Health Information Compliance Alert
SHOULD WE SOUNDPROOF OUR OFFICE?
PDF
Question: I'm a physician in a small practice. The walls in our office are kind of thin and you can sometimes hear voices through the walls. Are we in violation of the Privacy Rule? In order to be compliant, should we remodel so all the rooms are soundproof? Alternatively, HHS notes that some reasonable measures to secure patient privacy might include: The bottom line: HHS cautions that covered entities are responsible for reviewing their own practices and determining their specific privacy needs. A covered entity should have a clear, realistic sense of what the most pressing and dangerous privacy threats would be in its individual case, and will have to balance efforts to minimize or eliminate these threats with financial concerns (for example, financial concerns that might preclude a small practice from doing a costly renovation).
Texas Subscriber
Answer. No, you are not in violation. Covered entities, while required to make "reasonable efforts" to safeguard a patient's personal health information (PHI) and maintain privacy, are not required to eliminate all risk of PHI disclosure, according to the HHS Web site.
Thus, nothing in the Privacy Rule specifically requires facility renovation or significant physical restructuring. So, for example, according to HHS, none of the following measures would be necessary to demonstrate compliance with the Privacy Rule:
• Soundproofing
• Private rooms
• Encryption of emergency medical radio/wireless equipment
• Telephone encryption
• In a pharmacy, asking waiting customers to stand back from the counter while a customer receives counseling.
• In areas (for example, in a clinic or triage area) where multiple patients are receiving treatment and/or talking to their physician(s), using cubicles, dividers, shields, curtains, or similar barriers to offer some privacy.
• Ensuring that patient files are supervised or locked.
HHS suggests that covered entities get some ideas for what they should be doing by checking out what other "prudent health care and health information professionals" are doing to safeguard patient privacy.
Health Information Compliance Alert
- NPI UPDATE:
Keep These Key Dates In Mind For NPI Compliance
If you're not careful, claim rejections could start this summer.
If your to-do list includes managing [...] - Electronic Transactions:
The Feds Are Making Health IT A Top Priority--Are You?
Selecting certified software is a crucial step on the road to compliance.
The government is demanding [...] - Having Trouble Using Electronic Health Records?
DOQ-IT project may be your best bet.
If you use or are thinking of using EHR, [...] - Training Strategies:
From The Ground Up--Tips For Building Your Security Training Program
Use these simple guidelines to secure your organization's training.
Are you certain your employees have all [...] - YOU BE THE SECURITY EXPERT:
ARE WE ALLOWED TO DISCLOSE PHI To TELEMARKETERS?
Read the question below and decide how you would handle it before you compare it [...] - Compliance Resource:
Ever Wonder How to Write a Business Associate Contract?
If you find yourself flummoxed when confronted with the challenge of writing business associate contracts, [...] - READER QUESTIONS:
SHOULD WE SOUNDPROOF OUR OFFICE?
Question: I'm a physician in a small practice. The walls in our office are kind [...] - READER QUESTIONS:
STRATEGY HELPS PREVENT PHI LEAKS FROM CHARTS
Question: I work in a student health clinic for a major university and I have [...] - Clip And Save Tool:
Record Your Employees' Training With This Form
Documenting training could serve you well if auditors come to call.
Don't forget to log each [...] - Industry News:
New Bill Promotes E-Records Benefits
The "Medicare for All" bill would help the some 46 million Americans currently without health [...] - NPI Questions? Look No Further
If you have a general question about the contingency plan, check the Frequently Asked Questions [...]