Anti-Kickback

Episode 55: Know The Rules! Anti-Kickback Statute

Today, I am presenting a case study of what happens when a Covered Entity (CE) and a pharmaceutical company collude to violate the Federal Anti-Kickback Statute and the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule. Healthcare has a Federal Anti-kickback Statute (AKS), 42 U.S.C. § 1320a-7b(b), that makes it illegal for providers to […]

Workstation Use

Episode 53: Know The Rules! Workstation Use

Workstation Use In this week’s “Know The Rules!,” I am diving into the second standard of Physical Safeguards of the Health Insurance Portability and Accountability Act (HIPAA) Security Standards: Workstation Use, 45 CFR § 164.310(b). Physical security is an important component of the HIPAA Security Rule that is often overlooked. What constitutes appropriate physical security […]

Information Access Management

Episode 52: Know The Rules! Information Access Management

What is Information Access Management? The fourth standard in the Administrative Safeguards section is Information Access Management. Covered Entities (CEs) and their Business Associates (BAs) are required to: “Implement policies and procedures for authorizing access to electronic protected health information that are consistent with the applicable requirements of subpart E of this part [the Privacy […]

Assigned Security Responsibility

Episode 51: Know The Rules! Assigned Security Responsibility

In this week’s “Know The Rules!,” I am diving a little deeper into the second standard in the Administrative Safeguards section: Assigned Security Responsibility. There are no separate implementation specifications for this standard § 164.308(a)(2). The standard requires that Covered Entities (CEs) or Business Associates (BAs): “Identify the security official who is responsible for the […]