Internal Violations Policy
Employees of the Oklahoma State Department of Health (OSDH) who become aware of violations of HIPAA Privacy rules that are occurring within the agency must report the violation to their supervisor. Supervisors are required to take immediate steps to correct the violation. The steps may include, but are not limited to:
1. Correcting any physical situation that is permitting the violation, such as changing the placement of a computer’s screen that is visible to unauthorized persons;
2. Use of the OSDH Progressive Discipline procedure;
3. Notification of the HIPAA Privacy Officer. The HIPAA Privacy Officer can be contacted at (405) 271-5585 or email@example.com ;
4. Other reasonable and appropriate steps required to ensure the violation is corrected.