Help: FAQs, tutorials, videos, page index and more
Viewing:  Jan 16, 2019

HIPAA Articles and Resources

HIPAA is a complex federal law which requires healthcare providers to ensure that health information is protected. A summary of this law is included in Find-A-Code's specialty specific Reimbursement Guides as well as the ChiroCode DeskBook.

Generally, healthcare providers need to understand their responsibilities are it relates to:

  • Covered Entities
  • Transaction Standards
  • Privacy Rule
  • Security Rule

Because of the complexity of these rules, a more thorough explanation which is found in the Complete & Easy HIPAA Compliance book which also includes editable and sample forms.

Related topics:

HIPAA Articles

Click the article title to view a summary and link to the full article.

Are HIPAA Changes Coming?

|

On December 14, 2018, the Office for Civil Rights (OCR) issued a Request for Information (RFI). They are considering making changes to some of the HIPAA regulations. Earlier this year at the HIMSS (Healthcare Information and Management Systems Society) meeting, Roger Severino, the head of the Office for Civil Rights ...

Read the article →

HIPAA Handling Patient Requests for Medical Record Restriction

|

Healthcare compliance professionals frequently face confusing situations about sharing of protected health information (PHI). The Health Insurance Portability and Accountability Act (HIPAA) supports the protection of privacy of medical records. However, even when a patient does not authorize sharing of his record, there are permitted uses and disclosures, such as...

Read the article →

Finalized Confidentiality of Alcohol and Drug Abuse Patient Records Regulations

|

In January, the U.S. Department of Health and Human Services (HHS) issued updates to the privacy regulations regarding the confidentiality of patient information of substance use disorder patients (42 CFR Part 2).  This notice included references to better alignment with HIPAA regulations, but did state that Part 2 is more protective ...

Read the article →

Creating a Culture of Compliance in 2018

|

This year (2018), healthcare organizations (Hospitals, Health Systems, and Physician Groups/Practices) must focus on the criticality of creating a culture of compliance to ensure effectiveness and efficiency. Focusing on "compliance"-only approaches leaves healthcare organizations exposed to areas of liability oftentimes far more than what they could ever imagine or even...

Read the article →

What is a Legal Hold and e Discovery Anyway

|

Whether I am assisting clients or presenting, I am often asked about legal holds and e-discovery. The transition from paper to electronic records, which include emails, computer faxes, protected health information ("PHI"), personally identifiable information ("PII") and documents that are created, received, maintained or transmitted in an electronic format created...

Read the article →

FHIR Revisited

|

Like a moth to a flame, we periodically have to take a close look at FHIR. As mentioned in the March 26 blog post, interoperability was the hot topic at HIMSS, and FHIR is at the blazing edge of interoperability...

Read the article →

Health Information Exchange and Trusted Exchange Frameworks

|

Despite progress in health IT, Health Information Exchange (HIE) remains squarely in toll booth mode, with gated stops and slowdowns that may or may not permit information to move forward. ...

Read the article →

HIPAA Breach Settlements and Ransomware Attacks - Is Your Practice Secure?

|

Two recent reports should make providers stop, take notice and make sure their practice's policies and procedures are up-to-date. The first one involves a HIPAA Breach settlement of a company with facilities in several states. The OCR memo stated "In addition to a $3.5 million monetary settlement, a corrective action plan ...

Read the article →

Are Your Computers Vulnerable to Cyber Attacks?

|

Healthcare providers must be vigilant in ensuring that software upgrades, also known as patches, are kept current. Failure to do so can lead to a HIPAA Security Breach with all its associated penalties. For example Windows XP no longer has security updates and should not be used in healthcare settings. On ...

Read the article →

Mobile Health: Growing Engagement and New Responsibilities

|

This week I'm blogging about an M-word. Not MACRA or MIPS, but Mobile Health or mHealth....

Read the article →

HIPAA and the Opioid Crisis

|

HIPAA and the Opioid Crisis guidance released by HHS.

