Medicare Compliance & Reimbursement

4 HIPAA-Friendly Tips to Help You Plan Ahead for an EHR Outage

Luckily, the HHS, in coordination with the NIST and the ONC, offers help to providers seeking guidance when organizing a comprehensive, HIPAA-compliant contingency strategy. All three federal departments advise covered entities through a myriad offering of research, tools, and fact sheets.

If your practice is in the process of contingency planning, you might want to consider these ideas to make the ordeal quick and easy.

Physician Approved

In addition to protecting your patients’ rights under HIPAA in case of EHR failure, clinical matters should be addressed as well in regard to treatment and the disbursement of prescribed medicine.

Training and Practice

All staff must be aware of the possibility of disaster and what procedures to follow should the EHRs godown.

Backup and Machinery

Not only should you ensure the proper back-up mechanisms for software and hardware, but it is also a good idea to investigate auxiliary equipment like a generator and extra fuel for emergency situations.

Communication and Audit

Keep the lines of communication open before, during, and after disaster strikes. This might be a secondary form of office communication that is practiced in case technology cannot be used. Also, test, revise, and audit your products and plans annually to ensure that everything and everyone is on the up and up.

To take a look at the ONC’s contingency planning guide, visit https://www.healthit.gov/policy-researchers-implementers/safer/guide/sg003.

For the details from the NIST guidance on disaster planning, visit http://csrc.nist.gov/news_events/HIPAA-May2010_workshop/presentations/2-2b-contingency-planning-swanson-nist.pdf.