• E-mail
• Print
• RSS

Tip: Resolve to protect EHR with monthly security checkups

EHR Connection, January 7, 2008

Healthcare providers should heed their own advice about regular checkups and apply it to their facility's privacy and security programs.

If you haven't performed a follow-up risk assessment or compliance audit since HIPAA's security rule became effective, make a new year's resolution to conduct monthly security checkups starting NOW. A simple checklist that requires little time and no monetary outlay is all you need.

The following checklist will help you listen and look for EHR privacy and security concerns as you walk through work areas:

• Confidential data on computer screen visible to public
• Computer logged in to confidential system, but unattended
• Password in plain view
• Data center, computer/server room, media library, data network closet, film library unlocked
• Electronic media not secured
• Computer equipment vulnerable to theft or tampering
• Unauthorized devices on PCs

This tip is brought to you by the January issue of Health Information Compliance Insider.

• E-mail to a Colleague
• Print
• RSS
• Archive