a threat as it is a new policy, particularly when it comes to comprehension and implementation. And as with all good panic-inducing situations, there is generally someone who, for better or for worse, sees an opportunity to cater to that fear of the unknown.
As a result, a multitude of HIPAA-related courses and seminars has cropped up in order to help administrators cope with all that needs to be done in the name of privacy and security.
But choosing from the array of courses can be as daunting as figuring out the regulations themselves. These classes offer certification, privacy designation, leadership, and education, all of which may or may not be the equivalent of putting different names on the same information. Then there is the matter of cost, with fees ranging from less than $200 to thousands of dollars. Finally, there is a choice with regard to format (online, textbook-based, in-person seminars).
Needless to say, shopping around in the wide world of HIPAA classes would be wise, according to industry experts.
First and foremost, anyone considering a HIPAA course should be aware that the Centers for Medicare and Medicaid Services (CMS), or any other regulatory agency, does not oversee or recognize the various certifications, according to James Keese, chief privacy officer at Eastman Kodak Health Imaging in Rochester, NY.
"There is no requirement for (HIPAA) certification," Keese explained. "There is no valid function or organization in the government that says, ‘Hey, I will certify you as a HIPAA god,’ so to speak."
Rather, these seminars are intended for educational fulfillment and possibly career advancement. Again, a little self-assessment is in order to determine which class is right for you.
For those who are looking for a good introduction to HIPAA, a primer course is useful, but bear in mind that one course will provide only the basics. Delving a little deeper into the mysteries of HIPAA could be a lifelong effort, pointed out Sharon Urch, the executive director of the Radiology Business Management Association in Aliso Viejo, CA.
"I don’t think anyone knows everything about HIPAA. (RBMA) has written a whole radiology-specific book on HIPAA implementation in a radiology practice. That was just an enormous project, and we only touched on a piece of it," she said.
While having the background to face HIPAA head-on is certainly laudable, how far a certification will get you in terms of career advancement is still debatable. A HIPAA certification may not make someone any more attractive to employers if they aren’t up-to-date on the latest security-related news.
"HIPAA is preempted by (any) state law that is more stringent. Knowing HIPAA does nothing for an organization if they’re ignoring the state laws that are more stringent," said Jeff Fusile, national partner in charge of HIPAA advisory services at PricewaterhouseCoopers in Atlanta.
So do these courses have any merit? Sure, particularly in helping healthcare professionals separate HIPAA truths from rumors, Keese said.
"There’s value in understanding and trying to de-couple the regulations from what is fact versus fiction," he said. "There are a lot of companies out there today that are trying to scare customers, saying, ‘You need to go change everything you’re doing at your site.’ There’s also value from a clinical aspect, because a lot of (people on) the clinical side of the hospital don’t understand what that means for them: ‘How do I change my day-to-day operations? What do you want to achieve?’"
Fusile suggested that courses focusing on privacy and security as a whole might be of some value, especially if the goal is career advancement. "People will want to know ‘Could you be a privacy officer?’ Not ‘Could you be a HIPAA officer?,’ he said.
To that end, the course offered by the American Health Information Management Association (AHIMA) and the Healthcare Information and Management Systems Society (HIMSS), both of Chicago, may fit that bill.
"HIPAA mandates that all healthcare organizations need a privacy officer and a security officer, so there would be a need to show a prospective employer or current employer (something) that says, ‘I am truly an expert on privacy and security issues,’" said Audrey Nagelberg, senior marketing manager, marketing and sales department at AHIMA.
And going through the course and examination process is one way to ensure that a potential employee, or employer, has read HIPAA-related materials at least once.
"Our (HIPAA certification) program fills a gap. Before we were around, there was no way for the manager or the owner of the company or whatever it is to train an employee on HIPAA," said Charlie Bross, president of HRcertification.com of Alpharetta, GA.
Below is a sampling of HIPAA-related courses that are currently available. This is not intended as a definitive list. Ultimately, any professional who chooses to take a course must measure his or her needs against what’s offered by the various organizations.
HIPAA certification courses
Certified HIPAA Professional- HIPAAacademy.net
- This seminar program provides a HIPAA overview and includes a role-playing section wherein a team develops a compliance plan. A 500-page manual accompanies the course. The certification test can be taken at any Prometric testing site nationwide. For one year following their course, students receive a monthly newsletter with HIPAA updates. To maintain certification, students must retake the Prometric test after one year.
- Three-day "boot camp," 8 a.m.- 5 p.m., nightly homework assignments.
- $1,500 for the boot camp; $150 for the exam.
HIPAA Professional Designation
Health Insurance Association of America
- Three courses are required. The first course, HIPAA Primer, is a textbook overview, followed by a test. For the second course, which also is followed by a test, students choose one of three textbook-based programs, either for health insurers, physician offices, or home healthcare providers. The third course is online. After completing all three, students can take the certification exam when they are ready. A 50-page supplement can be ordered for updates. The designation is valid indefinitely.
- Courses are self-paced; each of the three courses takes an estimated 40 hours.
- $115 for members; 150 for nonmembers.
HIPAA Privacy Training and Certification Program
- Online course with approximately 15-20 sections, each of which has an assessment quiz. Following the course, students may take a certification exam. The certification is valid for 12 to 15 months. To recertify, students must retest.
- Self-paced course; the training program takes about eight hours; certification exam takes two hours.
- $299 for single-user, stand-alone version; $499 for single-user ongoing-support-services version; $99 for retesting.
HIPAA Education Courses
HIPAA Leadership Seminar
- A HIPAA primer, with updates as needed. Students can access the company’s Web site for updates for a year following their program. This program offers CME credits from a variety of organizations.
- One five-hour seminar from 9 a.m.- 2 p.m.
- $199.
HIPAA Webinar
- Online course offering a HIPAA overview.
- Self-paced; estimated at 4-6 hours
- $59 CALHIPAA subscription costs
Health Care Privacy and Security Certification
Health Care Privacy and Security Certification
American Health Information Management Association and the Healthcare Information and Management Systems Society
- This exam looks at general privacy and security issues, including HIPAA. There is no official course, although AHIMA and HIMSS offer seminars and conferences on privacy and security. The test will be available after 2003 at any H&R Block office nationwide. Test candidates must have a bachelor’s degree and five years in healthcare management to take the exam. The test is monitored and updated as needed. The credential is valid for two years. To maintain certification, professionals must retest or take 30 contact hours of professional education, 15 of which must be related to healthcare privacy and security.
- Four-hour exam.
- $400 for members; $550 for nonmembers.
AuntMinnie.com contributing writer
November 11, 2002
Related Reading
Privacy specialist offers a methodical approach to HIPAA compliance, August 30, 2002
HHS amends HIPAA privacy rule, August 13, 2002
Motivational programs bolster employee retention, July 29, 2002
HIPAA to make challenging, costly demands on radiology, March 18, 2002
Copyright © 2002 AuntMinnie.com