Should you be using Email for Patient Service?

The HIPAA Security Rules allow you to communicate with emails that include Protected Health Information as long as the patient acknowledges and accepts the risks associated with email.  The key question is should you?

Should You Take a Second Look at Your Business Associates?

The HIPAA Omnibus rules significantly affect Business Associate (BA) relationships and will require an adjustment to your Business Associates Agreement (BAA).  Indeed, you may need to take another look at your BAAs, contractual relationships and even your vendor strategy.

How Do You Perform An Appropriate Security Risk Analysis?

The Meaningful Use Measures include a Security Risk Analysis.  The Security Risk Analysis evaluates your practice’s compliance with the HIPAA Security Standards.  Failure to complete the Security Risk Analysis can prevent you from collecting the EHR incentive and/or risk the EHR Incentive you do receive in the event of an audit. 

In a disturbing number of situations, practices are not properly completing the Security Risk Analysis.

Will HIPAA Omnibus’ Impermissible Disclosure and Use Standards Complicate Your Compliance Efforts?

The HIPAA Omnibus Rules, released in January 2013, will dramatically affect how you manage and deal with the impermissible disclosure and use of Protected Health Information (PHI).  Indeed, the new HIPAA Omnibus rules place a burden on your healthcare organization to analyze and document your review of potential PHI breaches.  As a practical matter, your healthcare organization could be looking at substantial problems complying with these requirements unless you strengthen your monitoring strategy.

What are the Key EHR Training Strategies?

Too many practices are struggling with performance and productivity issues in the use of their EHRs.  In many cases, the real problem is the strategy and process around the training of staff and physicians.  Failure to focus the training strategy on your practice and not the EHR product can lead to a variety of problems that will damage your efforts for years to come.

Why Do You Need to Attain Meaningful Use by December 31, 2013?

The final rule for Stage 2 Meaningful Use (MU) presents a number of strategic challenges for practices that are attaining Meaningful Use and places those practices that will not meet Meaningful Use at a significant disadvantage.

How Can You Achieve and Attest to Meaningful Use?

In order to qualify for the Medicare EHR Incentive, you have to attest that each Eligible Provider (EP) meets the Meaningful Use requirements. The two key issues are how can you get a provider to work up to the MU Measure Requirements and how can you document the same for your Eligible Providers.