Privacy Law and HIPAA from Coursera

What does it take to comply with privacy laws?

In this course, we’ll look at the practical aspects of navigating the complex landscape of privacy requirements. Better understanding privacy laws and data protection will enable you to protect your organization and the constituents that depend on your organization to safeguard their personal information. First, we will examine the historical context that drove the creation of laws, best practices, and other standards for protecting personal information. We will also consider where in the U.S. privacy laws exist and which sectors remain unregulated. Next, we will focus on the federal health privacy law, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) – and what it takes to comply with it. How do you know the scope of the requirements? And once you know HIPAA applies, how do you actually put measures in place to ensure compliance?

We’ll explore the notion that one cannot have privacy without strong security and examine various models that promote the security of personal information. We’ll look closely at breach notification laws – one of the most significant drivers of change in organizations – and discuss strategies for the improvement of data protection overall. Lastly, we will look at international law, state law, the unique and important role of the Federal Trade Commission in protecting privacy. Most importantly, we get practical – we will discuss real-world, practical approaches to how compliance professionals can navigate the complex landscape of privacy requirements to best protect their organizations.

What's inside

Syllabus

Privacy: Legal Issues, Landscape & Chronology

We begin our study of privacy and data protection with a brief look at the development of privacy law in the U.S. Then we examine the Fair Information Principles that provide the foundation of modern privacy and data protection programs.

HIPAA

How does a privacy law actually operate? This module looks at privacy and data protection in action, specifically using HIPAA as the framework.

Security & Breach Notification

What is data protection actually protecting us from? This module looks at the threats to data security and the processes that exist for dealing with a data breach.

Other Ways that Privacy is Regulated

As massive privacy breaches continue to happen, more regulatory bodies are taking on privacy concerns. This module examines the important role of the Federal Trade Commission, and concludes with a close look at the General Data Protection Regulation recently passed by the European Union.

Good to know

Know what's good

, what to watch for

, and possible dealbreakers

Helps learners understand the complex landscape of privacy requirements with practical and real world approaches

Explores HIPAA privacy landscape in detail, from understanding its scope to implementing compliance measures

Provides a comprehensive overview of privacy regulations, including state laws and international laws like GDPR

Covers the importance of data protection and the measures to prevent data breaches

Reviews summary

Hipaa privacy law

Learners say this course delivers in-depth knowledge of privacy laws, including HIPAA. Students say it does a great job explaining HIPAA implementation with a straightforward and easy-to-understand approach. Those taking this course find that the material is well-chosen and the videos are clear. However, students say the peer-grading process is inconsistent and frustrating. Also, they mention the language can be technical and difficult for those without a law background.

Comprehensive coverage of HIPAA

"Excellent course for beginners who are just starting in the field of Privacy and Health Law."

"The course is really good."

"This is a fundamental issue in healthcare technology - well covered and anchored with quizzes and a peer-graded project."

Clear, concise explanations

"Excellent course! Great content, simplified explanation and effective format."

"Straight forward and easy to understand"

"A very comprehensive and easy to understand course on HIPAA and fair information principles."

Challenging for non-law students

"The language a little elevated for some audiences with non-law backgrounds."

"Readings are hard to digest."

Unreliable peer-grading

"The grading and review process was lengthy and inconsistent."

"It is a waist of time and energy."

"When I had to redo and actually made it much more basic then it was ok."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Privacy Law and HIPAA with these activities:

Review data security fundamentals

Show steps

Establishing a solid foundation in information security will prove invaluable throughout this course and future endeavors.

Browse courses on Data Security

Show steps

Review the CIA triad (confidentiality, integrity, availability).
Identify common threats to data security.
Explain the principles of least privilege and defense in depth.

Review basic principles of privacy

Show steps

Reviewing basic privacy principles will give you a foundation for this course.

Show steps

Review the Fair Information Practices (FIPs).
Identify the six basic principles of data protection.

Review privacy terminology

Show steps

By reviewing the essential concepts and terms of privacy, you will have a solid foundation

Browse courses on Privacy

Show steps

Look at a list of common privacy terms.
Describe the definition and importance of each term.

11 other activities

Expand to see all activities and additional details

Show all 14 activities

Explore Online Resources for HIPAA Compliance Updates

Show steps

Stay informed about the latest HIPAA regulations and best practices through reputable online sources.

