866-276-8309 or info@ehr20.com

Archive for the Blog Category

Security Risk Analysis for Meaningful Use could be completed any time during the reporting year

CMS relaxes the requirements for conducting security risk analysis from “during the reporting period” to “anytime during the reporting year.” To meet the “Protect Electronic Health Information” core objective for Stage 1, eligible professionals (EP), eligible hospitals or critical access hospitals (CAH) must conduct or review a […]

Read more

Your health data is compromised, now what ?

Medical Identity Theft is been happening at an alarming pace these days. Everyday there is news reports about health data breaches in hospitals, private practices and other medical organizations. So what can a consumer do when their health data is compromised? And what can one do to […]

Read more

CMS extends MU hardship exemption date to Nov 30, 2014

The Centers for Medicare & Medicaid Services (CMS) has extended the application for the Meaningful Use hardship exemption deadline to 11.59pm EST on 30 Nov 2014 for Eligible Hospitals (EH) and Eligible Professionals (EP). The previous deadline was April 1 for EH and July 1 for EP’s. […]

Read more

OCR delays Phase 2 HIPAA Audits but they are definitely coming!

 During a panel discussion at the American Health Information Management Association (AHIMA) 2014 conference on 30 Sep 2014, Geraldine Davis, an Office of Civil Rights (OCR)  announced that the agency is not yet ready to announce the dates of the Phase 2 HIPAA audits. The delay is due […]

Read more

What we learnt from NIST sponsored HIPAA conference in DC

EHR 2.0 team had an opportunity to attend and learn from NIST sponsored HIPAA conference in DC on 22nd and 23rd of September.  It was a fun-filled event with 300 + live attendees and 200 + webcast attendees.  We have learned lot of things from the conference: […]

Read more

Top Health Industry Stakeholders react to HHS’s latest changes to MU Stage 2

There is industry wide concern in the ability of healthcare organizations to continue participating in the MU program. The latest changes to Stage 2, published on Sep 4 2014 Federal Register mandates the EHR reporting period in 2015 to be for 365 days. A long list of […]

Read more

Update: HIPAA and Same-sex Marriage

Understanding Spouse, Family Member, and  Marriage in the Privacy Rule The HIPAA Privacy Rule contains several provisions that recognize the integral role that family members, such as spouses, often play in a patient’s health care. For example, the Privacy Rule allows covered entities to share information about […]

Read more

Checklist: Safe Disposal of Patient Data

A covered entity or business associate must remain in accordance with HIPAA  164.310d(1), Physical Safeguards – security procedures need to include: “Device and media controls. Implement policies and procedures that govern the receipt and removal of hardware and electronic media that contain electronic protected health information into […]

Read more

Ensuring the Security of Patients’ Data

A survey from the Verizon Enterprise revealed that 46% of healthcare patient data breaches are attributed to lost or stolen devices containing electronic Protected Health Information (ePHI).  While many of these small healthcare practices are aware that patient data breaches hurt business, most of them can take […]

Read more

Does my healthcare practice need to be HIPAA/HITECH certified?

We mentioned earlier in one of our blog posts that we would get back to you about the HIPAA/HITECH “Certification” question that lot of  the healthcare practices are asking about …  Certification by a third-party is not required for Covered Entities and Business Associates unlike PCI or […]

Read more
Page 1 of 612345...Last »