Federal 42 CFR Part 2 Rules: Confidentiality Substance Use Disorder Treatment


Format: On-Demand Webinar
Duration of the training: 60 Minutes
Location: Online Webinar
By: Kim Cunningham, JD, CIPP/US, CHC

Federal regulation 42 CFR Part 2 (known as “Part 2”) protects the confidentiality of substance use disorder treatment records, when the records are created by a Part 2 program. Part 2 is significantly stricter than HIPAA, requiring the patient’s consent to use or disclose the records for any purpose, including treatment and payment.

Part 2 carries criminal penalties. Learn how you can protect your patients, yourself and your organization from running afoul of Part 2. In this webinar, you will learn the public policy behind the Part 2 regulation, when the regulation applies and what type of information is covered. We will briefly discuss pending modifications.

Learning Objectives:
  • The public policy behind Part 2
  • When Part 2 applies
  • What a Part 2 program is
  • What Part 2 records are
  • How to protect Part 2 records
  • Patient consent requirements under Part 2
  • When Part 2 records can be disclosed
  • Requirements for Part 2 court order or subpoena
  • How to respond to a Part 2 court order or subpoenas
  • Potential penalties under Part 2
  • Pending modifications to Part 2
Areas Covered in the Session:
  • What Part 2 is and is not
  • When Part 2 applies and when it does not
  • How to comply with Part 2 for Part 2 records
  • Defining a Qualified Service Organization and contractual language for business partners
  • Practical tips for operationalizing Part 2
  • Part 2 penalties
  • Pending modifications to the rule
Suggested Attendees:
  • Healthcare CEOs
  • Healthcare CFOs
  • Compliance Directors
  • Chief Information Officers
  • Information Systems Managers
  • Healthcare Counsel/lawyers
  • Health Information Managers
  • Office Managers
  • Hospital compliance officers
  • Privacy officers
  • Security Officers
  • Medical records workforce
  • Behavioral Health and Psychological providers
  • Inpatient behavioral health workforce
  • Supply Chain
  • General Counsel
  • Business associates
Presenter Biography:

Kim Cunningham is a licensed attorney in South Carolina and Ohio and a Certified Information Privacy Professional (IAPP). Kim has been practicing healthcare compliance with a focus on privacy for more than five years. Kim has worked to operationalize Part 2 requirements in both the outpatient and inpatient settings while also ensuring compliance with HIPAA and state privacy laws.

Additional Information:

After registration, You will receive an email with login information and handouts (presentation slides) that you can print and share with all participants at your location.

System Requirement:
  • Internet Speed: Preferably above 1 MBPS
  • Headset: Any decent headset and microphone which can be used to talk and hear clearly

For more information, you can reach out to the below contact: