Corporate Compliance

Tip: Train your entire staff on HIPAA issues

Compliance Monitor, February 9, 2011

Your full workforce needs privacy and security training, says Kate Borten, CISSP, CISM. That includes management; even your board of trustees should get some level of training. Include trainees, students, volunteers, and certain contractors. Always document your training.

You should also consider training workers from temp agencies, such as per diem nurses. You may want to consider collaborating with other local healthcare facilities to set up such training, Borten says. For example, a number of organizations in the San Diego area collaborated to set up a training program for workers at temp agencies that they all use, she says.

You should expose all staff to your privacy and security awareness materials. Provide additional training with specific materials to certain groups, such as your managers, system or network administrators, and operations personnel. Provide role-specific training to staff with significant information security responsibilities, Borten says. Explain what information they can access and how they can use the data.

This tip was adapted from the March 2011 Strategies for Health Care Compliance article titled “Your training checkup to ensure HIPAA compliance.” More information about Strategies for Health Care Compliance is available at the HCMarketplace.

Most Popular