Show steps

Identify credible websites and organizations that provide up-to-date HIPAA information.
Subscribe to newsletters, blogs, and social media feeds from these sources.
Regularly review and engage with the content provided by these resources.
Participate in online forums and discussions to connect with other professionals in the field.

Navigation Plan

Show steps

Identify and create a plan to navigate privacy requirements. You will be expected to follow through on this plan.

Show steps

Identify areas of concern for your organization as it pertains to privacy requirements.
Research privacy requirements that may apply to your organization.
Develop a plan to address the privacy requirements.
Implement the plan and monitor its effectiveness.
Update the plan as needed to ensure compliance.

Compile and Review HIPAA Resources

Show steps

Create a compilation of relevant HIPAA resources to enhance your understanding of the regulations.

Show steps

Gather informative documents and materials related to HIPAA.
Organize and categorize the resources based on topic or sections of HIPAA.
Include both official government sources and reputable third-party resources.
Review and familiarize yourself with the compiled resources.

Explore HIPAA compliance tools

Show steps

By exploring available tools, you can streamline your HIPAA compliance efforts.

Browse courses on HIPAA

Show steps

Identify reputable vendors and software solutions.
Review product demonstrations and case studies.
Evaluate cost, functionality, and ease of use.

Simulate a privacy breach response

Show steps

You will build confidence in responding to security incidents and avoid costly mistakes.

Browse courses on Data Breach

Show steps

Assemble a team of key stakeholders.
Review breach notification requirements for relevant jurisdictions.
Identify and secure potential evidence.
Determine the scope of the breach and assess the potential impact.
Develop and implement a remediation plan.

Complete Mock HIPAA Breach Notification Exercises

Show steps

Engage in simulated breach scenarios to enhance your response capabilities.

Show steps

Review HIPAA breach notification requirements and timelines.
Participate in mock HIPAA breach scenarios as either a covered entity or a business associate.
Analyze the breach scenario and determine the appropriate response actions.
Practice drafting and sending HIPAA breach notifications to affected individuals and regulatory authorities.
Evaluate the effectiveness of the breach response and identify areas for improvement.

Discuss emerging privacy trends and challenges

Show steps

Exchanging ideas and perspectives with peers will broaden your understanding of the latest developments in privacy.

Browse courses on Data Privacy

Show steps

Attend virtual or in-person meetups or conferences.
Participate in online forums and discussions.

Conduct a HIPAA Privacy Impact Assessment

Show steps

Develop a comprehensive plan to assess potential privacy risks and implement appropriate safeguards.

Show steps

Define the scope and objectives of the privacy impact assessment.
Identify and analyze potential privacy risks associated with the project.
Develop and implement mitigation strategies to address identified risks.
Document and report the findings of the assessment.
Obtain feedback and make necessary revisions to the plan.

Develop a HIPAA Compliance Policy and Procedures

Show steps

Craft a comprehensive policy and procedures to guide HIPAA compliance within your organization.

Show steps

Review relevant HIPAA regulations and industry best practices.
Identify the key elements and requirements for HIPAA compliance.
Draft a HIPAA compliance policy that outlines the organization's commitment to protecting PHI.
Develop detailed procedures to operationalize the policy and address specific HIPAA requirements.
Obtain legal review and approval of the policy and procedures.

Develop a privacy policy

Show steps

Creating a privacy policy will enhance your understanding of privacy laws and best practices.

Show steps

Gather information on applicable laws and regulations.
Determine the scope of personal data collection and processing.
Identify and document the purpose of data collection.
Outline the rights of data subjects.
Develop procedures for data security, breach notification, and record retention.

Develop a public awareness campaign for privacy

Show steps

Engaging in this activity will improve your understanding of privacy issues and how to communicate them effectively to the public

Browse courses on Data Protection

Show steps

Research and understand the target audience.
Identify key privacy issues to address.
Develop creative and compelling messaging.
Choose appropriate channels for distribution.
Measure and evaluate the impact of the campaign.

Career center

Learners who complete Privacy Law and HIPAA will develop knowledge and skills that may be useful to these careers:

Health Information Manager

Health Information Managers are responsible for managing and protecting patient health information. This course provides an overview of HIPAA, the federal health privacy law. This knowledge can help Health Information Managers understand the privacy requirements related to patient health information and comply with HIPAA.

