Five Ways to Prevent Patient Information Breaches
Editor's note: This is the first in a three-part series about breach notifications. The first installment focuses on preventing breaches.
The U.S. Department of Health and Human Services (HHS) on August 19 released its interim final rule on breach notification of unsecure protected health information (PHI) and the acceptable methods for covered entities (CE) and business associates (BA) to encrypt and destroy patient records in order to prevent breaches.
The PHI breach notification regulations took effect September 23. However, HHS will not enforce the rule until February 22, 2010, or thereabouts.
Although CEs and BAs should have breach notification policies in place, they must also know how to prevent breaches.
"You don't get to the HITECH until you have a privacy breach," says Andrew E. Blustein, Esq., partner and cochair of Garfunkel, Wild & Travis' Health Information and Technology Group in Great Neck, NY; Hackensack, NJ; and Stamford, CT. "If you have good things in your privacy program, you should never get to it."
- MU Compliance Announcement Sparks Concern, Confusion
- New G-Codes to Pay Doctors for Broad Array of Non-Face-to-Face Care
- Telehealth Improves Patient Care in ICUs
- CMS Sets 2014 Pay Rates for Hospital Outpatient and Physician Services
- Scary Financial Challenges for 2014
- States Rejecting Medicaid Expansion Forgo Billions in Federal Funds
- Douglas Hawthorne—A Chance to Do Something Big
- LifePoint Bolsters Presence in Michigan's Upper Peninsula
- Hospital M&A Volume Up, Value Down in 3Q
- Small Doesn't Mean Doomed