HIPAA Articles and Resources
News and Important Information
A summary of the HIPAA law is included in Find-A-Code's specialty specific Reimbursement Guides as well as the ChiroCode DeskBook
A more thorough explanation can be found in the Complete & Easy HIPAA Compliance book which also includes editable and sample forms
Select the title to see a summary and a link to the full article.
November 12th, 2019
HIPAA Final Rule Eliminates HPID and OEID
Published November 12th, 2019|
Final rule eliminates the requirement for health plans to obtain a unique health plan identifier (HPID) and also eliminates the voluntary use of the other entity identifier (OEID). This change becomes effective December 27, 2019.
October 11th, 2019
Why is HIPAA So Important?
Published October 11th, 2019 - Last Review/Update October 15th, 2019|
Why is HIPAA So Important? Some may think that what they do to protect patient information may be a bit extreme. Others in specialty medical fields and research understand its importance a little more. Most of that importance lies in the information being protected. Every patient has a unique set of ...
June 21st, 2019
Small Breaches Can Be Subject to Large Penalties
Published June 21st, 2019 - Last Review/Update June 27th, 2019|
Small Breaches Can Be Subject to Large Penalties We may have heard about the large fines issued by the Office for Civil Rights (OCR) against big organizations like Anthem or the University of Texas MD Anderson Cancer Center. These organizations have been in the news due to privacy breaches that constituted violations ...
May 6th, 2019
HIPAA Violation Penalties Revised
Published May 6th, 2019|
On April 30, 2019 The Department of Health and Human Services (HHS) announced that “HHS will apply a different cumulative annual CMP limit for each of the four penalties tiers in the HITECH Act.” Unlike other notices which require a proposed rule with a comment period, this notice will take ...
April 15th, 2019
Watch out for People-Related ‘Gotchas’
Published April 15th, 2019|
In Chapter 3 — Compliance of the ChiroCode DeskBook, we warn about the dangers of disgruntled people (pages 172-173). Even if we think that we are a wonderful healthcare provider and office, there are those individuals who can and will create problems. As frustrating as it may be, there are ...
January 22nd, 2019
Truncated ICD-10-CM Official Guidelines for Coding and Reporting
Published January 22nd, 2019|
Adherence to ICD-10-CM official guideline's are required under HIPAA and adopted for all healthcare settings. We have made it easy to access guidelines and made them available on the code information page, either on the page you are viewing or view more information by selecting the ICD-10-CM Chapter Section/Guidelines and ...
December 18th, 2018
Are HIPAA Changes Coming?
Published December 18th, 2018|
On December 14, 2018, the Office for Civil Rights (OCR) issued a Request for Information (RFI). They are considering making changes to some of the HIPAA regulations. Earlier this year at the HIMSS (Healthcare Information and Management Systems Society) meeting, Roger Severino, the head of the Office for Civil Rights ...
September 26th, 2018
HIPAA Handling Patient Requests for Medical Record Restriction
Published September 26th, 2018 - Last Review/Update October 17th, 2018|
Healthcare compliance professionals frequently face confusing situations about sharing of protected health information (PHI). The Health Insurance Portability and Accountability Act (HIPAA) supports the protection of privacy of medical records. However, even when a patient does not authorize sharing of his record, there are permitted uses and disclosures, such as...
September 24th, 2018
Q/A: Do I Have to Accept Any New Patient?
Published September 24th, 2018 - Last Review/Update January 28th, 2019|
Question: Is it legal for us to not allow a patient to be seen in our office if their parents have bad debt with us?
August 31st, 2018
Finalized Confidentiality of Alcohol and Drug Abuse Patient Records Regulations
Published August 31st, 2018|
In January, the U.S. Department of Health and Human Services (HHS) issued updates to the privacy regulations regarding the confidentiality of patient information of substance use disorder patients (42 CFR Part 2). This notice included references to better alignment with HIPAA regulations, but did state that Part 2 is more protective ...
August 3rd, 2018
Q/A: Is it Legal to Shred Archived Patient Records After a Certain Amount of Time?
