Business associates (BA) may not be the target of upcoming HIPAA compliance audits, but failure to comply with the regulations could be very costly, says Tom Dumez, CHP.
The May tornado that destroyed a medical center in Joplin, MO, raised an important question: How can healthcare providers protect patients' PHI when disaster strikes?
When evaluating a family's ability, willingness, and availability to provide needed care to patients, discharge planners may become aware of scenarios that are not reasonable or safe for the patient.
Breaches are expensive, and the price tag increases when preparation and formal documentation are lacking. Identity Theft Guard Solutions, LLC, in Portland, OR, doing business as ID Experts, has introduced a do-it-yourself breach assessment, monitoring, and investigation tool called RADAR™ that helps reduce costs associated with lack of preparation, breach investigation, notification, and documentation.
Q Our authorization form for release of information requires patients to sign separate lines to authorize release of sensitive information, such as sexually transmitted diseases, substance abuse, and genetic information. We understand that very few other covered entities do this. Is this a legal requirement? And if so, may we change our form to state that all information will be released unless the patient indicates otherwise?
