Jun 10th, 2011
As required by the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, covered entities must make available, upon request, an accounting of certain disclosures of the individual’s protected health information (PHI) made during the six years prior to the request. Under a proposed rule change, patients could also request and receive an “access report” to ...
In Audit
May 31st, 2011
An Office of Inspector General (OIG) audit, released May 16, reveals that basic protocols to secure patients’ electronic protected health information (ePHI) have been overlooked in the effort to facilitate widespread adoption of electronic health records (EHRs). In other words, EHRs are vulnerable to “hacking,” severely compromising patient privacy and inviting opportunities for identity theft ...
Jun 1st, 2010
By Stacy N. Harper, JD, MHSA, CPC HIPAA Privacy Rules grant individuals the right to request additional restrictions on the uses and disclosures of their protected health information (PHI). Until Feb. 17, it was entirely at the discretion of the health care provider whether to grant this request. This is no longer the case. The ...