The September 22, 2014, deadline to revise business associate agreements (BAA) may have seemed like a date far in the future when the HIPAA omnibus final rule was released January 25, 2013. However, this compliance date is now in our rearview mirror as we continue to move along the road toward establishing and maintaining compliance with the HIPAA Privacy Rule and Security Rule.
In the wake of several large breaches, OCR is ready to ramp up its oversight of HIPAA compliance as it embarks upon Phase 2 of its HIPAA privacy, security, and breach notification audits. OCR began preparing for this round of audits around the same time that news broke of the second-largest HIPAA breach in the U.S., a hacking incident that affected 4.5 million patients treated at or referred to Tennessee-based Community Health Systems, Inc.
Editor's note: Andrea Clark-Rubinowitz, RHIA, CCS, CPCH, has more than 30 years of experience working with healthcare professionals, information systems, hospital coding, and operational and compliance training. She founded and led Healthcare Revenue Assurance Associates from 2001 to 2014. Contact her at 954-465-0968 or aclark5678@gmail.com.
CMS has instructed MACs to reprocess claims and providers to reimburse beneficiaries due to a miscalculated copayment for stereotactic radiosurgery, according to the October update to the OPPS and Integrated Outpatient Code Editor (I/OCE).
The hospital/health system revenue cycle has a significant role in hospital billing compliance. The billing department is the final gatekeeper for compliance, as it is the final area to touch a bill before it is sent to Medicare. Therefore, it is essential that billing staff understand key compliance risk areas.
To fully understand where your organization's risks lie, you not only need to have a firm grasp on risk analysis and assessment processes, you need to define these processes as well.
