Home Health & Hospice Week

HIPAA:

Don't Let A Lost Phone Torpedo Your HIPAA Compliance Record

Published on Fri Oct 07, 2016

Small breaches, charitable status won’t save you from big penalties.

Pay close attention to a case the HHS Office for Civil Rights cited in announcing its crackdown on small breaches, or risk the same fate.

Back in June, OCR announced a $650,000 settlement with Catholic Health Care Services of the Archdioceses of Philadelphia (CHCS) to settle potential HIPAA violations including a breach.

Background: At the time of the incident, CHCS provided management and IT services as a Business Associate to six skilled nursing facilities. In April 2014, OCR launched an investigation after receiving notification that CHCS had a breach involving the theft of a CHCS-issued employee iPhone.

The iPhone contained hundreds of SNF residents’ PHI, including Social Security numbers, diagnoses and treatment information, medical procedures, names of family members and legal guardians, and other medical information. The iPhone was not encrypted nor password protected.

OCR’s investigation revealed that, at the time of the breach incident, CHCS had no policies addressing the removal of mobile devices containing PHI from its facility, nor what to do in the event of a security incident. CHCS also had no risk analysis and risk management plan, OCR claims.

Other lessons to learn from the case include:

“This settlement agreement sets an important milestone as OCR’s first resolution agreement with a BA,” notes attorney Rick Hindmand of Chicago-based McDonald Hopkins. Expect more BA scrutiny in the pipeline.
The settlement plus a two-year Corrective Action Plan and the $650,000 settlement is significant, given that the breach involved only 412 records. Don’t expect small breaches to carry small penalties.
A charitable structure and mission also won’t save you. CHCS was slapped with the hefty penalty despite its non-profit status and religious affiliation, and despite providing “much-needed services” in the Philadelphia region to the elderly, developmentally disabled individuals, young adults aging out of foster care, and individuals living with HIV/AIDS, notes Colin Zick, an attorney with Foley Hoag.

Home Health & Hospice Week

Prospective Payment System:
NPWT Switch Would Shortchange HHAs, Patients
Disposable device visits won’t count. How much are your time, expertise and other resources worth? [...]

Reimbursement:
Let HHAs Bill NPWT Visits Under HH PPS, Commenters Urge
Proposed policy encourages use of durable NPWT instead of disposable. If a Medicare proposal on [...]

Pre-Claim Review:
Pre-Claim Review Preparation Rolls On In Face Of Industry, Lawmaker Opposition
MAC tries to educate Florida docs about PCR. Although the Pre-Claim Review program is on [...]

HIPAA:
HHS Targets Small HIPAA Breaches For Increased Scrutiny
New focus could impact home care providers. It may be October, but you’d better make [...]

Medical Review:
MAC Offers F2F Documentation Advice
Does your certifying docs’ documentation contain these elements? One of Illinois home health agencies’ complaints [...]

Compliance:
Lack Of Breach Reports Also Red Flag
How do you compare to your peers? If you pride yourself on your spotless HIPAA [...]

HIPAA:
Don't Let A Lost Phone Torpedo Your HIPAA Compliance Record
Small breaches, charitable status won’t save you from big penalties. Pay close attention to a [...]

Industry Note:
Hospice RHC Reimbursement Woes Continue
Some billing problems resolve, others don’t. Hospices have a plethora of billing-related problems on their [...]

Industry Note:
Home Health Compare To Refresh Oct.19
Check out your preview reports for your Home Health Quality of Patient Care Star Ratings [...]

Industry Note:
Value-Based Purchasing Participation Lags
More than 400 HHAs under Value-Based Purchasing are risking their reimbursement by not completing registration [...]

Industry Note:
CMS Gears Up To Remove SSNs From Bene Cards
Your billing will be changing in a yearand- a-half thanks to the Medicare Access and [...]

View All