HIPAA privacy officers are responsible for ensuring that everyone’s personal and medical information remains confidential in hospital and medical office settings. These officers enforce all office and hospital policy rules when it comes to the information inputted by patients and staff alike into the many databases and files throughout the facility.
If there are ever any questions pertaining to how information should be handled or filled out, a HIPAA privacy officer must be able to assist the individual. At times in medical settings, there are discrepancies when it comes to patients' sensitive information, in which cases a HIPAA privacy officer will speak with legal council, if necessary. They must always maintain a mechanism to keep track of all private and sensitive information, and will often keep a log of who sees such information and at what time. They often work closely with the U.S. Department of Health as well as the Human Service’s Office of Civil Rights.
A four-year degree and professional certification in HIPAA work are often minimum requirements for this position, and many employers prefer those who also have experience in a prior HIPAA compliance role. The amount of experience required will vary by facility and employer.
HIPAA Privacy Officer Tasks
Lead organizational groups, including legal and IT teams, in confirming compliance.
Identify, communicate and audit compliance risks and concerns, including remediation strategies.
Investigate breaches and potential data loss, evaluating solutions and recommending disciplinary actions.
Design, develop and execute plans for monitoring and ensuring security and privacy of data.
Handle requests for protected information, complaints and tips about breaches.