HIPAA Privacy Policies and Procedures
Responsibilities of Covered Entities
The Department of Elder Affairs (DOEA), having been determined to be a covered entity by virtue of its case management activity and its joint administration of the Medicaid program, will comply with the responsibilities of covered entities as set forth by the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
(a) Provide records and compliance reports.
(b) Cooperate with complaint investigations and compliance reviews.
(c) Permit access to information:
All documentation of compliance with HIPAA Privacy standards will be maintained for six (6) years.
45 CFR 160.310
Return to Top