When Things Get Really Ugly … Here is an example of what NOT to do on social media!! This post was made in a PUBLIC Facebook group for medical billers. When I saw it … That’s right it did make my blood boil. I immediately sent a private message to the […]
Why Does It Matter? The Administrative Safeguards of the HIPAA Security Rule requires Covered Entities (CEs) and Business Associates(BAs) to: Implement procedures for creating, changing and safeguarding passwords [For details see: Security Awareness and Training, §164.308(a)(5)]. Make sure you create and regularly use strong passwords (i.e. usually 10 characters or more and includes uppercase and lowercase letters, numbers, and special characters […]
Difference between Security Incidents vs Breaches Today, I am going to discuss the differences between security incidents vs breaches for you. First, allow me to set the stage with definitions to provide some clarification. What are Security Incidents? HIPAA defines security incidents as attempted or successful unauthorized access, use, disclosure, modification, or destruction of information […]
Have You Done It? That’s right; I asked you “Have You Done It?” Done what you ask? Executed a Business Associates Due Diligence (BADD) review for each of your Business Associates (BAs). Why does it matter? Because What You DON’T Know CAN Hurt YOUR Patients and Your Business!! What Happens When You Don’t Perform A […]
Where Do I Go From Here? Until recently Business Associate Agreement Management (BAAM) was relatively easy. Did You Know? Most industry stakeholders view BAAM as a low-priority compliance responsibility that essentially amounts to checking off another HIPAA requirement. Not Anymore … Today, the stakes surrounding Business Associate Agreement (BAA) compliance have become increasingly high. Compliance […]
Could This Have Been Offshored Protected Health Information … While all the facts are not in and only time will tell IF both of these healthcare data breaches were the results of offshoring protected health information. Shared with permission from: Elizabeth Burke, BA, CCS The Hippocratic Oath Must Extend To The Business Office: Confronting and […]
Are You Doing It … In this week’s “Know The Rules!” I discuss the importance of Business Associate Agreement Management … AND What happens when you don’t do it!! Unless you’re new to healthcare, you know Covered Entities (CEs) are required to obtain a Business Associate Agreement (BAA) with each Business Associate (BA) before handing […]
Before I go into what CAN happen when your workforce snoops, it is important for you to know what your workforce is doing. And here’s why you should … the HIPAA Security Rule requires Covered Entities (CEs) and Business Associates (BAs) to implement safeguards to record and examine activity on information systems that contain and.or […]
Did you know? Every Business Associate (BA) that creates, receives, maintains, or transmits protected health information (PHI) is required to perform a complete and thorough HIPAA Risk Analysis. What The Heck Does That Mean? That’s right folks – your size doesn’t matter when it comes to HIPAA compliance … AND YOU are still […]
In this week’s Know The Rules! I present a case study on what happens when you don’t perform your Business Associates Due Diligence. Do you know the expression … What you don’t know WILL hurt you!! That is what Advanced Care Hospitalists (ACH), a contractor physician group in West Florida, found […]