Tips to get your team HIPAA-ready
HIPAA Weekly Advisor, November 1, 2010
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Editor’s note: This is the first in a series of tips on training your staff to be HIPAA compliant.
Develop policies that address training requirements. Organizations must develop policies and procedures that address security awareness training as required by the HIPAA Security Rule. In its 2009 audits, CMS recommended covered entities develop and formally document policies for the development, administration, and monitoring of initial and annual refresher training courses. CMS stated that these policies should do the following:
- Require that all newly hired employees complete initial training prior to having access to ePHI. The requirement should apply to employees and temporary workers, as well as contractors and vendors.
- Require any individual with access to ePHI to complete refresher training at least annually
- Require that management review and revise both the initial and refresher training courses at least annually to ensure that the courses are current
- Incorporate into training potential threats that the organization identifies as new risks through its assessment process
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Identify potential Medicaid RAC target areas
- Topic: CMS, OESS post new security compliance review information, checklist
- HIPAA Q&A: Level of encryption needed for email
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- OB services: Coding inside and outside of the package
- QA:Coding multiple initial infusions
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- What does case-mix index mean to you?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched