Invite a Friend

Sitemap

Home

Community Hospitals

Community & Rural
e-Newsletter

Blogs

Industry Surveys

Breakthroughs Reports

Aligning Hospitals and Physicians Toward Value - Dec 2009

Events

Sponsored

Departments

Home > Community Hospitals > Community Hospitals News

Small Providers May Not Have to Deal With Red Flags Rule

Comment

RSS

News Widget

Dom Nicastro, for HealthLeaders Media, October 19, 2009

If the bill passes, it would remove a large burden for small facilities to comply, says William M. Miaoulis, CISA, CISM, of Phoenix Health Systems, whose corporate offices are located in Texas, Maryland, and Hawaii.

However, it should not eliminate the need to protect patients' identity.

"Identity theft can certainly occur at organizations of any size and all organizations should take steps to enhance security and minimize the threat of identity theft," Miaoulis says. "Removal of the stringent requirements of the Red Flag Rules for small organizations would remove the burden of meeting the specifics of the rule, but should not eliminate the need for them to consider identity theft prevention."

John C. Parmigiani, MS, BES, president, John C. Parmigiani & Associates, LLC, in Ellicott City, MD, says the bill mirrors HIPAA with small providers with less than 10 people who do not file claims electronically.

"I still believe the major determinant is whether the provider is a 'creditor,' not its size or if it knows everybody that it deals with," Parmigiani says. "Of greater concern is how it is protecting the digital information of the patient to whom it extends credit.

Dom Nicastro is a senior managing editor at HCPro, Inc. in Marblehead, MA. He edits the Briefings on HIPAA and Health Information Compliance Insider newsletters. E-mail him at dnicastro@hcpro.com.

1 | 2

RSS

Archive

View All Comments

Make a Comment

1 comments on "Small Providers May Not Have to Deal With Red Flags Rule"

Shar Carpenter (10/20/2009 at 4:45 PM)
Interesting webcast that will cover - The Impact of the HITECH Act on HIPAA Compliance and Data Security: Clear Information Direct From the Legal Experts Don?t miss this opportunity to get clarity on the HITECH Act and how it affects your HIPAA Compliance, Data Security and Business Partner Programs! Time 11 a.m. PST Date Wednesday - October 21, 2009 Who should attend: Healthcare payers, providers, clearinghouses and business partners To register - http://tinyurl.com/ykkw7ea

Business Associates Can Pay Directly for Breaches

Business associates can be directly liable for a breach of unsecure protected health information and could have to pay OCR directly, a top OCR official told HealthLeaders Media at the 18th Annual National...

Phishing schemes are becoming sneakier in targeting doctors

Email scams that target physicians for their patients' information has become very common, and earned the nickname "spearphishing." Like phishing, the scam is carried out via a fictitious e-mail that looks...

Web Exclusive: Americans Don't Trust Feds to Protect Patient Health Record Database

Nearly two-thirds of Americans who answered a phone survey last month said they do not trust the federal government–including the U.S. Health and Human Services Agency–to protect their health...

go to complete list