HIPAA Violation rocks hospital! An employee at St. Charles Health system accessed over 2400 patients’ medical records over a two-year period because they were curious. We all know that curiosity…
Category: HIPAA & Compliance
Medical Device Cybersecurity – 4 Steps to Take.
As if the headlines today are not scary enough, now we have to be worried – very worried, it seems – about medical device cybersecurity! Reports of hacking and other…
Employee Medical Records in the EHR Environment
As more and more hospitals and medical practices adopt electronic health records (90% by end of 2017) , these organizations must grapple with how HIPAA Privacy and Security rules apply…
Outsourcing Compliance in Healthcare – 5 point checklist
Outsourcing Compliance, especially in a small hospital setting, maybe the best way to be in compliance with required regulations and apply limited resources. Why do many healthcare organizations still not…
HIPAA Policy Requirements
Have you ever heard the saying “the job is not complete until the paperwork is done?” Covered Entities and Business Associates should be cognizant of the importance of finalizing and…
ACO Compliance – Unique and Different!
ACO Compliance include requirements specific to the nature and operations of an ACO. It is somewhat different than a “traditional” healthcare provider, be it a Covered Entity or a Business…
Corporate Integrity Agreement – time to select or replace your IRO
Is your IRO interfering with your obligations under your Corporate Integrity Agreement? One of the important choices healthcare organizations that are subject to a Corporate Integrity Agreement must make is…
HIPAA Breach Disclosure Requirements
In my previous blog HIPAA Breach Notification Rule, I discussed the definition of a HIPAA Breach, and some of the requirements for HIPAA Breach Notifications. Today we will look at…
HIPAA Breach Notification Rule
HIPAA Breach Notification Rules under the HITECH and GINA Act issued modifications to HIPAA Privacy, Security, and Enforcement. This is commonly known as the Omnibus Rule. The Omnibus Rule mandates…
OIG 2017 Work Plan – Physician Practice Impacts
Totaling over 100 pages this year, you can download the OIG 2017 Work Plan here on our website. It was issued on November 15, 2016. This is the second year in a row…
2017 OIG Work Plan – Information Technology (EHR)
The 2017 OIG Work Plan is again addressing information technology, with special emphasis on certified electronic health records systems (EHR). On November 15, 2016, the Office of Inspector General (OIG)…
OIG Work Plan 2017 – What’s New for Hospitals?
The OIG Work Plan 2017 describes audits and evaluations that are underway or planned and certain legal and investigative initiatives that are continuing. This overview of the 2017 OIG Work…
OIG Work Plan 2017 – An Introduction
On November 15, 2016, the Office of Inspector General (OIG) released the OIG Work Plan 2017. Totaling over 100 pages this year, you can download the OIG 2017 Work Plan here on our…
Skilled Nursing Facility (“SNF”) Compliance Program
An SNF Compliance Program is an essential part of any Skilled Nursing Facility operation! In my earlier Nursing Home Compliance Program blog post, I posed some questions to our Director…
Nursing Home Compliance Program – The Who, What, When, Why and How
Nursing Home Compliance Program – the term elicits a myriad of reactions from providers, ranging from indifference to anxiety. Regardless of your feelings, the requirement for a SNF compliance program…
Does your Hospital have a Pokemon Policy?
Many hospitals are dealing with the latest mobile device game craze, Pokemon Go, but not everyone is asking staff and visitors to refrain from playing on the hospital campus. Pokemon No…
Ransomware and HIPAA
Ransomware and HIPAA: the Federal Government has recently issued two resource documents: the first discusses protecting your network from ransomware, the second, a Ransomware and HIPAA fact sheet. Both are…
2016 OIG Work Plan Nursing Homes Mid Year Update
The 2016 OIG Work Plan Nursing Homes has released the “Fiscal Year Work Plan, Mid-Year Update 2016” document, which provides an update to the 2016 OIG Work Plan, which was…
OIG 2016 Work Plan Update What’s New?
This OIG 2016 Work Plan Update mid-year summarizes new and ongoing reviews and activities that OIG plans to pursue with respect to HHS programs and operations during the current fiscal…
Real-Life Example of a HIPAA Breach Via Email
Have you ever wanted to see an example of a HIPAA breach that occurred in real life? Look no further, I have a story to tell. At The Fox Group,…