Survey shows many organizations experience HIPAA breaches, remain unprepared for an audit
HIM Connection, January 10, 2012
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
At the start of 2012, the healthcare industry still has a long way to go when it comes to the state of patient privacy and data security, according to a survey conducted by Medical Records Briefing (MRB), a sister newsletter of Briefings on HIPAA.
Forty-six percent of the more than 400 survey respondents have experienced a HIPAA breach in the past year. Only 18% said their organization is fully prepared for an OCR privacy and security compliance audit. And 28% of respondents said their organization self-audits for HIPAA compliance only on an as-needed basis.
When it comes to their biggest concerns about HIPAA, many respondents expressed a frustration that perhaps their extensive efforts just aren’t good enough to prevent compliance problems.
“Because everyone is responsible [for protecting PHI], there is lots of room for error or accidental disclosure—the next headline could be my organization,” one respondent commented.
The November 2011 MRB survey of healthcare providers showed lots to worry about, such as the following:
- Increased use of electronic records
- Staff members’ use of e-mail and social media
- Keeping up with ever-changing regulations
Editor’s note: Read the entire article in the January issue of Briefings on HIPAA.
Want to receive articles like this one in your inbox? Subscribe to HIM Connection!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- QA:Coding multiple initial infusions
- News and briefs: Oklahoma Osteopathic Association against residency bill change
- HIPAA Q&A: Level of encryption needed for email
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- CMS has reformulated payments for some bilateral procedures
- Catch up on what's new with injections and infusions
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- What does case-mix index mean to you?
- Identify modifiable risk factors to prevent patient falls
- Hospitals are not bound by InterQual criteria for determining patient status
- Searched