Handling requests for information from law enforcement can throw staff for a loop. Most staff are aware of their organization’s policies and the basic HIPAA requirements for disclosing patient information to family members, friends, and other individuals such as legal guardians. But handling requests from law enforcement officials can be a different matter.
OCR’s 2016 guidance on patient access opened up a debate in the industry and brought questions about fulfilling patient access requests to the foreground.
Physicians may be angry at the increased documentation, coding, and billing workflow and compliance activities they must perform to be successful in new reimbursement models. However, to avoid accustations of fraud and upcoding, they must develop their own OIG-recommended compliance plan and be open to rigorous feedback and advice.
