Cliff Note: How long to keep these privacy records

Leave a Comment / HIPAA Cliff Note, HIPAA for developmental disabilities, HIPAA for intellectual disabilities / By Diane Evans

Since federal privacy rules require lots of documentation, a frequently asked question is: How long do we have to keep all the documents that accumulate as a result of compliance with the Health Insurance Portability and Accountability Act (HIPAA)?

The answer: Six years — and that means six years after the date of a document’s creation or it’s most recent effective date.

Keep in mind, all HIPAA-related activities must be documented. This includes privacy policies and procedures, privacy notices, resolution of complaints, staff training, business associate agreements and all else pertaining to privacy protections.

Source: The U. S. Department of Health & Human Services

Privacy and Security Policy Template

Complete privacy and security policy template geared for the residential sector. More than 20 policies with prompts on how to comply. The appendix includes a breach response tool kit.

Perfect complement to security policies training sessions

Special discounted price of $69 through OPRA -- a savings of $56

Use Coupon Code - OPRACompliance2021

Click here to purchase

MyHIPAA Guide Subscription

Complete templates & support including Risk Assessment, Security Policies and HIPAA Program Planner

Get our with-Consult plan for $99/mo with special discount code: OPRA99DEAL or save $100 with the Annual plan and use Copon Code OPRADeal

Product Details

"Seriously the best money I ever spent! MyHIPAA Guide made this cumbersome process painless and easy to complete."

–Gina Kerman, Executive Director
Rose-Mary Center, Cleveland, OH

NEW! Cyber Risk Exposure ScoreCard

Answer questions to see what your Cyber Risk Exposure is.

Take the Quiz

Leave a Comment Cancel Reply