News & Analysis

Fundraising, other providers, going out of business

October 1, 2012
Briefings on HIPAA

Q.As part of its fundraising effort, Hybrid ­Entity's cancer center wants to send a ­patient list ­(demographic information only) to Hybrid's ­development office, which is not ­designated as a healthcare component of Hybrid. Is this permissible? 

Don't let inadequate security be your downfall

September 1, 2012
Briefings on HIPAA

Mobile devices-thumb drives, smartphones, external hard drives, tablets, and laptop computers-are creating risks for PHI exposure.

Education and training are essential components

September 1, 2012
Briefings on HIPAA

Education is giving people the knowledge they need. Training helps them develop the skills that allow them to put that knowledge to use.

OCR protocol information a valuable compliance tool

September 1, 2012
Briefings on HIPAA

It may not be the proverbial keys to the ­kingdom, but OCR's recently published audit protocol for its ­current privacy and security audits gives healthcare ­organizations an inside look at the inspection process.

HIPAA Q&A: Protecting staff privacy; waiting room practices for patients with the same name

September 1, 2012
HIM Briefings

Q What is your opinion on providing extra protection for the medical records of staff who are also patients in an organization?

The role of compliance officers and committees

August 1, 2012
Briefings on HIPAA

A compliance officer is responsible for providing leadership for a healthcare organization's compliance program, but this is not a job a compliance officer must do alone.

Pages