In the wake of several large breaches, OCR is ready to ramp up its oversight of HIPAA compliance as it embarks upon Phase 2 of its HIPAA privacy, security, and breach notification audits. OCR began preparing for this round of audits around the same time that news broke of the second-largest HIPAA breach in the U.S., a hacking incident that affected 4.5 million patients treated at or referred to Tennessee-based Community Health Systems, Inc.
I have recently heard questions and discussion about the use of abbreviations within the medical record. With that in mind, this quarter's Joint Commission column will outline the requirements for abbreviations and provide guidance regarding the pros and cons of expanding the limited "do-not-use" list
The CMS EHR Incentive Program 2014 attestation deadlines for Medicare-eligible hospitals and professionals draw near (November 30 and December 31, respectively), so MRB asked healthcare professionals to reflect upon their successes and struggles associated with EHR implementation for benchmark survey.
1. Phase 2 of OCR's HIPAA audits will be desk audits, which means OCR will not conduct on-site audits of covered entities (CE) and business associates (BA) unless resources are available.
Q: I am currently working on a social media usage policy for the organization where I work. I often notisce that some of my friends in the healthcare industry will post about patients on social media website.
