is one of the most important challenges facing addiction treatment providers. Mistakes can be costly. Violations of federal law can cost
millions of dollars
and result in jail time where there is willful misconduct. Violations of state privacy laws may also carry heavy fines and penalties, including imprisonment in certain circumstances. Furthermore, many states allow for a private right of action for a patient to sue an organization that has inappropriately disclosed his or her personal information. You could be found liable for the actions of your employees. You could also lose your license or credentials to operate.
HIPAA compliance may not be enough! Patient privacy is an area of law where there are overlapping rules and regulations at
both the federal and state levels
. There are stringent protections in the federal regulations for the substance abuse records maintained by many types of providers. There are also state laws and licensing guidelines that mandate certain privacy protections. Is your organization complying with all its requirements?
To help you answer that question, AATA is excited to roll out updated FAQs that address these patient privacy matters in greater depth, as well as expanded sample employee confidentiality agreements for you to review and revise with your legal counsel and compliance staff
. These new materials are a great jumping off point for working with your own legal counsel, privacy personnel, and compliance teams to ensure you are properly protecting patient privacy.
. Click on your state and then program type.