As a Health Insurance Portability and Accountability Act (HIPAA)-covered provider, you are required to distribute a Notice of Privacy Practices (NPP) document to your patients. This notice fulfills a three-fold purpose: Describe to the patient the uses and disclosures...
As a HIPAA privacy or security officer, you are used to seeing HIPAA compliance issues pop up out of nowhere. You don’t have the time to chase down the details of every security incident in your organization. However, security incident tracking doesn’t...
HIPAA requires you to keep unauthorized people from viewing protected health information (PHI). Even when you’re disposing of unneeded PHI, you must still keep the data secure. According to the Department of Health and Human Services (HHS), “covered entities are not...
The HIPAA Privacy Rule requires you to verify the identity and authority of a person requesting protected health information (PHI) unless the person is already known by your organization. The rule is flexible about how you get verification. However, there are basic...
When law enforcement enters your organization demanding patient information, it can be intimidating. You know that the Health Insurance Portability and Accountability Act (HIPAA) requires you to keep patients’ protected health information (PHI) private. Ordinarily,...