Mental Health/substance abuse providers and providers treating HIV/AIDS patients are held to a higher standard when it comes to protecting medical records, requiring additional levels of consent and analysis prior
Continue Reading HIPAA Right to Access Initiative Targets Psychiatric/Mental Health Providers
HIPAA Authorizations
Updated OCR Guidance on Contacting Recovered COVID-19 Patients
The Office for Civil Rights within the Department of Health and Human Services (OCR) provided guidance in June that reassured covered entity health care providers and that it is generally…
Continue Reading Updated OCR Guidance on Contacting Recovered COVID-19 Patients
Tell Me Again: What Can Covered Entities (or their Business Associates) Charge for Medical Records Requests?
The answer to this question has changed yet again. I’ve blogged on this topic several times in the past (see here, here and here), and described the question…
Continue Reading Tell Me Again: What Can Covered Entities (or their Business Associates) Charge for Medical Records Requests?
The Cost for a Copy of Medical Records? It May Depend Who’s Asking
The Report to Congressional Committees of the U.S. Government Accountability Office (“GAO Report”), required under the 21st Century Cures Act, came out about a month earlier than…
Continue Reading The Cost for a Copy of Medical Records? It May Depend Who’s Asking
Not So Fast! HIPAA (Surprisingly) Doesn’t Apply to THAT!
Many employers who have had it drilled into them that HIPAA applies to protected health information (PHI) of employees are often surprised to learn that the applicability of HIPAA to…
Continue Reading Not So Fast! HIPAA (Surprisingly) Doesn’t Apply to THAT!
Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
The aftermath of the Orlando nightclub tragedy has led to much discussion about ways that healthcare providers can and should deal with compliance with health information privacy requirements in the…
Continue Reading Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
“I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
We blogged on this back in early May, but compliance with individuals’ rights to access their PHI under HIPAA is even more critical now that OCR has announced that its…
Continue Reading “I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
I Want My PHI! HIPAA Access Rights, Authorizations and HHS Guidance
Daily struggles to protect personal data from hacking, phishing, theft and loss make it easy to forget that HIPAA is not just about privacy and security. It also requires covered…
Continue Reading I Want My PHI! HIPAA Access Rights, Authorizations and HHS Guidance