With the relatively slow roll-out of regulations and enforcement, HIPAA audits always seemed as if they were something to be concerned with in the future, but not necessarily in the…
Category: HIPAA & Compliance
Even Hospital Billing Done Correctly can have Claims Denied by a RAC
Convinced that your hospital billing department is doing its job well, and yet your claims get denied by a RAC? You’re not alone. Did you know that in one study…
HIPAA Breach of PHI: Repairs are Costly, but Avoidance can be Simple!
The HIPPA Privacy Rule addresses Protected Health Information (PHI), and the HIPAA Security Rule directly address Electronic Protected Health Information (ePHI). In both cases, a HIPAA breach can be a…
HIPAA Compliant Email: some proactive strategies
Part two of a two-part series on HIPAA Compliant Email In Part I of this post, we reviewed some of the statements that the Office of Civil Rights (OCR), the…
HIPAA and Email: there are rules
Part one of a two-part series on HIPAA and email. Email has been widely used by both businesses and the general public for much of the last thirty years, and…
Medical Record Documentation … will your’s survive a RAC audit?
Does your medical record documentation support the codes you’re using? And why should you care? Well, one reason is because the Centers for Medicare and Medicaid (CMS) has just announced…
Focus on Skilled Nursing and the 2012 OIG Work Plan
On October 5, 2011, the Office of the Inspector General (OIG) published it’s long anticipated (drum roll please) … OIG 2012 Work Plan. For those of you who are not…
OIG Work Plan Update – “What’s new for 2012?”
The Office of the Inspector General (OIG) released its 2012 Work Plan the other day, as they do every year at about this time. This is the annual publication that…
A Business Associate HIPAA Risk Assessment … “Why is it necessary?”
Organizations that were once “just” business associates of Covered Entities are realizing that they’re subject to HIPAA regulations to the same extent as the Covered Entities they contract with. And…
HIPAA Security Risk Assessment and Meaningful Use
There’s lots to do and keep track of when your medical practice is preparing for Meaningful Use Attestation. With that in mind, one of the Meaningful Use Criteria that I…
Business Associate Agreements – HIPAA and HITECH
Since 2003 HIPAA regulations have required that Business Associate Agreements be in place. However, some of the most far-reaching provisions of the HITECH Act of 2009 have to do with…
HIPAA Violation – Your Risk of Being Audited Just Went Up
Up to now, the many healthcare organizations that are Covered Entities under HIPAA law did not have to worry too much about outside scrutiny of their compliance activities. Most entities…
HIPAA Compliance: EHR Incentives, Risk Assessment, and Penalties
Financial penalties for HIPAA violations. How real are they? How about a recent $4.3 million civil penalty faced by Cignet Health of Prince George’s County, Maryland; or the also recent…
The Red Flags Rule Doesn’t Apply to Physician and Healthcare Organizations. “Really?”
Has your medical billing consultant told you that the Red Flags Rule has been repealed for physician practices and other healthcare organizations? Now that Congress has passed and sent to…
In Healthcare, “Exposure is the New Privacy.” Your Online Presence has Arrived.
We are entering, actually, we already are deep into the digital medical world without a clear and proven guide to ensure privacy. Patients themselves disclose ePHI about them on social…
Physicians Already Seeing Early Impact of Healthcare Reform – Are You Prepared?
Even though many provisions of the Patient Protection and Affordable Care Act are implemented in 2014, some are active right now. Many of these changes will affect what the covered…
“Health Reform Bill” & New Rules About Medical Compliance
The Patient Protection and Affordable Care Act (Public Law 111-148), also referred to as the “Health Insurance Reform Bill”, is a federal statute that was signed into law by President Barack…
Understanding the IRO – Independent Review Organization
You need to select and understand the function of your IRO, as you respond to the Corporate Integrity Agreement. Back to Video Library
EHR Due Diligence – Include a Site Visit to Existing Users
An On-Site Visit to an existing user is a critical element in the selection of an EHR system As part of the due diligence process you go through, you should,…
Are your Compliance Policies and Procedures ready for Red Flags Rule?
The FTC has extended the effective date of the FTC’s Red Flag Rules several times in the past several months, but it looks like they will not be extended again. The…