Health Information Compliance Alert
SHOULD WE PUT 'SELL BY' DATES ON AUTHORIZATIONS?
PDF
Question: Does an authorization always need an expiration date?
Answer: The Privacy Rule requires that an authorization have an expiration date or "an expiration event that relates to the individual or the purpose of the use or disclosure," according to the Web site for the Department of Health and Human Services.
For instance, HHS says that deadlines for authorizations may be set according to certain milestones, such as when the patient reaches the "age of majority" or when a year has elapsed since the signing of the authorization. Alternatively, HHS also says you may set an authorization to expire when certain conditions are met--for example, when someone terminates his or her enrollment in a health plan.
Authorizations remain valid until their expiration date or event unless the individual concerned revokes the authorization in writing before that date or event. According to HHS, instances in which an expiration date on an authorization exceeds a time period established by state law "[do] not invalidate the authorization under the Privacy Rule, but a more restrictive state law would control how long the authorization is effective."
Health Information Compliance Alert
- SECURITY:
5 Easy Ways To Protect Your Computers And Stamp Out Security Rule Breaches
Batten down workstations' hatches to ward off PHI leaks.
Even the most advanced internal security controls [...] - Security Compliance:
Don't Let Security Incidents Catch You By Surprise
Expert guidance helps you spot incidents before the feds spot you.
You have to protect your [...] - Information Technology Update:
HHS To Transition AHIC To Private Sector Entity
Health IT leadership not confined to federal decision makers.
The feds are moving to further integrate [...] - YOU BE THE SECURITY EXPERT:
SHOULD WE PUT 'SELL BY' DATES ON AUTHORIZATIONS?
Question: Does an authorization always need an expiration date?
Answer: The Privacy Rule requires that [...] - HIPAA Training:
Don't Get Rear-Ended By Your Front Desk
Key: Train staff on Privacy Rule's minimum necessary requirements.
When health care providers think of the [...] - Privacy Compliance:
The Right Way To Handle Patients' Confidential Communications Requests
4 steps to guarantee your staff doesn't spill the beans.
The Privacy Rule mandates that you [...] - Privacy Tool:
Use This Tool To Keep Track Of Patients' Confidential Communications Requests
Are you prepared to [...] - READER QUESTIONS:
GROUP HEALTH PLANS CAN DISCLOSE PHI
Question: Can a group health plan disclose protected health information to the plan sponsor without [...] - READER QUESTIONS:
'CONSENT' DOESN'T IMPLY 'AUTHORIZATION'
Question: What is the difference between "consent" and "authorization" under the Privacy Rule?
Utah Subscriber
[...] - READER QUESTIONS:
OFFICE GIFTS GET GREEN LIGHT
Question: Do doctor's offices need to obtain authorization before distributing any kind of promotional gift [...] - Industry News:
Medicaid Crackdown On Noncompliant Prescriptions Underway
Overlooking this law will guarantee denials.
On Oct. 1, state Medicaid directors began enforcing a law [...]