Mergers and acquisitions in the healthcare industry are often decided upon and negotiated by C-suite staff with involvement from security and IT professionals. However, significant security implications must be considered by both parties prior to, during, and after a merger or acquisition. Security officers are often best suited to dig deep into the information security standards of a facility to identify risks and develop a plan for streamlining security programs between the acquirer and the organization being acquired.
Despite Bitglass, Inc.'s newness to the healthcare market, the company offers a mobile device management (MDM) solution that is simpler and far less invasive than most solutions available today?something of a feat, as securing data on mobile devices is usually not an easy task.
Q: It is my understanding that written authorization is required for the release of PHI even for treatment, payment, and operations purposes. I believe this is true in New York state, but am unsure if it is also true nationally.
Even before ICD-10-CM was delayed until October 1, 2015, the quality of physician documentation to accommodate the new code set was a top concern for the healthcare industry.
The policies that CMS publishes each year in the OPPS proposed rule don't always come as a surprise. Sometimes, CMS will announce its future intent in a previous rule in order to notify providers about data it is looking at or requesting comments on.
