Oncology & Hematology Coding Alert

Question: I’m always concerned about protecting our patients’ health information, especially if they receive care that they don’t want to become common knowledge. What’s your advice for these situations, especially when the patient receives care from multiple departments in the hospital?

Oklahoma Subscriber

Answer: You should be concerned on your patients’ behalf. Just because you flag a service a patient doesn’t want disclosed to his health plan doesn’t mean information couldn’t still get leaked or pop back up at any time, such as during follow-up care services. But you can plug these holes by asking certain questions to dig down into your organization’s information flow.

When a patient requests you not disclose protected health information (PHI) to his insurer, make sure you can thoroughly honor this request by asking the following questions:

1. When the physician writes her plan for the patient, where in the record will the patient’s disclosure-restriction request be identified?
2. How will the information travel to various departments?
3. Who will receive the information, and how will they receive it?
4. Are there checks and balances built into the system to identify the information is traveling to the end user?
5. How can the patient be assured the information will remain confidential?
6. If the patient’s disclosure-restriction request is breached, what systems will go into effect to assure other patients’ information is not at similar risk?