As hospitals transform from volume-based to value-based reimbursement, the role and functions of the utilization review (UR) committee are evolving. Learn how to refocus UR and use it as a tool for success now and in the future.
Patient matching—associating the right patient with the right medical record—isn’t a new problem, but as the practice of medicine and reimbursement models become more data-driven, the stakes will continue to rise.
Q: My primary care provider was running late for an appointment. When he finally came in the exam room, he told me he was late because his previous patient was very emotional. Is it a violation of HIPAA for a provider to share details about one patient with another?
In the digital age of healthcare delivery, the need for appropriate medical device cybersecurity is pervasive. Unenforced password protocols, outdated data storage, unencrypted data, unsecured access to networks—these are just a few examples of distinct vulnerabilities medical devices can have.
Q: While at an appointment, I noticed a receipt sticking out of a patient folder at the registration desk, and I could read the patient's name, last four digits of his or her Social Security number, and diagnosis/billing codes. Is this a HIPAA violation, since anyone walking by could read this information?
Establishing an outpatient CDI program can have substantial benefits. Recently, an outpatient CDI review project demonstrated there were many documentation improvement opportunities at a large family practice/internal medicine physician clinic.
In its May newsletter on workstation security and the HIPAA Security Rule, OCR cited a 2015 settlement with Lahey Hospital and Medical Center in Burlington, Massachusetts, over a breach of PHI involving a laptop used in connection with a CT scanner.
The Office for Civil Rights’ (OCR) July Cybersecurity Newsletter, released last week, gave advice on disposing electronic devices and media to protect sensitive information like financial records and electronic personal health information.
Q: Is it permissible to take pictures of patients (including behavioral health) for identification purposes as a part of the registration process? Do the patients need to sign a consent form before their picture can be taken?
