After paper medical records are scanned into our system we shred the paper. For ex., patient fills out paperwork on initial visit and afterwards that is scanned into our system. Do we need to maintain a log of this as we would if destroying the medical record? Every piece of paper with any patient info...
Answer Question | April 7, 2016 7:32 pm
When is insurance online UI restricted by HIPAA? Trying to determine what is and what is not allowed to be posted to a healthcare insurance online account. The subscriber wants to see all family members claims in one account.
Answer Question | September 4, 2013 4:19 pm
Healthcare IT seems to becoming a very specialized field of IT study. What is being done to train and develop the healthcare IT worker so they are prepared to address the tools – specialized and IT system linked tools, mobility devices, and the governance/risk/compliance aspects – particularly with HIPAA and other privacy issues?
Answer Question | September 19, 2016 6:42 pm
Analytics, HIPAA, Mobility, workforce development
How do you know if Business Associates is indeed HIPAA compliant, as the prime liability is on the medical practice (covered entity)?
Answer Question | February 15, 2012 8:25 pm
Business associates, Covered entities, HIPAA
Has anyone had experience with getting consent from patients to share EHI/PHI across entities. Are you looking at consenting patients electronically?
Answer Question | December 15, 2011 8:11 pm
Data exchange, EHI, HIPAA, PHI, Protected health information
Where in the HIPAA rule or updates does it say that covered entities must keep data backups a minimum of five miles away from the original site? Or, does it not say this? I’ve heard this in conversation and am looking for a confirmation from any HIPAA experts.
Answer Question | January 10, 2013 2:34 pm
Data backup, Data Warehouse, ehr, HIPAA
It is so very hard to go through the mountains of paperwork for Medicare and the upcoming meaningful use with all it’s complex parts, and also have to worry about HIPAA and how to meet all our security needs with emr sharing across networks and so forth. What is the best way to approach this?
Answer Question | August 25, 2011 8:14 pm
ARRA, HIPAA, Meaningful use, Medicare
So how are people currently addressing HIPAA compliance on mobile devices (smartphones and tablets). And are you using a single solution or multiple solutions for different device OS – Blackberry, iOS, Android, WebOS, ChromeOS, Symbian, Windows Phone 7, etc. Are you using native applications or web applications for patient information?
Answer Question | June 27, 2011 5:59 pm
Compliance, HIPAA, smartphones, tablets
It seems to me that the FDA is still a little apprehensive when it comes to getting involved in setting standards for medical device security – even though IT security issues in this space can directly impact patient safety. What are industry leaders and manufacturers doing to work together on this important issue of medical...
Answer Question | July 11, 2011 7:31 pm
FDA, HIPAA, medical devices, Modality, security
Can someone point me in the direction of the general guidelines for e-mail encryption requirements such as inbound e-mail requirements with PHI?
Answer Question | December 28, 2010 3:37 pm
How can RIS PACS help to meet HIPAA compliance.What kind of P&P will help to achieve this
Answer Question | September 25, 2010 7:16 pm
HIPAA, PACs, RIS, security
Much attention has been given to protecting EHR data from hackers who might break into a database and steal or alter information. However, I am more concerned about another kind of threat: the inside job. What is being done to prevent people and institutions that already have access to personal health care information from using...
Answer Question | November 3, 2011 8:34 pm
HIPAA, HIPAA violations
How can one bring HIPAA compliance using RIS-PACS technology?Is it mandatory for JCI accredited hospital to incorporate HIPAA compliance when PACS is being rolled out?
Answer Question | August 22, 2010 11:00 am
HIPAA, PACs, RIS
What are the best available full-disk encryption solutions for a mid-size facility?
Answer Question | March 9, 2010 5:19 pm
data security, encryption, HIPAA
In order for clients sites to comply with HIPAA, you must be prepared to receive and exchange electronic healthcare information. So does this indicate that Radiology groups, who aren’t currently on some sort of electronic platform, will have to make the transition so that their client sites/referring physicians will comply with meaningful use?
Answer Question | February 27, 2010 8:41 pm
EMR, HIPAA, Meaningful use
What are you doing to assess monitor the HIPAA 4010/A1 to 5010 conversion?
Answer Question | February 27, 2010 8:35 pm