HIPAA

Tips from this month's issue.

Q: I received a request of information for a deceased patient's record. The patient passed away almost 80 years ago. How do I handle this?

It's November. It's the time of year when Americans give reasons for being thankful. One of them, of course, is a huge turkey dinner with all the fixings on the fourth Thursday of the month.

This article incorporates activities that an organization can use to improve the policy process and ensure the development and implementation of effective policies. While we may think we have written HIPAA policies, remember that HIPAA is one set of requirements facing all organizations that work with information.

Mobile devices make work faster, smarter, more efficient, and just a lot easier.

Business continuity is critical when a disaster or other event occurs that disables any organization's ability to continue to provide critical services.

Q: The company I work for has long debated what to do about medical records that are sent out on CDs. We concluded that since paper records could not be encrypted, we shouldn't have to worry about encrypting the CDs.

Network attacks. Network downtimes. Cyber-terrorists. PHI.

As privacy officer of a healthcare organization that includes about 12,000 employees in 14 hospitals and 30 clinics, Nancy Davis, MS, RHIA, CHPS, is a realist about one thing related to HIPAA compliance: Employees will make mistakes. They are human, after all.

The HIPAA Privacy, Security and Breach Notification Rules require the development and implementation of policies. Covered entities must address all the standards in the rules