A business case for resourcing a compliance assurance program for privacy and security should be possible solely on the basis of the need to respond to complaints made directly to a covered entity (CE) (or business associate (BA) acting as an agent of a CE). However, despite stepped-up enforcement and periodic audits required by HITECH, industry experts still anticipate that a more proactive process for compliance may not be taken until an untoward event occurs. Consequently, other avenues for substantiating the importance of privacy and security measures are necessary and readily available. Information privacy and security officials may find it necessary to go beyond information about HIPAA Privacy and Security Rule enforcement in making the business case. Monitoring the general security industry and relating those risks to healthcare privacy and security are important when doing so. Consider the following:
Organizations often struggle to finalize charts after discharge so they can be coded in a timely manner, but this process can be completed efficiently with direction from HIM professionals and coordination between departments.
A lot can go wrong when an elderly patient is discharged home, from medication errors to transportation problems or self-care comprehension issues. However, an organization can create a solid discharge and transition process by focusing on some simple elements.
HIM professionals are at the center of a shift from a paper-based to an electronic healthcare environment. As healthcare organizations work toward Meaningful Use attestation, there are standards that can help HIM professionals ensure that their electronic records are interoperable.
Even before ICD-10-CM was delayed until October 1, 2015, the quality of physician documentation to accommodate the new code set was a top concern for the healthcare industry.