Q: As part of the audit controls policy at my organization, we hired an external security vendor to collect and review logs from several critical servers. The vendor creates tickets for our IT staff when a potential incident is discovered during the daily log review. This supplements our own activity reviews of internally generated reports, and the vendor then uses them for its own review. Our internal staff never sees the reports the vendor uses for its review. Do the reports the vendor uses fall under the HIPAA requirement for retaining logs for six years? Should we compel the vendor to retain these reports?
Each year, the AMA updates the Vaccines, Toxoids section of the Medicine chapter in the CPT® Manual to add or revise descriptions of newly available products. In 2015, the AMA added two new product codes (90651, 90630) and revised four (90654, 90721, 90723, and 90734).
Mental health disorders are common in the United States, with an estimated 19% of Americans 18 or older suffering from a diagnosable mental disorder, according to a 2012 survey from the National Institute of Mental Health (NIMH).
This week’s updates include OIG inspector testimonies and H.R. 2 Medicare Access and CHIP Reauthorization Act of 2015. Click the link above to read more about this week’s updates.
Teaser: This week’s updates include OIG’s March 2015 Compendium of Unimplemented Recommendations and NCDs proposed for removal. Click the link above to read more about this week’s updates.
