HIM/HIPAA

The healthcare sector is a frequent target of cyberattacks due to the value of PHI, which is the target of financial identity theft and medical identity theft. To safeguard PHI, you need to know the differences among phishing, ransomware, and DoS attacks.

A recent phishing attack against Network180, a mental health organization in Grand Rapids, Michigan, led to a data breach affecting approximately 2,200 patients.

Q: Does sharing the phone number of a physician who does not work in-house at a lab facility with a patient constitute a HIPAA violation?  

Experts Richard Pinson, MD, FACP, CCS, and Cynthia Tang, RHIA, CCS review the recently published “Global Leadership Initiative on Malnutrition (GLIM) Criteria for the Diagnosis of Malnutrition: A Consensus Report From the Global Clinical Nutrition Community” and help coders apply this criteria in ICD-10-CM.

Overcome attribution hurdles with tested models.

Use real-life strategies to prevent and fix master patient index errors during EHR consolidations.

Prepare your hospital for 2019 accreditation surveys.

In December, HHS Office for Civil Rights (OCR) released a request for information seeking input from the public in order to identify provisions of HIPAA that may impede value-based care or limit care coordination among individuals and covered entities, and which do not meaningfully contribute to protecting the privacy and security of protected health information.

Approximately 16,000 patients of Mind and Motion Developmental Centers of Georgia had their protected health information compromised after a ransomware attack on a server at the facility.

Q: A patient recently told me she was surprised to learn from another physician at our facility that her adult child had been prescribed a particular medication for high cholesterol. Her child is not a dependent adult under her care. Is it a HIPAA violation for a provider to discuss the care of non-dependent adult children with their parents?