Health Information Management

Leverage tools to help enhance medical record auditing and monitoring programs

HIM-HIPAA Insider, December 15, 2014

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

As the use of electronic health records (EHR) surges and organizations work toward meaningful use attestation, more in-depth monitoring of electronic patient records is becoming increasingly necessary.

"As we've made our march toward meaningful use and with the proliferation of many electronic record systems in organizations and electronic systems that produce and contain PHI, the volume of audit records has gone up exponentially," says Rob Rhodes, CPHIMS, CHCIO, CISSP, HCISPP, senior director of patient privacy solutions at Iatric Systems, Inc., in Boxford, Massachusetts.
The HIPAA Security Rule requires organizations to perform information system activity reviews, including regular reviews of audit logs, access reports, and security incident tracking reports, as well as access controls and audit controls. Access controls are linked to the HIPAA Privacy Rule minimum necessary requirements (45 CFR 164.502(b), 164.514(d)), which state that covered entities must identify persons or classes of persons, categories of PHI to which access is needed, and any conditions ­appropriate to such access, says ­Margret ­Amatayakul, MBA, RHIA, CHPS, CPHIT, CPEHR, CPHIE, CPORA, FHIMSS, president of Margret\A Consulting, LLC, in Schaumburg, Illinois.
Although the Privacy and Security Rules do not require organizations to audit all records, random reviews of a limited selection of medical records may no longer cut it for an audit, Rhodes says.
Continue reading "Leverage tools to help enhance medical record auditing and monitoring programs" on the HCPro website. Subscribers to Briefings on HIPAA have free access to this article in the December issue.

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

    Briefings on APCs
  • Briefings on APCs

    Worried about the complexities of the new rules under OPPS and APCs? Briefings on APCs helps you understand the new rules...

  • HIM Briefings

    Guiding Health Information Management professionals through the continuously changing field of medical records and toward a...

  • Briefings on Coding Compliance Strategies

    Submitting improper Medicare documentation can lead to denial of fees, payback, fines, and increased diligence from payers...

  • Briefings on HIPAA

    How can you minimize the impact of HIPAA? Subscribe to Briefings on HIPAA, your health information management resource for...

  • APCs Insider

    This HTML-based e-mail newsletter provides weekly tips and advice on the new ambulatory payment classifications regulations...

Most Popular