Practice Management Alert
Confidentiality Agreement Stops Leaks
Staff must know what's considered 'sensitive info' ************ Access and Confidentiality Agreement As an employee or contract personnel at [Organization], you may have access to confidential information. The purpose of this agreement is to help you understand your duty and responsibilities regarding confidential information. The violation of any of the following duties will subject you to discipline, which may include, but is not limited to, termination of employment or [Organization] affiliation and to legal liability. You make the following agreement with [Organization]: 2. I will report any improper action taken by another [Organization] associate that may compromise the integrity of confidential information.
Did you know that logging in to the office computer system with a co-worker's information could be a violation of the Health Insurance Portability and Accountability Act (HIPAA)? Yes, something as innocent as a biller logging in with a fellow staffer's password could land the office in hot water.
Medical practices should not wait for a HIPAA violation to occur; start educating staff on confidentiality violations the first day of work. Further, get each employee to sign a confidentiality agreement. An ideal confidentiality agreement both defines sensitive data and makes staff promise to protect that data's integrity.
Use the first part of this sample agreement, created by Kelley Meeusen of Harrison Hospital in Bremerton, Wash., as a starting point when working on a contract that works for your office. Look for the second half of the confidentiality agreement in the next issue of Medical Office Billing & Collections Alert.
1. I will use confidential information only as needed to perform my legitimate duties as an [Organization] associate.
This means:
a. I will access only confidential information for which I have a need to know.
b. I will not in any way divulge, copy, release, sell, loan, review, alter or destroy any confidential information except as properly authorized within the scope of my approved activities.
c. I will not misuse or be careless with confidential information.
Practice Management Alert
- CPT 2006:
E/M Billing Update--CMS Clears Up New Patient Parameters
After 3 years, familiar faces are new again
If you want to get off on the [...] - You Be the Billing Expert:
Locum Tenens Physicians Can Only Fill In for 60 Days
Don't forget to append modifier Q6
When one of your physicians takes a vacation or a [...] - Tips Help You Avoid Locum Tenes Modifier Mix-Ups
Remember: Q5 is a reciprocal-billing modifier
Take care that you don't confuse modifiers Q5 and Q6 [...] - Security:
Defend Patients' PHI With Shredders
Put shredder where it will be used most
If an identity thief nabs some of a [...] - Collections:
No-Show Charge Is a No-No Without Patient Notification
Most offices give patients 1 'free' no-show
When a patient does not show up for a [...] - January's Recipe for Billing Success
Look for Changes in Same-Day E/M Rules
Billers who work in larger medical practices that employ [...] - READER QUESTIONS:
Are You Required to Report Both Wrongful and Incidental Disclosures?
Question: What is the difference between a wrongful and an incidental disclosure of protected health [...] - READER QUESTIONS:
Do You Need a Shredder Strong Enough for CDs?
Question: Our medical office is researching document shredders before purchasing one. What are some of [...] - Sample Document, Part 1:
Confidentiality Agreement Stops Leaks
Staff must know what's considered 'sensitive info'
Did you know that logging in to the office [...]
