Because of the high risk that laptop computers and other portable devices create for a potential privacy breach, healthcare organizations should consider creating an easy-to-understand training guide that describes staff members’ responsibilities.
Q. We are an MRI facility, and our services are referral- based. Faxing MRI reports to referring providers after radiologist review is our standard procedure. Patients can schedule follow-up appointments with referring providers to obtain results of their MRI scans. Patients regularly request a copy of the report at the time of their MRI scans or within several days of the scan when they pick up a copy of MRI films.
Does HIPAA require us to provide patients a copy of the report even when the provider has not interpreted the report and image?
HIM staff members have a lot on their plates right now, but one more looming deadline needs to be on their radar—the Federal Trade Commission (FTC) will begin to enforce its Red Flags Rule June 1. Hospitals must have an identity theft prevention program in place by that date.
Security breach notification requirements, according to Briefings on HIPAA's HIPAA and HITECH February survey of healthcare providers. Most of the nearly 600 respondents were HIPAA compliance officers and HIM directors.
Breach notification was the top challenge for 39% of respondents, followed by amending and creating business associate (BA) contracts at 18%. The response took Chris Simons, RHIA, by surprise. Simons serves as director of utilization management and HIM and privacy officer at Spring Harbor Hospital in Westbrook, ME.
