Contact Us

Automation System Intro

HIPAA Training - Excellence Digital LLC

🔒 HIPAA Training

New Client Management System

What You'll Learn:
• What is PHI and why it matters
• How our new system protects client privacy
• How to use Internal IDs instead of Medicaid IDs
• Your daily workflow with the new system
• What to do (and NOT do) with client information
⚠️ IMPORTANT: This training is mandatory for HIPAA compliance. Unauthorized disclosure of PHI is a federal crime with severe penalties.
1 / 10

⚠️ What is PHI (Protected Health Information)?

PHI Includes:

  • Medicaid ID Numbers
  • Client Full Names
  • Dates of Birth
  • Full Addresses
  • Phone Numbers
  • Email Addresses
  • Medical Record Numbers
  • Social Security Numbers

NOT PHI (Safe to Use):

  • Year of Birth (2010)
  • First 3 digits of Zip (346)
  • Internal IDs (CL-A7F3E9D2)
  • Diagnoses (general)
  • Treatment notes
  • Goals and progress
🚨 CRITICAL RULE: Never write down, email, text, or share Medicaid IDs, full names, or full addresses. Use Internal IDs instead!
2 / 10

Why HIPAA Compliance Matters

HIPAA Violations Carry Serious Penalties:
Violation Type Fine per Violation Criminal Penalty
Unknowing Violation $100 - $50,000 None
Reasonable Cause $1,000 - $50,000 Up to 1 year prison
Willful Neglect $10,000 - $50,000 Up to 5 years prison
Malicious Intent $50,000+ Up to 10 years prison
✓ Good News: Our new system makes it EASY to stay compliant! You'll work with de-identified data, so you can't accidentally violate HIPAA.
3 / 10

🔐 Understanding Internal IDs

What is an Internal ID?
A cryptographically generated code that uniquely identifies a client WITHOUT revealing their Medicaid ID or personal information.
Example:

❌ OLD WAY: Medicaid ID: 123456789A
✅ NEW WAY: Internal ID: CL-A7F3E9D2

How It Works:

  • System takes Medicaid ID
  • Runs it through SHA-256 encryption
  • Generates: CL-A7F3E9D2
  • Same Medicaid ID = Same Internal ID (always)
  • Cannot reverse-engineer

Benefits:

  • HIPAA compliant
  • No PHI exposure
  • Easy to remember
  • Consistent across systems
  • Secure and trackable
4 / 10

📊 Old System vs. New System

Task ❌ Old System (PHI Exposed) ✅ New System (HIPAA Compliant)
Daily Tracking See: Christian Kerns
Medicaid: 123456789A		 See: Client CL-A7F3E9D2
Internal ID only
Goal Sheets Full name on every sheet Internal ID only
File Folders Folder: "Christian Kerns" Folder: "Client_CL-A7F3E9D2"
Team Communication "Christian had a good day" "CL-A7F3E9D2 had a good day"
Final Reports Manual creation with PHI Auto-generated with secure PHI
KEY TAKEAWAY: You'll NEVER see Medicaid IDs in your daily work. Only Internal IDs like CL-A7F3E9D2.
5 / 10

📅 Your New Daily Workflow

Morning: Check Assignments

  • Open Client Management spreadsheet
  • See list: "Client CL-A7F3E9D2", "Client CL-B8C4F1A6", etc.
  • Select client by Internal ID (NOT name)
  • Open goal tracking sheet for that Internal ID

Throughout Day: Track Progress

  • Use mobile form or spreadsheet
  • Select: Internal ID (e.g., CL-A7F3E9D2)
  • Mark progress: +, -, or X
  • Add your initials
  • Submit (auto-saves to tracking sheet)

End of Day: Review & Notes

  • Add activity notes using Internal ID
  • No need to use real names
  • System knows who CL-A7F3E9D2 is
6 / 10

✅ DO's and ❌ DON'Ts

✅ DO:

  • Use Internal IDs in all documentation
  • Say "Client CL-A7F3E9D2 had a great day"
  • Log into the system to see client info
  • Generate reports using the system
  • Ask admin if you need to verify client identity
  • Report suspected HIPAA violations immediately

❌ DON'T:

  • Write down Medicaid IDs
  • Email or text client full names
  • Share PHI via unsecured channels
  • Take photos of client documents
  • Share passwords or leave system logged in
  • Discuss clients by name in public
🚨 IF IN DOUBT: Use the Internal ID. It's always safe and compliant!
7 / 10

💡 Real-World Examples

❌ WRONG:
Email: "Christian Kerns (Medicaid: 123456789A) needs his medication adjusted."
✅ CORRECT:
Email: "Client CL-A7F3E9D2 needs medication adjustment. Please review in system."
❌ WRONG:
Text to coworker: "Can you grab Christian's file? It's in the cabinet."
✅ CORRECT:
Text to coworker: "Can you grab the file for CL-A7F3E9D2? It's in the cabinet."
❌ WRONG:
Verbal: "Christian did great in therapy today!"
✅ CORRECT:
Verbal: "Our client did great in therapy today!" (in public)
OR: "CL-A7F3E9D2 did great today!" (in staff meeting)
8 / 10

📝 How to Enter a New Client

Step-by-Step Process:
  • Receive support plan from state
  • Open Client Management System
  • Click: 🔒 HIPAA Client Management → Enter New Support Plan
  • Form opens with PHI warning banner
  • Fill in ALL required fields (marked with 🔒 for PHI)
  • System automatically generates Internal ID
  • PHI goes to encrypted vault (you won't see it again)
  • Working database gets Internal ID only
  • All 5 reports auto-generate
  • You'll see: "✓ Data saved securely! Internal ID: CL-XXXXXXXX"
⚠️ IMPORTANT: Only authorized staff (admins) should enter new clients. Contact your supervisor if you receive a new support plan.
9 / 10

✅ Training Complete!

You Now Know:
✓ What PHI is and why it must be protected
✓ How Internal IDs keep clients' information secure
✓ Your daily workflow with the new system
✓ What you can and cannot do with client information
✓ Real-world examples of proper HIPAA compliance
📋 ACKNOWLEDGMENT REQUIRED:

I understand:
• PHI must be protected at all times
• I will use Internal IDs instead of Medicaid IDs
• Violations carry serious legal penalties
• I will report any suspected breaches immediately
• I have access to ask questions if unsure

Staff Signature: ___________________________

Date: ___________________________

Supervisor: ___________________________
Questions? Contact your supervisor or admin ANYTIME. It's better to ask than to risk a HIPAA violation!
10 / 10