|
|
|
|
|
|
by kamikazi
4271 days ago
|
|
|
If I'm allowed to override with a tangent:
What's the best place to start reading on HIPAA for non Americans? We're starting up a healthcare services co (applied YC this batch!!) where we might potentially have to be covered under HIPAA. But there's also a possibility depending on how we structure our operations that we can possible avoid it altogether. I can dive deep into the actual regulations later if we know we have to comply. Right now I need to kinda figure out the lay of the land. Where other services like Aptible or Catalyze fit in the ecosystem.
Like {X} is the problem, {Y} is the regulation set and {Z} is the way to comply/resolve it. |
|
|
HIPAA is a very large, encompassing bill that provides numerous protections for patients. In particular, it provides the necessary legal requirements preventing healthcare providers from disclosing personally identifiable information - typically, things like SSN, name + date of birth, name + zipcode, etc. Anything that could possibly be used by someone to identify who the patient is should not be discloses. HIPAA also lists some technology requirements, but if memory serves me correctly, it only goes so far as to say "industry-standard practices". There's also numerous parts of HIPAA that pertain to billing and insurance, but I don't do billing so I can't speak too much on those.
Another bill to check out would be HITECH.