Agenda

Return

C. 15

To:	Board of Supervisors
From:	Dianne Dinsmore, Human Resources Director
Date:	January 9, 2018

Contra

Costa

County

Subject:

ADOPT Ordinance No. 2018-02 amending the County Ordinance Code

APPROVE	OTHER
RECOMMENDATION OF CNTY ADMINISTRATOR	RECOMMENDATION OF BOARD COMMITTEE

Action of Board On: 01/09/2018

APPROVED AS RECOMMENDED

OTHER

Clerks Notes:

VOTE OF SUPERVISORS

AYE:

John Gioia, District I Supervisor
Candace Andersen, District II Supervisor
Diane Burgis, District III Supervisor
Karen Mitchoff, District IV Supervisor
Federal D. Glover, District V Supervisor

Contact:	Dorette McCollumn (925) 957-5240
cc:	Dorette McCollumn

I hereby certify that this is a true and correct copy of an action taken and entered on the minutes of the Board of Supervisors on the date shown.
ATTESTED: January 9, 2018
David Twa,

BY:	, Deputy

RECOMMENDATION(S):

ADOPT Ordinance No. 2018-02 (introduced as Ordinance 2017-24 on December 19, 2017) amending the County Ordinance Code to exclude from the merit system the classification of County Compliance and HIPAA Privacy Officer-Exempt.

FISCAL IMPACT:

This action has an annual cost of approximately $26,654 which is entirely offset by 100% Hospital Enterprise Fund I revenues.

BACKGROUND:

The Health Services Department is requesting exemption from the Merit System the classification of County Compliance and HIPAA Privacy Officer-Exempt. The County Compliance and HIPAA Privacy Officer-Exempt is given a high-level of authority and policy-setting role not just for Health Services but for other county departments such as County Counsel, Auditor-Controller, Human Resources, Public Works, and Risk Management, which are affected by the Health Information Portability and Accountability Act. Per the Board Order approved by the Board of Supervisors in 2003, the HIPAA Privacy Officer is responsible for overseeing a HIPAA compliance program to ensure processes are implemented in adherence to Federal and State laws related to the privacy, security, confidentiality, and protection of personally identifiable health care information. This single-position classification is charged with developing and administering a county-wide HIPAA training program and serves as an independent body to review and evaluate all compliance issues. It also serves as the internal resource to receive and direct concerns to appropriate stakeholders for investigation and resolution of privacy matters.

CONSEQUENCE OF NEGATIVE ACTION:

There would be no specific classification dedicated to ensuring the County's HIPAA standards and practices are in compliance with Federal and State laws.