Topic: CMS, OESS post new security compliance review information, checklist
HIM Connection, March 11, 2008
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
On February 20, the Office of E-Health Standards and Services (OESS) posted new information on the CMS Web site regarding upcoming security investigations and compliance reviews.
"Onsite investigations may be triggered by complaints alleging non-compliance, while onsite compliance reviews will typically arise from non-complaint related sources of information such as media reports or self-reported incidents," according to the Web site.
In addition, OESS posted a document entitled "Information Request for Onsite Compliance Reviews" on the Web site. This document serves as a checklist and indicates information that may be requested during an investigation or review. However, the list is not comprehensive, nor is it limiting. "The individual circumstances of each applicable case will dictate the type of information that will be requested during an investigation or review," according to the Web site.
OESS also notes that covered entities should review the areas of vulnerability associated with the security of electronic PHI, as highlighted by the checklist, to evaluate the entity's current level of compliance.
For more information, click here.
To view the Information Request for Onsite Compliance Reviews checklist, click here.
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
Comments
1 comments on “Topic: CMS, OESS post new security compliance review information, checklist ”
- Janis Jimmie (11/27/2011 at 12:32 AM)
- This short notice of information has one part that is disturbing and it is that although a FAQ sheet and website posting is available to provide guidance on a review visit, it also says that the checklist is not comprehensive or limiting. It also notes a review whether generated by complaints or self request is the actual determinant of the areas of questioning. However, electronic records are so new to many facilities that a comprehensive checklist of review questions may provide each facility to establish mini surveys that can help identify areas of weaknesses before complaints arise. Pro activity!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Identify potential Medicaid RAC target areas
- HIPAA Q&A: Level of encryption needed for email
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- OB services: Coding inside and outside of the package
- QA:Coding multiple initial infusions
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- What does case-mix index mean to you?
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched