HIPAA Initiatives:
- Full-time Compliance Officer (CHP-Certified HIPAA Professional)
designated for policy implementation, staff training and
monitoring associates.
- Update latest HIPAA guidelines.
- Client information access is restricted to the team,
which is handling the client's transaction.
- Accessibility to C-drive and A-drive is denied.
- PC lockup path.
- Security officer designated for policy implementation,
security of systems and PHI.
- Shredding of all patient information sheets using Shredder-diamond
cutter to the minute size.
- Regular audit of compliance program and formulation of
corrective plans to address any violation of compliance.
HIPAA Training:
- Conducting awareness programs for all employees.
- Ongoing training and testing programs link HIPAA education
to staff rewards.
- HIPAA resource directory to update employees on regulations,
news and events.
PRIVACY:
Every employee signs confidentiality agreement with severe penalties
for HIPAA violations
Access to applications/databases defined on ‘need to
know’ and ‘minimum necessary’ basis.
HIPAA compliant procedures under implementation in risk areas
like:
Data processing
Fax and email communication to external agencies
Information disclosure to payers, patients, family members
and others Storage, retrieval and/or disposal of reports and
physical records
|
