Everyone in the healthcare industry seems to be familiar with HIPAA but as we normally comment, they may not know as much as they think. For example, it is not uncommon to hear a statement such as:
- My IT company says HIPAA doesn’t apply to them.
Resources
03/022023
Cyber security and cyber-attacks have proven to be quite challenging for organizations and individuals. For better or worse, the intricacies of these challenges can be intensified by how we work and our workplaces. Employees may be working online, work-from-home, in-person, or hybrid (a combination of both). Computers, mobile devices, and internet connectivity have become essential to our way of living.
02/202023
The No Surprises Act took effect on January 1, 2022, and is designed to protect patients from surprise billing or balance billing. Under this law, Ambulatory surgery centers, hospitals, and individual providers must provide insured patients using out-of-network or non-participating providers a notice regarding this act and a consent form.
Download here: No Surprises Act Instructions and templates
Please check updated documents below related to the No Surprises Act.
Good Faith Estimate Data Elements
Good Faith Estimate Template Notice
Surprise Billing Act Requirements
Right to Receive a Good Faith Estimate of Expected Charges Notice
![[EPIConferences 2023] Conference Flyer - Topic Highlights](https://epiconferences.com/wp-content/uploads/2023/02/EPIConferences-2023-Conference-Flyer-Topic-Highlights-e1677247127313.png)
02/202023
Our 2023 Conference is right around the corner! Save the date and the flyer by clicking the link below. Tickets are selling out FAST, so don’t delay!
Download HERE: 2023 Conference Flyer
Want to attend our Golf Tournament Thursday, May 18th? Download HERE: 2023 Golf Tournament Flyer
Have questions? Contact us for more assistance!
01/302023
Crime is alive and well in the Unites States. As a matter of fact, no matter which venue you tune to, there are new crimes been reported on a daily basis. Granted, there is a marked increase in murder, assault, and rape cases, yet this doesn’t mean that some of these cases do not also involve unlawful access and robbery.
01/032023
It’s a new year, and as we expected, things are no longer the way they used to be. For example, our reliance on electronic applications has increased exponentially. Pause for a second to think about how many devices you use in your daily life that depend on interconnectivity. What about using the Internet for entertainment, shopping, and/or connecting with friends and family members? Doesn’t matter how or what you use it for, the end result is the same: greater reliance on electronic devices and interconnectivity.
12/052022
By Dr. Jose I. Delgado
During the last couple of years, I have been approached by multiple healthcare professionals and organizations asking about the legalities of using companies that do not reside in the USA (offshore businesses) to handle electronic protected health information (EPHI). While there are recommendations we would like for anyone to consider prior to hiring any of these companies the reality is that HIPAA does not discriminate between US businesses and offshore companies.
09/202022
Enforcement Actions Ensure Patients Receive Timely Access to their Records, at a Reasonable Cost
Today, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced the resolution of three investigations concerning potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule’s patient right of access to their medical records. These cases are part of a collective effort, bringing the total 41 cases, to drive compliance on right of access under the law.
06/102022
The HHS Office for Civil Rights (OCR) is producing a pre-recorded video presentation for HIPAA covered entities and business associates (regulated entities) on “recognized security practices,” as set forth in Public Law 116-321 (Section 13412 of the Health Information Technology for Economic and Clinical Health Act (HITECH). The statute requires OCR to take into consideration in certain Security Rule enforcement and audit activities whether a regulated entity has adequately demonstrated that recognized security practices were “in place” for the prior 12 months. This presentation is intended to educate regulated entities on the categories of recognized security practices and how entities may demonstrate implementation. The video will be available this summer, and an announcement is forthcoming.
