Compliance hinges on an understanding of security standards, but enhanced guidelines are needed
HIM-HIPAA Insider, June 29, 2015
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
Technology is changing rapidly, and so too are the ways in which healthcare organizations create, store, and transmit data. However, the standards established to guide healthcare organizations through the process of protecting ePHI often fail to align.
The draft HIPAA Security Rule was published in 1998 and is intended to provide national standards for protecting the ePHI of healthcare entities and patients. The rule was finalized in 2003 and became enforceable in 2005, but has not undergone significant updates since it was finalized. While the HIPAA omnibus rule included updates to HIPAA standards, many of these updates focused on business associate relationships and the individual rights of patients.
Several organizations, including the National Institute of Standards and Technology and the International Organization for Standardization, have updated their security standards since the 2003 publication of the HIPAA Security Rule.
Continue reading “Compliance hinges on an understanding of security standards, but enhanced guidelines are needed" on the HCPro website. This article originally appeared in the June issue of Briefings on HIPAA.
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
Related Products
Most Popular
- Articles
-
- Don't forget the three checks in medication administration
- Residency coordinators’ responsibilities
- Study: Shorter shifts reduces residents’ attentional failures
- RPA Subscriber Exclusive: February issue of Residency Program Alert now available
- Practice the six rights of medication administration
- Editor’s note
- The consequences of an incomplete medical record
- Note similarities and differences between HCPCS, CPT® codes
- Nursing responsibilities for managing pain
- Prevent dehydration with nursing interventions
- E-mailed
-
- Use modifiers -59, -91 to "explain" duplicate codes
- Unclear documentation fuels ongoing challenges in assigning appropriate POA indicator
- Tim Porter-O'Grady sounds off
- Skills of effective case managers
- Q: Can you clarify the reporting of dates on the plan of care for diagnosis onset and exacerbation?
- Q&A: Are colleges sending students to our facility for rotations business associates?
- OSHA HazCom updates include labeling, SDS requirements
- Note similarities and differences between HCPCS, CPT® codes
- ICD-10-CM coma, stroke codes require more specific documentation
- Fracture coding in ICD-10-CM requires greater specificity
- Searched