Published August 3rd, 2018 - Last Review/Update January 28th, 2019|
Shredding patient records. When is it appropriate? Read more to find out.
June 18th, 2018
Medicare Claim Submission Exceptions
Published June 18th, 2018 - Last Review/Update January 28th, 2019|
There are several exceptions to the Medicare "Mandatory Claim Submission Rule." What are they?
May 30th, 2018
Creating a Culture of Compliance in 2018
Published May 30th, 2018 - Last Review/Update June 4th, 2018|
This year (2018), healthcare organizations (Hospitals, Health Systems, and Physician Groups/Practices) must focus on the criticality of creating a culture of compliance to ensure effectiveness and efficiency. Focusing on "compliance"-only approaches leaves healthcare organizations exposed to areas of liability oftentimes far more than what they could ever imagine or even...
May 30th, 2018
What is a Legal Hold and e Discovery Anyway
Published May 30th, 2018 - Last Review/Update June 4th, 2018|
Whether I am assisting clients or presenting, I am often asked about legal holds and e-discovery. The transition from paper to electronic records, which include emails, computer faxes, protected health information ("PHI"), personally identifiable information ("PII") and documents that are created, received, maintained or transmitted in an electronic format created...
May 7th, 2018
Q/A: How Do I Respond to a Patient's Request to Not Submit the Claim to Their Insurance?
Published May 7th, 2018 - Last Review/Update January 30th, 2019|
A number of patients now have high deductible plans. Sometimes, deductibles can be $5000 or $10,000. My payer contract states that I must submit all claims to insurance for covered services. However, sometimes patients with these high deductibles come to my office and state that they would prefer to receive a modest discount for paying cash and in turn, not have their services submitted to insurance. As a doctor, this places me in a tough situation. Do I follow the patient's wishes or the payer contract?
April 24th, 2018
Published April 24th, 2018 - Last Review/Update May 2nd, 2018|
Like a moth to a flame, we periodically have to take a close look at FHIR. As mentioned in the March 26 blog post, interoperability was the hot topic at HIMSS, and FHIR is at the blazing edge of interoperability...
April 23rd, 2018
Q/A: Someone Broke into My Office. What do I do Now?
Published April 23rd, 2018 - Last Review/Update January 24th, 2019|
My office was broken into last night. I use electronic health records, but we do store some protected health information for my patients in paper files. These files are not secured, so the burglars did have access to them. It did not appear that the files were touched as the burglars were looking for cash. What responsibilities to I have to my patients in a situation like this? Do I need to contact them and advise them that their PHI could have been compromised?
February 27th, 2018
Health Information Exchange and Trusted Exchange Frameworks
Published February 27th, 2018 - Last Review/Update April 12th, 2018|
Despite progress in health IT, Health Information Exchange (HIE) remains squarely in toll booth mode, with gated stops and slowdowns that may or may not permit information to move forward. ...
February 5th, 2018
HIPAA Breach Settlements and Ransomware Attacks - Is Your Practice Secure?
Published February 5th, 2018|
Two recent reports should make providers stop, take notice and make sure their practice's policies and procedures are up-to-date. The first one involves a HIPAA Breach settlement of a company with facilities in several states. The OCR memo stated "In addition to a $3.5 million monetary settlement, a corrective action plan ...
February 1st, 2018
Are Your Computers Vulnerable to Cyber Attacks?
Published February 1st, 2018|
Healthcare providers must be vigilant in ensuring that software upgrades, also known as patches, are kept current. Failure to do so can lead to a HIPAA Security Breach with all its associated penalties. For example Windows XP no longer has security updates and should not be used in healthcare settings. On ...
January 31st, 2018
Mobile Health: Growing Engagement and New Responsibilities
Published January 31st, 2018 - Last Review/Update March 29th, 2018|
This week I'm blogging about an M-word. Not MACRA or MIPS, but Mobile Health or mHealth....
January 24th, 2018
HIPAA and the Opioid Crisis
Published January 24th, 2018|
HIPAA and the Opioid Crisis guidance released by HHS.
