Editor's note: The commentary in this article was originally presented in the HCPro, Inc., February 7 audio conference, "The Pediatric Medical Record: Opportunities for Documentation Improvement." Learn more about the audio conference at http://tinyurl.com/bbh9yl5.
Editor's note: Medical Records Briefing (MRB) catches up this month with Monica Pappas, RHIA, president of MPA Consulting in Long Beach, Calif., and an MRB advisory board member, to discuss physician queries.
The HIPAA Privacy Rule de-identification standard-Section 164.514(a)-includes two methods by which health information can be designated as de-identified: expert determination and safe harbor.
Q. A long-term care facility has deployed laptops that connect to a file server and are password protected. The laptops are not used to store PHI or other confidential data and are not removed from the facility. Do the laptop hard drives need to be encrypted?
