Revenue Cycle

HIPAA Q&A: Fax logs, training, privacy, and incidental disclosures

HIM Briefings, January 1, 2015

This is an excerpt from a member only article. To read the article in its entirety, please login or subscribe to HIM Briefings.

Q: I was recently hired for a position at a long-term care facility. Upon getting acclimated, I learned that the facility has completed handwritten logs for every fax that was sent out since 2003. This document is referred to as the HIPAA fax log and contains the date the fax was sent, to whom it was sent, by whom it was sent, the number of pages, and whether a cover sheet with confidentiality statement was included. I would like to do away with this form since fax machines can generate their own logs. However, if this is a necessary process then I would like to follow official guidelines and update the facility's policies and procedures accordingly. Does the HIPAA Privacy or Security Rule require these logs? If so, what information must we include?

This is an excerpt from a member only article. To read the article in its entirety, please login or subscribe to HIM Briefings.

Most Popular