The Office of Civil Rights (OCR) offered considerations to healthcare organizations for securing electronic devices and media in its August Cybersecurity Newsletter.
Although HIPAA laws do not specify any time frame on updating policies and procedures, OCR has expectations. Here are three recent settlements where OCR has included mandates to update policies and procedures. You can apply some of these lessons in your organization.
HIPAA covered entities that maintain poor policies and procedures related to HIPAA compliance—those that are unfinished in draft form, not updated in years, and basically not followed to the letter—have cost them dearly.
The plaintiffs in a class action lawsuit against Premera Blue Cross over a 2015 data breach now allege that the health insurance company destroyed key evidence, according to new documents filed in August.
As hospitals transform from volume-based to value-based reimbursement, the role and functions of the utilization review (UR) committee are evolving. Learn how to refocus UR and use it as a tool for success now and in the future.
Patient matching—associating the right patient with the right medical record—isn’t a new problem, but as the practice of medicine and reimbursement models become more data-driven, the stakes will continue to rise.
Q: My primary care provider was running late for an appointment. When he finally came in the exam room, he told me he was late because his previous patient was very emotional. Is it a violation of HIPAA for a provider to share details about one patient with another?