There are more articles. View all articles...
View articles for the current subject by subtopic:
Select the webinar title to view a summary and link to the webinar video.
February 9th, 2018
What Every Spine Care Expert Needs to Know NOW- The X Factor
How Spine Care Experts Utilize & Get Paid for X-rays. How to select what x-ray views to bill for in certain diagnostic cases. New rules for x-ray reimbursement for 2018. HIPAA requirements for digital x-ray back up, EHR integration, and transmission. What findings are needed to justify medical necessity for spine x-rays? How to maximize your x-ray imaging department productivity. Discover the ROI of digital over plain film and in-house vs referring out. Biomechanical line drawings and measurements in your ROF - the key to better patient compliance.
September 20th, 2017
HIPAA, Complete and Easy
Have you been told that you have to spend many hundreds, if not thousands of dollars to become HIPAA compliant? While HIPAA is complex and there is a lot to learn, anyone can do it with the right tools. In this presentation, Dr. Gwilliam will introduce you to some of these tools from the newly updated HIPAA book available in the ChiroCode store. If you are a do it yourself type, and you don't want to spend a lot of money, and you are overdue for an update to your HIPAA Compliance Manual, this webinar is for you.
Are You a Covered Entity? - by CMSBreach Notification Rule by HHSCMS 1500 Claim FormsCMS Complying with Medicare Signature Requirements Fact SheetComplete & Easy HIPAA Compliance 4th EditionCyber Security ChecklistDigital Copier Data Security: A Guide for BusinessesDisposal of Protected Health InformationFAQs About the Disposal of Protected Health Information - HHSGuidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized IndividualsGuidelines for Media Sanitation by NISTHealth Information Privacy - by HHSHealth Insurance Portability and Accountability Act (HIPAA) Privacy Rule and the National Instant Criminal Background Check System (NICS)HHS Compliance LinksHHS Fee Calculation Guidance for PHI Record RequestsHHS Guidance on HIPAA & Cloud ComputingHIPAA AuditsHIPAA Basics for Providers: Privacy, Security, and Breach Notification Rules by CMSHIPAA Law - Regulation TextHIPAA Marketing Guidelines by HHSHIPAA Minimum Necessity RequirementHIPAA Notice of Privacy Practice Pamphlet for PatientsHIPAA Privacy and Security and Workplace Wellness ProgramsHIPAA regulations and sign-in sheets - by HHSHIPAA Research Information by HHSHIPAA Risk Analysis and Risk Management Tip Sheet by OCRHIPAA Risk Assessments are Essential to Avoid LiabilityHIPAA Security Rule Crosswalk to NIST Cybersecurity FrameworkHIPAA Topics PageHIPAA training materials by the Department of Health and Human ServicesHIPAA: Health Insurance Portability and Accountability Act by AMAMedicare Electronic Claims Exemption - by CMSNational Institute of Standards and Technology (NIST) Definition of Cloud ComputingNotice to the Secretary of HHS - Breach of Unsecured Protected Health InformationNPI ApplicationOCR Fact Sheet: Ransomware and HIPAAOCR HIPAA Complaint Portal AssistantOfficial HIPAA Guidelines for Media SanitationOmnibus Final Rule in the Federal RegisterQ/A: How Do I Respond to a Patient's Request to Not Submit the Claim to Their Insurance?Search the NPI RegistrySecurity Risk Analysis Tip Sheet: Protect Patient Health Information by CMSSecurity Risk Assessment by HealthIT.govSliding Fee Schedule information - by the Health Resources and Services Administration (HRSA)Summary of the HIPAA Privacy Rule by HHSSummary of the HIPAA Security Rule by HHSTaxonomy Code ListUnderstanding Patients’ Health Information Rights by HealthIT.govUnderstanding the Importance of Audit Controls by OCRUnique Health Identifier for Individuals White Paper by HHSYour Mobile Device and Health Information Privacy and Security - by HHS
HIPAA Books & Training
Laws & Regulations
suggest a resource
If you know of a resource that should be included here (links, data, etc.) please contact us.