Annual HIPAA Training
Did you know that the largest cause of HIPAA breaches is due to human error? HIPAA can be complicated and it is important to understand:
- what exactly what information is PHI (Protected Health Information);
- who are you allowed to share PHI with and;
- what methods of communication are secure.
This is why it is important that all employees, including doctors attend annual HIPAA training. Annual HIPAA training is not only a requirement for HIPAA, it is an important tool to mitigate the risk in your office. If you are a TLD Systems client, you have unlimited access to our live HIPAA training courses which also allow you to ask a HIPAA expert any questions you may have at the end of the webinar.
Upcoming HIPAA Trainings:
Wednesday October 14, 2020 at 12 pm Eastern
Thursday, November 12, 2020 at 3 pm Eastern
Tuesday, December 15, 2020 at 7 pm Eastern
Get all portable devices encrypted
There have been many breaches over the last few months involving unencrypted portable devices, such as laptops or flash drives, getting lost or stolen. Given that these devices are easily lost, misplaced, or stolen, it is important that they are encrypted. As a Covered Entity, it is your responsibility to take steps to protect the ePHI that you have in your office and computer systems. Given the availability of encryption software and IT professionals you must encrypt these devices. When an encrypted device gets lost or stolen, it is not a HIPAA breach and your office has avoided a large fine or settlement.
Make sure you have valid Business Associate Agreements
Any entity that you share PHI with, who is doing work on your behalf, is a Business Associate. However, before you share PHI with these entities, it is important that you get a signed Business Associate Agreement (BAA) with them. A BAA is not only mandatory under HIPAA, it helps to protect your office. The BAA ensures that your Business Associate with protect the PHI you share with them. If you terminate your relationship with your Business Associate, The Business Associate will be required to
Return or destroy any PHI you shared with them
If they cannot destroy the data, they will be maintaining the data securely even after the relationship has ended.
If you do not have a BAA with any of your Business Associates it is time to get one.
For clients of TLD Systems, we track your BAAs and provide you with tools to create new BAA’s for new Business Associates.
Have questions about what your office should be doing to be HIPAA compliant, call us at (631) 403 6687 or email email@example.com