There's a new threat on the healthcare horizon. Medical identity theft is running rampant and hackers are targeting merchants' credit card systems. It's only a matter of time before the two worlds collide.
You hear it over and over again. Covered Entity (CE) A failed to produce an ongoing risk assessment for HIPAA security compliance. CE B had an incomplete risk analysis, leading to a failure to recognize security weaknesses and vulnerabilities. And in come the fines.
Watch out, the criminals are coming, and they want to make money off of PHI your organization stores. It's one more thing to add to the growing list of compliance concerns that covered entities (CE) and business associates (BA) have to worry about when protecting internal PHI.
Documentation and billing for observation stays has come under increased scrutiny from the OIG, though many hospitals have struggled with changing regulations and frequently updated guidance.
