As privacy officer of a healthcare organization that includes about 12,000 employees in 14 hospitals and 30 clinics, Nancy Davis, MS, RHIA, CHPS, is a realist about one thing related to HIPAA compliance: Employees will make mistakes. They are human, after all.
The HIPAA Privacy, Security and Breach Notification Rules require the development and implementation of policies. Covered entities must address all the standards in the rules
Q: The company I work for has long debated what to do about medical records that are sent out on CDs. We concluded that since paper records could not be encrypted, we shouldn't have to worry about encrypting the CDs.
CMS released its proposed rule for stage 3 of the Medicare and Medicaid Electronic Health Records (EHR) Incentive Programs (https://s3.amazonaws.com/public-inspection.federalregister.gov/2015-0668...) in March. The intention is to simplify the EHR Incentive Programs, drive interoperability, and allow providers to further focus on patient care. The rule proposed a transition to a single meaningful use stage, with stage 3 being the final stage in the program. It would incorporate portions of stages 1 and 2.
Heart disease is the most common cause of death for both men and women in the U.S., according to the Centers for Disease Control and Prevention (CDC). The most common type is coronary artery disease (CAD), which can lead to heart attacks, heart failure, angina, and arrhythmias, according to the CDC.