Read the article →

HIPAA Disclosures to Family, Friends, and Others Involved in an Individual’s Care and for Notification

|

In light of recent tragic events, the OIG has released a reminder that HIPAA allows for certain disclosures in these types of situations. The reminder dated October 3, 2017 states the following: Following the recent mass shooting in Las Vegas, the HHS Office for Civil Rights (OCR) is taking this opportunity ...

Read the article →

Case Law Update: Just Because HIPAA Does Not Provide a Private Right of Action, Doesn't Mean that Other Avenues Exist

|

    August 4, 2017 Case Law Update: Just Because HIPAA Does Not Provide a Private Right of Action, Doesn't Mean that Other Avenues Exist   Simply stated, the Health Information Portability and Accountability Act (HIPAA) does not provide a private cause of action[1]. And, prior to the 2009 passage of the Health Information Technology ...

Read the article →

Cybersecurity - Are you sure you are secure?

|

An article by Medical Economics highlights the June report of the Health Care Industry Cybersecurity Task Force. Their report confirmed once again that healthcare providers are not adequately addressing cybersecurity as part of the compliance programs. The threat of hackers is very real and providers need to ensure that they have taken ...

Read the article →

Case Law Update: Just Because HIPAA Does Not Provide a Private Right of Action, Doesn't Mean that Other Avenues Exist

|

Simply stated, the Health Information Portability and Accountability Act (HIPAA) does not provide a private cause of action[1]. And, prior to the 2009 passage of the Health Information Technology for Economic and Clinical Health Act (HITECH Act)[2] and the more robust chain of liability (e.g. covered entities, business associates and ...

Read the article →

HIPAA Training Requirements

|

HIPAA Training must be an ongoing effort in every healthcare organization.

Read the article →

Counting HIPAA Violations

|

Information from the Omnibus Rule regarding how HIPAA violations are counted/calculated.

Read the article →

Sale of Protected Health Information (PHI)

|

To more fully understand federal regulations regarding the sale of PHI, review the comments and responses.

Read the article →

How to Properly Dispose Protected Health Information (PHI)

|

HIPAA requires covered entities to properly dispose of Protected Health Information (PHI) in the following manner: Paper, film, or other hard copy media has been shredded or destroyed such that the PHI cannot be read or otherwise cannot be reconstructed. Electronic media has been cleared, purged, or destroyed consistent with NIST Special Publication 800-88, Guidelines for Media ...

Read the article →

Mobile Devices are HIPAA Security Concern

|

Mobile devices are one of the most problematic areas for HIPAA security. Their ease of portability also makes it easy for them to be stolen or hacked. Because so many of the HIPAA breaches reported involved mobile devices, additional guidance has been issued by HealthIT.gov. Their informative web page offers additional ...

Read the article →

Psychotherapy Notes Provision of HIPAA

|

Of special interest to all behavioral health practitioners (both Covered Entities and NON-covered entities) is HIPAA's provision for psychotherapy notes. The privacy rule recognizes that psychotherapy notes need more protection than other types of PHI. Even if you are not a covered entity, we recommend understanding and implementing office procedures ...

Read the article →

HIPAA Exempt Offices (Paper)

|

It is a common misconception that every doctor’s office is (or must become) a HIPAA covered entity; however, the list of those who still qualify for exemption from HIPAA is rapidly shrinking. There are exceptions to the HIPAA requirements; if a practice sends or receives no transactions electronically, it is ...

Read the article →

Show older articles ↓


There are more articles. View all articles...

View articles for the current subject by subtopic:


HIPAA Tips


Access to this feature is available in the following products:
  • HCC Coder
  • Find-A-Code Professional
  • Find-A-Code Facility Base

Click here to Sign In to your account.

Click here to View Pricing now.


HIPAA Webinars

Click the webinar title to view a summary and link to the webinar video.


HIPAA Resources/Links



Complete & Easy HIPAA Compliance

A simple and practical guide to implementing HIPAA, HITECH, and Omnibus Final Rule components. Includes the forms and policies and information you need to meet compliance requirements. Plus over 50 customizable forms!


Suggest a Resource

If you know of a resource that should be included here (links, data, etc.) please Contact Us.

Free 28 Day Trial
No Credit Card Required
Pricing
Starting at $10/month
Sign In
Welcome back!