Health Information Compliance Alert
Privacy Tips ~ Fine Tune Your Lab's HIPAA Compliance With These 3 Tips
PDF
Don't let lab data streams spill over into privacy violations. While clinical labs may occupy a unique position under the Health Insurance Portability and Accountability Act umbrella, their compliance efforts in certain ways mirror those of other covered entities. Our HIPAA experts offer the following lab privacy strategies:
• Make an information flowchart for your organization. HIPAA privacy compliance requires more than a detailed, legal understanding of the regulation: it requires an intimate understanding of how information functions in the lab.
HIPAA is not an IT problem, says Michael Geldart, an attorney in Holland & Knight's St. Petersburg, FL office. And, "it's not a policy problem: it's an operational issue," he says. So, it's time to figure out how your organization manages data, he suggests.
Only when you have a precise map of the way information circulates can you understand what parts of HIPAA apply to your laboratory, Geldart concludes.
Gwen Hughes, professional practice manager for the American Health Information Man-agement Association, agrees. An information flowchart is the first thing AHIMA recommends that covered entities do, she says. Without that information, you can't analyze the minimum necessary requirements and you can't determine how to train your workforce, she warns. The privacy officer can spearhead efforts to chart the paths of information in the lab, but make sure many people get to check it over and add to it.
• Use a checklist of major HIPAA requirements to ensure you've covered everything. That way laboratories can ensure that they've considered each item as it relates to their specific situation, advises Hughes. Include these items on your checklist: privacy notices, authorization forms, state law-HIPAA privacy requirement comparisons, minimum necessary requirements, HIPAA-forbidden disclosures and workforce training.
• Act on the provisions that aren't going to change. Labs "should be preparing for HIPAA compliance as it relates to the other areas where [the Department of Health and Human Services] has not indicated any change of the rules," recommends Stephen Weiser with Michael Best & Friedrich in Chicago.
Health Information Compliance Alert
- PRIVACY COMPLIANCE ~ 8 Questions To Ask When Drafting HIPAA Sanction Policies
Have you recently taken a look at your list of what constitutes a violation of [...] - Electronic Health Records ~ You Could Soon Get Help Upgrading Your Computer Systems
CMS, OIG loosen up on donations of e-prescription, EHR systems. Hospitals will be able to [...] - You Be The Security Expert ~ Do We Need A Backup For Our Audits?
Read the situation below and decide how you would handle it before you compare it [...] - Privacy Compliance ~ Use This Advice To Prevent Privacy Breaches In Your Clinical Lab
Direct or indirect treatment provider? Know your obligations. Many labs may still be unsure about [...] - Privacy Tips ~ Fine Tune Your Lab's HIPAA Compliance With These 3 Tips
Don't let lab data streams spill over into privacy violations. While clinical labs may occupy [...] - Training ~ Keep HIPAA Simple:
Link Privacy Training To Jobs For Best Results
Are your business associate relationships properly labeled? Teaching staff about HIPAA can be daunting, but [...] - Reader Question ~ "MARKETING," "RESEARCH" OR JUST PLAIN QA?
Question: I work for a chemical dependency care facility, and we're considering creating new services [...] - Reader Question ~ PHI DISCLOSURE AND THE BADGE
Question: Here's a hypothetical situation, but one that happens all too often: A traffic accident [...] - Reader Question ~ SIGN BEFORE TEST RESULTS GO ON THE NET
Question: If a patient wishes to have test results sent to him via e-mail and [...] - INDUSTRY NEWS ~ Will Your Computers Be Able To Talk To Each Other?
House and Senate set to hash out fate of health IT. Stay tuned: You could [...] - Compliance Tool:
2 Response Letters Keep Patients Posted On Complaints
Put your actions in writing and protect against further criticism.
Don't let your patients think that [...]