Search
Privacy/HIPAA

State and federal privacy laws, including the state Confidentiality of Medical Information Act (CMIA), HIPAA Privacy and Security rules, and data breach notification requirements. Also includes information on how to comply with payment card industry data security standards (PCI DSS).

 

Phase 2 of HIPAA audits to launch this year
06/12/2014
The U.S. Department of Health and Human Services recently announced that it would be conducting a second phase of HIPAA audits. The audit program is intended to be primarily for information gathering, but the HHS Office for Civil Rights will assess whether to open a separate compliance review in cases where an audit indicates serious compliance issues. Therefore, it is important that dental practices have a current HIPAA risk analysis in place; that their Notice of Privacy Practices is current and acknowledgement of receipt forms are maintained.
Department of Health launches HIPAA security assessment tool
04/08/2014

The U.S. Department of Health and Human Services (HHS) has launched a new security risk assessment tool that helps dentists and other health care professionals be in compliance with the Health Insurance Portability and Accountability Act (HIPAA). It is important for dentists to conduct a security risk assessment as required by HIPAA to protect their patients' information and minimize liability risk. A recent review of HIPAA enforcement actions reveals that entities were penalized for not having a documented risk analysis or for having an incomplete analysis.

CDA member’s computer theft leads to HIPAA inquiries
03/10/2014
A CDA member’s dental practice lost a computer server to thieves last year, and is now responding to U.S. Health and Human Services (HHS) inquiries on that practice’s HIPAA compliance. CDA has been assisting the practice in this process, and is offering members recommendations so they can avoid a similar situation.
Conducting a risk analysis key for HIPAA compliance
02/10/2014
It is important for dentists to conduct a Security Rule risk analysis as required by the Health Insurance Portability and Accountability Act (HIPAA) to protect their patients’ information and minimize liability risk.  A recent review of HIPAA enforcement actions reveals that entities were penalized for not having a documented risk analysis or for having an incomplete analysis.
Clarifying HIPAA’s impact on using Windows XP in the dental office
01/27/2014
There has been a lot of speculation around the use of Windows XP as it relates to HIPAA violations. Many IT consultants are saying if dentists’ information systems are operating on Windows XP after April 8, 2014, they are in violation of HIPAA. The HIPAA Security Rule does not specifically require the use of operating systems that are manufacturer-supported so continuing to use Windows XP after April 8 is not in itself a HIPAA violation.
Taking steps to protect patient information under HIPAA
11/08/2013
Recent Health Information Technology for Economic and Clinical Health (HITECH) amendments to the Health Insurance Portability and Accountability Act (HIPAA) expanded patient rights with regard to their health information and added a breach notification rule for covered entities, such as dentists, to follow.
10/14/2013
The combination of a HIPAA deadline and vendor communications about the deadline recently sent many CDA members to the Internet and telephone to find out what assistance they could get from the Practice Support Center. Callers had specific questions on the requirement to securely transmit protected health information to other dental practices.
07/29/2013
The Sept. 23 compliance deadline for the omnibus rule/HITECH amendments to the Health Insurance Portability and Accountability Act (HIPAA) is just around the corner. There are a couple educational options for dentists related to this subject.
06/05/2013
The U.S. Department of Health and Human Services (HHS) published the long-awaited final omnibus rule under HIPAA (Omnibus Rule) on Jan. 25, 2013. The rule implements the Health Information Technology for Economic and Clinical Health Act (HITECH) and requires that health care providers amend their Notice of Privacy Practices (NPP) and Business Associate Agreements to include new elements. The compliance date for the final rule is Sept. 23, 2013.
Topics
Search
Enter Keywords
Filter by Date
From :  
To      :