Access your Pro+ Content below.
ONC's six ways to avoid surprises during an unannounced HIPAA audit
This article is part of the Pulse issue of May 2014
Security may not be a sexy project for IT to get excited about -- until something goes wrong. The trick is getting the attention of healthcare IT executives before a data breach happens. At HIMSS 2014, ONC Chief Privacy Officer Joy Pritts provided some tips to stay on track compliance-wise and avoid penalties. Joy Pritts ONC Chief Privacy Officer The first and most important item on the list? A security assessment. Then, documentation of the assessment and what your organization is doing to address the risks it uncovers. Pritts offered tips for performing a risk assessment that could help prevent data breaches and make sailing smoother in the event of an unannounced HIPAA audit, which the U.S. Department of Health and Human Services (HHS) is now empowered to do under last year's final HIPAA omnibus rule: Forget your facility's size. Factors such as organizational size do not negate the need for a security assessment. HHS makes tools and resources available for all HIPAA-covered entities. Moreover, ONC is working on new tailored ...
Access this PRO+ Content for Free!
Features in this issue
Communications badge vendors find their products fill a crucial need in healthcare, as Vocera remakes itself as a device-independent platform.
A health system in Detroit arms its hospital staff with communications badges. They've found them useful in treating potentially violent patients.
Organizations use decision support in many ways, but when providers have embedded analytics at the bedside, robust information helps deliver care.
Crowdsourcing physicians' opinions online may be the future of patient care, but not before liability and reimbursement issues are settled.
From HIMSS 2014, ONC Chief Privacy Officer Joy Pritts offers survival strategies for new HIPAA audits under the omnibus rule.
News in this issue
Annual survey finds new worries among providers for healthcare data breaches -- but some indicators show they're getting a handle on containing risks.
Columns in this issue
Clinicians are eager for mobile devices to play a role in patient care. First, technical and legal requirements must be met to safely encourage BYOD.