Why you need this policy: HIPAA requires medical practices to prepare and post a Notice of Privacy Practice (NPP) notifying patients of their rights to their own personal health information (PHI) and how the practice uses and discloses the PHI it collects from patients. The NPP is as old as the HIPAA law itself; but recent changes (contained in a law called the HITECH … [Read more...] about Model Policy: HIPAA notice of privacy practices
Compliance
Are your business associate agreements up to date with the latest HIPAA requirements?
The Omnibus Final rule implementing HITECH made some changes affecting Business Associate (BA) agreements. While Sept. 23 was the compliance deadline for most obligations under the Final Rule, some agreements enjoy a grace period and may not need to be updated until September 2014. But you should take the opportunity now to make sure you haven’t overlooked any issues concerning … [Read more...] about Are your business associate agreements up to date with the latest HIPAA requirements?
Editor watches staggering changes in medical office management
By Susan Crawford Founding Editor Dear Readers: Medical Office Manager’s first issue came out in November 1987. And now after 26 years as your editor, I have retired. This is a good time to look at the issues and conundrums you as manager have faced during all that time and to congratulate you on a job well done. The changes have been staggering. You have kept up with them … [Read more...] about Editor watches staggering changes in medical office management
The 3 keys to better HIPAA compliance: risk assessment, training, revised notice
Three HIPAA items need every manager’s immediate attention. They are: • Risk Analysis; • documentation of HIPAA training; and • a revised Notice of Privacy. HIPAA’s enforcer is the Office for Civil Rights (OCR), and it’s taking the job seriously, says Nathan A. Kottkamp, a health care attorney with McGuireWoods in Richmond, VA. When the OCR comes to call, it will ask to see … [Read more...] about The 3 keys to better HIPAA compliance: risk assessment, training, revised notice
Same-sex marriage ruling brings in new legal issues
Plus new emphasis on discrimination Though it applies only to states where same-sex marriage is legal, the recent Supreme Court ruling on gay marriage warrants attention from managers in all states. For those in Washington, DC, and the 13 states where gay marriage is recognized, there are new employment law requirements. For those in all the other states, the ruling calls for … [Read more...] about Same-sex marriage ruling brings in new legal issues
Health reform’s delay on the employer mandate raises lots of questions
There’s a new delay in health care reform. It’s a one-year postponement of what’s known as the employer mandate of the Affordable Care Act. That mandate says large employers, or those with 50 or more full-time employees, have to provide health insurance for their employees or pay a penalty. Originally, the requirement was supposed to take effect this coming January. Now the … [Read more...] about Health reform’s delay on the employer mandate raises lots of questions
HIPAA: it’s time to update the office’s privacy notice
The mega rule deadline is September 23, 2013 What should managers be doing right now for HIPAA? They should be updating the Notice of Privacy Practices and getting patients to sign off on the revision. And they have only until September 23, 2013 to get it done. Along with that, they need to be paying close attention to some other HIPAA requirements that are getting … [Read more...] about HIPAA: it’s time to update the office’s privacy notice
HIPAA’s rules get tighter and its penalties get higher
and breach notification takes a new turn Even stronger controls have just been set out for HIPAA. They come in the final regulations for the Omnibus Health Insurance Portability and Accountability Act, or the HIPAA rule. They appear in the January 25 Federal Register and become effective March 26. However, offices and business associates have until September 23 to … [Read more...] about HIPAA’s rules get tighter and its penalties get higher
HIPAA is now striking small offices; the first hit is on mobile devices
HIPAA, which has traditionally focused its attention on larger entities, is now closing in on smaller organizations and smaller violations. A hospice in Idaho has been fined $50,000 for a security breach of its electronic health information. This is the first time HIPAA has gone after a breach affecting fewer than 500 patients, and the government says the fine is “a strong … [Read more...] about HIPAA is now striking small offices; the first hit is on mobile devices
Keep safe from the Recovery Audit Contractors and the courts by making the corrections correctly
What flaws are the Recovery Audit Contractors searching for in records? Illegible documentation, incomplete documentation, unidentified providers, wrong dates of service – and evidence of improper corrections. To help offices stay safe, the government has set out guides for making corrections so the records pass muster with the RACs. Those same guides will also ensure the … [Read more...] about Keep safe from the Recovery Audit Contractors and the courts by making the corrections correctly