News & Analysis

An inside look at one healthcare organization's OCR audit experience

December 1, 2013
Briefings on HIPAA

UK HealthCare's Chief Compliance Officer R. Brett Short knew he was in for a rough day as soon as he saw the email from his organization's privacy officer.

How encryption can help prevent breaches of PHI at your organization

December 1, 2013
Briefings on HIPAA

Encryption. Encryption. Encryption. It's almost impossible to listen to a HIPAA security expert talk about healthcare security and not hear that word.

'Tis the season for giving: Privacy and security officers share HIPAA tips and strategies

December 1, 2013
Briefings on HIPAA

It's the season of giving and in that spirit, BOH asked some privacy and security officers to share their best tips to help others.

HIPAA Q&A: Encrypted emails, facility directories, BA agreements, and voice mail

November 1, 2013
Briefings on HIPAA

Q. My email remains encrypted until it is opened. I have received two requests-via email and certified letter-from the patient's parent requesting records be sent by email or mail. I know legally a person may request this, but we must provide this service when we can ensure that the person requesting is who he or she says he or she is. Does a certified letter with recognizable signature or email from a known email address of a parent qualify as verification of the parent's identity?

Looking beyond the omnibus deadline: Challenges on the horizon

November 1, 2013
Briefings on HIPAA

September 23 was a big day in the HIPAA world. It was the deadline to comply with most of the provisions of the HIPAA omnibus final rule.

HIPAA Q&A: Photographing patients, ­gossip between employees

November 1, 2013
HIM Briefings

Q . Is it permissible to take pictures of patients (including behavioral health) for identification purposes as a part of the registration process? Do the patients need to sign a consent form before their picture can be taken?

Pages