This complimentary content is supplied courtesy of AAOE, a partner of the American Academy of Ophthalmology. Join AAOE to access additional practice management materials and reap all other membership benefits.

Privacy Officer Job Description

This is a sample document that is contained in the AAO HIPAA Implementation Toolkit Package. This will be available to you when you register for the audioconference.  You may view the entire list of the package contents available.


Position Title: [Privacy Officer]
Immediate Supervisor: [Chief Executive Officer] [Chief Operating Officer]

Duties and Responsibilities

  • Chair and provide leadership for the creation and implementation of an organization-wide privacy program.
  • Develop organization-wide privacy policies and procedures, including without limitation:
    - Notice of Privacy Practices
    - Authorization Forms
    - Use and Disclosure of Protected Health Information
    - Individual Requests for Access to Protected Health Information
    - Recordkeeping and Administrative Requirements
  • Develop and chair the oraganization's [Privacy Oversight Committee] to assist in implementation of the organization's privacy program.
  • Collaborate with other departments, such as legal counsel, corporate compliance, accounting, IT, and medical records to maintain organization compliance with federal and state laws regarding privacy, security, electronic transactions, and protection of information resources.
  • Perform initial and periodic privacy and security risk assessments and conduct ongoing monitoring activities in coordination with the organizaton's other compliance and audit functions
  • Oversee and direct initial and ongoing privacy training to members of the organization's workforce.
  • Participate with legal counsel in the development, implementation, and ongoing monitoring fo all business associate, trading partner, and chain of trust agreements
  • Report to the [Cheif Executive Officer], [Board of Directors] regarding the status of privacy compliance
  • Revise the privacy program as necessary to comply with changes in the law, regulations, professional ethics, and accreditation requirements and as necessary due to changes in patient/client mix, business operations, and the overall health care climate.
  • Serve as liaison to regulatory and accrediting bodies for matters relating to privacy and security.
  • Creat a program permitting members of the organization's workforce, patients, and members of the public to submit complaints regarding the organization's privacy policies, procedures, and practices, and ensure that all compliants are handled diligently and appropriately.
  • Initiate and promote activities to foster privacy and security awareness and compliace within the organization.
  • Collaborate with legal counsel in handling any federal or state government investigations of the organization regarding privacy or security.

Qualifications:

  • Strong background in information security, including program analysis, development, and testing.
  • Experience in health industry compliance.
  • Knowledge about information technology, medical records and other medical information, patient privacy and confidentiality, and release of information.
  • Ability to communicate and work with many disciplines, such as management, physicians, information systems specialist, health information specialist, financial managers, state and federal agency officials, and patients/clients or other individuals upon whom the entity maintains or transmits individually identifiable health information.
  • Ability to apply management and leadership skills to attain and maintain compliance in a cost-effective manner.

 

Copyright © 2000 - Dorsey & Whitney LLP

AAOE - American Academy of Ophthalmic Executives
 

Privacy Policy | Terms of Service | Medical Disclaimer | Contact Us
Copyright © 2007
American Academy of Ophthalmology, P.O. Box 7424, San Francisco, CA 94120 T: 415.561.8500