Healthcare privacy and data security has become one of the major policy, technology and operations issues in American healthcare. Health plans and insurers are mandated to comply with Gramm-Leach-Bliley by July 1, 2001. The HIPAA transactions and code sets regulations are final and will become enforceable October, 2002. Final privacy regulations were published last year, with an enforcement date of April, 2003. The fate of the HIPAA privacy regulations hangs fire as the Bush Administration determines whether and to what extent to amend them. Pending HIPAA regulations on security and electronic signature standards may be issued soon. HIPAA does not preempt more restrictive state law. Thus, in effect, there are 50 state schemes in healthcare privacy and security, subject to certain federal minimum standards. This complex mix of federal and state law and regulation creates a maze through which healthcare organizations must navigate. Compliance will be not only complex, but also extremely costly as healthcare moves to electronic data interchange and the Internet.

The HIPAA Summit conference series provides a road map to understanding the complex requirements of federal and state law and illuminates strategies for compliance. The First National HIPAA Summit, October 15 - 17, 2000 in Washington, DC was attended by almost 1,500. The Second National HIPAA Summit, February 28 - March 2, 2001 in Washington, DC following the issuance of the HIPAA privacy regulation was attended by approximately 2,000. HIPAA Summit West took place in San Francisco June 20 - 22, 2001 and was attended by almost 1,000.

Through a faculty of over 100, a special Interactive National Town Meeting on Regulating Healthcare Privacy and Data Security, a Socratic Dialogue on Healthcare Privacy and Security moderated by Professor Arthur Miller of the Harvard Law School and over 40 concurrent sessions, the Third National HIPAA Summit will go well beyond the simple recitation of the federal HIPAA law and regulations. Of course, the Summit will provide the most up-to-date and sophisticated information on the status and construction of the HIPAA regulations through the presentations of the leading HIPAA regulators from the Department of Health and Human Services. But the Summit will also provide focused coverage of important Gramm-Leach-Bliley requirements and the privacy initiatives of the Federal Trade Commission. Further, the Summit will provide specific and in depth analysis of the healthcare privacy and security laws of a number of major states.

Finally, the Summit will address the complex financial, operational and technical issues that must be addressed not only to comply with the technical requirements of the law, but also to integrate new technologies in order to enhance the efficiency, quality and accessibility of healthcare services.

• Provide a Basic Background to the HIPAA Law and Regulations
• Describe and Compare State Approaches to the Regulation of Healthcare Privacy and Data Security
• Articulate Basic HIPAA Compliance and Risk Management Strategies
• Describe Prominent MultiInstitutional and/or Regional Approaches to HIPAA Compliance
• Assess the Implications of the HIPAA Privacy Regulations to Various Sectors of the Healthcare System
• Share Case Studies of Organizational Approaches to HIPAA Compliance

• Chief Executive Officers
• Chief Operating Officers
• Chief Technology Officers
• Chief Financial Officers
• Compliance Officers
• Health Law Attorneys
• Medical Directors
• Physicians
• Managed Care Professionals
• Medical Group Managers
• Data Managers
• Ethics Officers
• Health Insurance Executives
• Consultants
• Government Agency Employees
• Health Administration Faculty
• Risk Managers
• Pharmacists
• Quality Assurance Professionals
• Registered Nurses
• Long Term Care Professionals
• Billing and Coding Professionals
• Third Party Billing Professionals
• Software developers
• System vendors
• System integrators