JCAHO's 2004 IM standards more consistent with HIPAA
HIPAA Weekly Advisor, July 18, 2003
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
There is a connection between HIPAA and the Joint Commission on Accreditation of Healthcare Organizations (JCAHO) patient rights standards, but the JCAHO confidentiality and security standards (IM.2.10-2.30) have an even stronger link to HIPAA. The JCAHO updated the standards for 2004, and they are now more consistent with privacy and security rule requirements.
Elements of performance for the 2004 hospital standards include the following:
- Develop a written process (in one or more policies), based on and consistent with applicable law, that addresses the privacy and confidentiality of information
- Monitor information and developments in technology to improve privacy and confidentiality
- Remove personal identifiers to the extent possible, while maintaining the usefulness of the information, when using and disclosing health information
- Develop a written process (in one or more policies), based on and consistent with applicable law, that addresses information security, including data integrity
But the Joint Commission only surveys compliance with its standards, says Charlene Hill, spokesperson for the JCAHO. "While our standards are consistent with HIPAA, they do not possess the specificity of HIPAA, such as a requirement for a [privacy official]."
Editor's note: See the upcoming August 2003 issue of Briefings on HIPAA to read more. Go to for more information or to subscribe. Go to http://www.jcaho.org to download a PDF of the JCAHO's "2004 Hospital Accreditation Program Standards."
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- HIPAA Q&A: Level of encryption needed for email
- Identify potential Medicaid RAC target areas
- What does case-mix index mean to you?
- QA:Coding multiple initial infusions
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- CMS has reformulated payments for some bilateral procedures
- Catch up on what's new with injections and infusions
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- What does case-mix index mean to you?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched