The Health Insurance Portability and Accountability Act of 1996 (HIPAA)
- Protects health insurance coverage for workers and their families when they change or lose their jobs.
- Administrative Simplification provision is composed of four parts, each of which have generated a variety of "rules" promulgated by the Department of Health and Human Services.
- The four parts of Administrative Simplification are:
- Standards for Electronic Transactions
- Unique Identifiers Standards
- Security Rule
- Privacy Rule
Standards for Electronic Transactions :
- Electronic Health Transactions includes health claims, health plan eligibility, enrollment and disenrollment, payments for care and health plan premiums, claim status, first injury reports, coordination of benefits, and related transactions.
- In the past, health providers and plans have used many different electronic formats to transact medical claims and related business. Implementing a national standard is intended to result in the use of one format, thereby "simplifying" and improving transactions efficiency nationwide.
- Virtually all health plans must adopt these standards. Providers using non-electronic transactions are not required to adopt the standards for use with commercial healthcare payers. However, electronic transactions are required by Medicare, and all Medicare providers must adopt the standards for these transactions. If they don’t, they will have to contract with a clearinghouse to provide translation services.
Unique Identifiers Standards:
In the past, healthcare organizations have used multiple identification formats when conducting business with each other a confusing, error-prone and costly approach. It is expected that standard identifiers will reduce these problems. The Employer Identifier Standard, published in 2002, adopts an employer’s tax ID number or employer identification number (EIN) as the standard for electronic transactions. Final standards for Provider and Health Plan identifiers have not yet been published.
- Give patients new rights to access their medical records, restrict access by others, request changes, and to learn how they have been accessed
- Restrict most disclosures of protected health information to the minimum needed for healthcare treatment and business operations
- Provide that all patients are formally notified of covered entities’ privacy practices,
- Enable patients to decide if they will authorize disclosure of their protected health information (PHI) for uses other than treatment or healthcare business operations
- Establish new criminal and civil sanctions for improper use or disclosure of PHI
- Establish new requirements for access to records by researchers and others
- Establish business associate agreements with business partners that safeguard their use and disclosure of PHI.
270 Eligibility enquiry
271 Eligibility enquiry response
276 Claim status enquiry
277 – Claim status enquiry response
837 Inbound claims
835 Remittance advise
- General Requests
- eligibility status (i.e., active or not active in the plan)
- maximum benefits (policy limits)
- in-plan/out-of-plan benefits
- C.O.B information
- procedure coverage dates
- procedure coverage maximum amount(s) allowed
- deductible amount(s)
- remaining deductible amount(s)
- co-insurance amount(s)
- co-pay amount(s)
- coverage limitation percentage
- patient responsibility amount(s)
- non-covered amount(s)
HIPAA 270/271 Flow:
The Health Plan Employer Data and Information Set (HEDIS®)
The performance measures in HEDIS are related to many significant public health issues such as cancer, heart disease, smoking, asthma and diabetes.
HEDIS also includes a standardized survey of consumers’ experiences that evaluates plan performance in areas such as customer service, access to care and claims possessing.
HEDIS is sponsored, supported and maintained by NCQA.