As healthcare organizations launch their own patient portals, there are many privacy and security issues to address. A patient portal is a secure online website that gives patients convenient access to their PHI and allows them to communicate with their healthcare providers, including physicians and hospitals.
Hospitals can make better use of their electronic health record (EHR) system's audit functions not only to guard patient privacy but also to help prevent healthcare fraud, according to a new HHS Office of Inspector General (OIG) report.
Although the majority of the provisions of the HIPAA Omnibus Rule have become effective, many Breach Notification Rule revisions cause confusion for organizations.
We are four months into the new fiscal year and the Office of Inspector General (OIG) has finally released its highly anticipated Work Plan. Click the link above for more information and an in-depth analysis.
When Shallie J. Bryant, CHC, CHPC, went to work at CaroMont Health in North Carolina more than two years ago, her biggest challenge was creating a culture of patient privacy.
It's a brave new world out there for business associates (BA). BAs needed to comply with the HIPAA Security Rule and the use and disclosure provisions of the Privacy Rule in February 2010 as a result of the HITECH Act. However, the OCR held off on any enforcement activities-that is, until recently.
The September 23 compliance deadline for most of the provisions of the HIPAA omnibus rule has come and gone. But for covered entities (CE) and business associates (BA), now is not the time to take your foot off the gas pedal.
To comply with the HIPAA omnibus final rule, healthcare organizations need to revise their risk assessment process to determine whether they must notify affected individuals of a breach.
