The HHS Office for Civil Rights (OCR) issued a new fact sheet last week that clarifies the circumstances under which OCR may hold business associates (BA) directly liable.
Q: I work in the maternity department of a hospital, and sometimes we get thank-you notes. It a HIPAA violation to post those notes in an employee-only area? They often include patient names and other personal information.
Medical Oncology Hematology Consultants, in Newark, Delaware, recently released a notifcation about a data breach that exposed the information of 8,591 patients and occurred around June 7–8, 2018.
Q: What information does HIPAA allow to be shared on a health insurance user portal if multiple family members are on the same policy? Should all individuals on the policy have separate user accounts?
Not all governance, risk management, and compliance (GRC) solutions are built the same. If you’re in the market for one and are working in the healthcare industry, check out ComplyAssistant.
According to a recent press release, the Department of Justice unsealed an indictment of two Chinese nationals for a hacking incident that resulted in one of the largest health data breaches of all time.
Q: I’m a registered nurse, and I received treatment at the ER of the hospital where I work. When I asked for a return-to-work note the next day, the physician told me that my supervisor called her the previous evening and asked if I had asked for the note. Is this a HIPAA violation?
Care coordination has been at the heart of recent healthcare redesign efforts, which includes integrating primary care with behavioral and mental healthcare, but misunderstandings about how and when HIPAA applies can lead to unnecessary delays and leave organizations vulnerable to compliance risks.
Adriane Martin, DO, FACOS, CCDS writes about the signs and symptoms of peripheral arterial disease (PAD) and ICD-10-PCS guidelines for reporting the condition.
