With newfound authority, some state attorneys general (AG) are beginning to take aim at covered entities (CE) that run afoul of HIPAA's Privacy and Security Rules.
The challenge of complying with HIPAA privacy and security requirements is significant for physicians, particularly those in small practices, says Robert Rowley, MD, whose Hayward, CA, office has functioned without paper records since 2002.
Q. May a preadmission nurse leave messages (e.g., “This is a reminder that your surgery is tomorrow; please don’t drink or eat anything after midnight.”) on an answering machine or mobile phone voice mail?
Many physicians and physician practices have gotten a break from the Red Flags Rule—the law intended to prevent identity theft and medical identity theft—thanks to Congress.
