Health Information Compliance Alert
Link Privacy Training To Jobs For Best Results
PDF
Are your business associate relationships properly labeled? Teaching staff about HIPAA can be daunting, but your job will be more manageable if you tailor your policy training to what employees actually need to do their jobs compliantly. Employees Want To Cut To The Chase And Kristen Rosati, an attorney with Coppersmith Gordon Schermer Owens & Nelson in Phoenix echoes a mantra that is broadly applicable to all covered entities struggling with this concern: "What's most important to realize about HIPAA training is that you don't have to train your employees or your work force members on the HIPAA privacy standards. You have to train them on your policies."
Sort out business relationships: Providers who have multiple entities need to begin with a thorough examination of how their operations are organized, says Robert Markette, an attorney with Indianapolis-based Gilliland & Caudill. They should determine whether they will need to designate themselves as affiliated, hybrid, or an organized health care arrangement, he notes.
Hidden advantage: There are great benefits for providers who do this, such as reducing the number of privacy notices and the ability to reduce the number of business associates, adds Markette. "Because of the efficiencies this can create, I would advise anyone doing this analysis to start with an evaluation of the association to determine the most efficient way to designate any associated providers or other supporting organizations," he directs.
Rosati says covered entities need to focus on what their employees need to know in order to ensure that their hospital or health care organization doesn't violate the privacy rule. To do that, they'll need to create policies that incorporate all the requirements, and then see to it that the employees are aware of the policies that will affect their work.
Training will vary depending on the type of work they do for the health care organization. "Employees who don't handle health information as part of their job certainly won't need as much training as clinical personnel," asserts Rosati, who offers up a janitorial staffer as an example.
"They need to be trained about what to do if they find a medical record in the trash. Or, for example, if someone sees a celebrity in the hospital, their presence there is confidential and you can't tell your friends if some celebrity showed up in the place."
The best approach is to be very practical about who needs to know what in a particular organization, privacy experts agree.
Health Information Compliance Alert
- PRIVACY COMPLIANCE ~ 8 Questions To Ask When Drafting HIPAA Sanction Policies
Have you recently taken a look at your list of what constitutes a violation of [...] - Electronic Health Records ~ You Could Soon Get Help Upgrading Your Computer Systems
CMS, OIG loosen up on donations of e-prescription, EHR systems. Hospitals will be able to [...] - You Be The Security Expert ~ Do We Need A Backup For Our Audits?
Read the situation below and decide how you would handle it before you compare it [...] - Privacy Compliance ~ Use This Advice To Prevent Privacy Breaches In Your Clinical Lab
Direct or indirect treatment provider? Know your obligations. Many labs may still be unsure about [...] - Privacy Tips ~ Fine Tune Your Lab's HIPAA Compliance With These 3 Tips
Don't let lab data streams spill over into privacy violations. While clinical labs may occupy [...] - Training ~ Keep HIPAA Simple:
Link Privacy Training To Jobs For Best Results
Are your business associate relationships properly labeled? Teaching staff about HIPAA can be daunting, but [...] - Reader Question ~ "MARKETING," "RESEARCH" OR JUST PLAIN QA?
Question: I work for a chemical dependency care facility, and we're considering creating new services [...] - Reader Question ~ PHI DISCLOSURE AND THE BADGE
Question: Here's a hypothetical situation, but one that happens all too often: A traffic accident [...] - Reader Question ~ SIGN BEFORE TEST RESULTS GO ON THE NET
Question: If a patient wishes to have test results sent to him via e-mail and [...] - INDUSTRY NEWS ~ Will Your Computers Be Able To Talk To Each Other?
House and Senate set to hash out fate of health IT. Stay tuned: You could [...] - Compliance Tool:
2 Response Letters Keep Patients Posted On Complaints
Put your actions in writing and protect against further criticism.
Don't let your patients think that [...]