Tips to help ensure HIPAA compliance
HIM Connection, March 15, 2011
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
As healthcare organizations look to the future, they should focus on ensuring HIPAA compliance, said attorney Jeff P. Drummond, Esq. Drummond, a health law partner in the Dallas office of Jackson Walker, LLP, and the author of HIPAA Blog, offers the following suggestions:
- Make privacy a cultural element. Everyone in an organization should make patient privacy a priority. Organizations should incorporate privacy into their culture by ensuring that everyone understands the importance of protecting protected health information and the consequences of failing to do so. Regular training and HIPAA educational events are integral to this effort. Treating breaches and violations seriously, which includes the swift termination of problematic employees, is perhaps the best way to ensure that staff adopts a culture of privacy.
- Ensure that documentation is in order. Regardless of how well an organization does what it’s required to do, it needs paperwork to back up its actions. The Office for Civil Rights is developing an audit program to determine HIPAA compliance. Auditors will examine a covered entity’s documentation, which should include at a minimum the following information:
- Policies and procedures
- Business associate agreements
- Other forms
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
Related Products
-
Guide to HIPAA Auditing, Second Edition
This new edition of a best-selling book delivers the hands-on tools and guidance you need to conduct effective in-house...
-
The No-Hassle Guide to HIPAA Policies: A Privacy and Security Toolkit
HIPAA regulations require extensive documentation—likely more than you've done in the past. Changing the way you look...
-
HIPAA Handbook for Coders, Billers and HIM Staff
Train all of your staff members with this handbook and others in the 2009 HIPAA Handbook Series. Ensure they understand...
-
The No-Hassle Guide to EHR Policies, 2nd Edition
This second edition from EHR expert Margret Amatayakul provides the tools you need to develop effective HIPAA-compliant EHR...
-
ICD-10 Trainer
ICD-10 Trainer is a bi-weekly e-newsletter with the latest tips from the experts about how to get ready for the new coding...
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- HIPAA Q&A: Level of encryption needed for email
- What does case-mix index mean to you?
- Identify potential Medicaid RAC target areas
- QA:Coding multiple initial infusions
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- CMS has reformulated payments for some bilateral procedures
- Catch up on what's new with injections and infusions
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- What does case-mix index mean to you?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched