Home Health & Hospice Week
Know What Constitutes a Breach -- And What Doesn't
Encryption is your best friend when it comes to preventing breaches.
Don’t go through a resource-intensive — and potentially embarrassing — breach notification process if you don’t have to.
Before you can start identifying potential breaches at your organization, it’s important to know what the law says. “According to the Privacy Rule, a breach is any acquisition, access, use or disclosure in violation in the privacy rule — and that covers a lot,” said Jim Sheldon-Dean, director of compliance services with Lewis Creek Systems during a recent Eli-sponsored Audioeducator.com webinar “HIPAA Audits in 2015 — Being Prepared and Avoiding Penalties.”
However, there are exceptions under which you aren’t required to report the breach, including the following, Sheldon-Dean added:
If you don’t meet these exceptions but you can prove there was a low probability of compromise based on your risk assessment, you may still be in the clear, Sheldon-Dean said. The risk assessment must include a detailing of what information was in the records, how well identified the PHI was, and whether its release would be “adverse to the individual.” You’ll also have to assess to whom it was disclosed, whether it was actually acquired or viewed and the extent of mitigation.
For instance: Suppose you fax a test result with just patient initials to the wrong physician. The physician calls you and says, “You meant to send this to someone else, we’re shredding it.” That’s a low probability of compromise, with very little identifying patient information on it, Sheldon-Dean says.
Home Health & Hospice Week
- Face-To-Face:
Medical Review Contractor Denies Half Of HHA Claims
MAC is initiating takebacks based on SMRC review. Medicare’s “probe and educate” claims reviews, focusing [...] - Value-Based Purchasing:
Follow These 10 Steps To Boost Your VBP Scores -- And Avoid Payment Penalties
Kick your quality improvement plan into gear with VBP only 5 months away. Whether you’re in [...] - HIPAA:
Beware This Single Biggest Source of HIPAA Breaches
Hint: Most breaches are due to passive errors, not deliberate disclosures. Based on evidence from recent [...] - Patient Privacy:
Know What Constitutes a Breach -- And What Doesn't
Encryption is your best friend when it comes to preventing breaches. Don’t go through a [...] - Fraud & Abuse:
HHA Fraudster Draws More Than 6 Years In Prison
Hiding stolen evidence in a jail cell is not a great idea. The feds continue [...] - Industry News:
HHA Moratoria Extended In Fraud Hot Spots
Which cities might be next? If you were planning on expanding to certain high-volume, high-fraud-suspicion [...] - Industry News:
Baby Boomers To Swell HHA Patient Rolls
Competition may be tight, but you should have more potential clients on the horizon. Why? [...] - Industry News:
Pay Attention To These 2 New Measures Displayed On Home Health Compare
Don’t forget that Home Health Com-pare now is displaying two new quality measures for home [...] - Industry News:
California Hospice Faces Employee Lawsuit After Management Change
If you don’t secure employee buy-in during a management transition, the result might be more [...] - Industry News:
For-Profit Chain Boosts Profits, Moves Executive Headquarters To Nashville
Amedisys Inc. is reporting increased earnings as it moves its headquarters to Nashville. The Baton [...] - Industry News:
Louisiana Hospice Acquires 2 Locations
EPI Group and Lafayette, La.-based Heart of Hospice have acquired for undisclosed terms the hospice [...] - Industry News:
Nonprofit Hospice Closes Inpatient Hospice Facility
Nonprofit Hospice Care Corp. is closing its inpatient care facility in Elkins, W. Va., reports [...]