See salaries and explore the career path for Health Information Manager

Health Data Analyst

Health Data Analysts are responsible for analyzing and interpreting health data to improve patient care. This course provides an overview of HIPAA, the federal health privacy law. This knowledge can help Health Data Analysts understand the privacy requirements related to health data and comply with HIPAA.

See salaries and explore the career path for Health Data Analyst

Healthcare Privacy Officer

Healthcare Privacy Officers are responsible for developing and implementing their organization's privacy program. This course provides an overview of HIPAA, the federal health privacy law. This knowledge can help Healthcare Privacy Officers develop and implement effective privacy programs that comply with HIPAA.

See salaries and explore the career path for Healthcare Privacy Officer

Medical Records Administrator

Medical Records Administrators are responsible for managing and protecting patient medical records. This course provides an overview of HIPAA, the federal health privacy law. This knowledge can help Medical Records Administrators understand the privacy requirements related to patient medical records and comply with HIPAA.

See salaries and explore the career path for Medical Records Administrator

Privacy Lawyer

Privacy Lawyers are responsible for advising clients on privacy laws and regulations and helping them to comply with these laws. This course provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Privacy Lawyers advise their clients on how to comply with privacy laws and regulations and avoid potential legal issues.

See salaries and explore the career path for Privacy Lawyer

Privacy Consultant

Privacy Consultants help organizations to comply with privacy laws and regulations. This course provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Privacy Consultants advise their clients on how to comply with privacy laws and regulations and avoid potential legal issues.

See salaries and explore the career path for Privacy Consultant

Chief Information Security Officer

Chief Information Security Officers (CISOs) are responsible for overseeing their organization's information security program. This course may be useful for a CISO because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help CISOs develop and implement effective information security strategies that comply with privacy laws and regulations.

See salaries and explore the career path for Chief Information Security Officer

IT Security Analyst

IT Security Analysts are responsible for protecting their organization's IT systems and networks from security threats. This course may be useful for an IT Security Analyst because it provides an overview of security and data protection, including breach notification laws. This knowledge can help IT Security Analysts protect their organization's IT systems and networks from security threats and comply with privacy laws and regulations.

See salaries and explore the career path for IT Security Analyst

Information Security Manager

Information Security Managers are responsible for developing and implementing their organization's information security strategy. This course may be useful for an Information Security Manager because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Information Security Managers develop and implement effective information security strategies that comply with privacy laws and regulations.

See salaries and explore the career path for Information Security Manager

Data Privacy Analyst

Data Privacy Analysts are responsible for analyzing and managing their organization's data privacy risks. This course may be useful for a Data Privacy Analyst because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Data Privacy Analysts identify and manage data privacy risks to their organization and comply with privacy laws and regulations.

See salaries and explore the career path for Data Privacy Analyst

Compliance Manager

Compliance Managers are responsible for developing and implementing their organization's compliance program. This course may be useful for a Compliance Manager because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Compliance Managers develop and implement effective compliance programs that comply with privacy laws and regulations.

See salaries and explore the career path for Compliance Manager

Risk Manager

Risk Managers are responsible for identifying and managing risks to their organization. This course may be useful for a Risk Manager because it provides an overview of privacy laws and data protection, including HIPAA. This knowledge can help Risk Managers identify and manage privacy risks to their organization and comply with privacy laws and regulations.

See salaries and explore the career path for Risk Manager

Data Protection Officer

Data Protection Officers are responsible for developing and implementing their organization's data protection strategy. This course may be useful for a Data Protection Officer because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Data Protection Officers develop and implement effective data protection strategies that comply with privacy laws and regulations.

See salaries and explore the career path for Data Protection Officer

Security Auditor

Security Auditors are responsible for assessing the security of their organization's IT systems and networks. This course may be useful for a Security Auditor because it provides an overview of security and data protection, including breach notification laws. This knowledge can help Security Auditors assess the security of their organization's IT systems and networks and identify potential vulnerabilities.

See salaries and explore the career path for Security Auditor

Compliance Analyst

Compliance Analysts help their organizations avoid legal issues and assist them in following laws and government regulations. This course may be useful for a Compliance Analyst because it provides an overview of privacy laws and data protection in the US, including HIPAA. This knowledge can help Compliance Analysts ensure that their organizations are compliant with privacy laws and regulations and avoid potential legal issues.

See salaries and explore the career path for Compliance Analyst