• Helping you with HIPAA Security Solutions.
  • Call Us (631) 403-6687
  • Office HrsMon - Fri: 9.00am to 5:00pm
Log InSign Up

Maintain a Culture of Compliance: September

  • September 24, 2020
  • By tahlia@tldsystems.com
  • 0 Comments

Maintain a Culture of Compliance: September

by Tahlia Brody, CHP, VP of Customer Service TLD Systems

Annual HIPAA Training

Did you know that the largest cause of HIPAA breaches is due to human error? HIPAA can be complicated and it is important to understand:

- what exactly what information is PHI (Protected Health Information);

- who are you allowed to share PHI with and;

- what methods of communication are secure.

This is why it is important that all employees, including doctors attend annual HIPAA training. Annual HIPAA training is not only a requirement for HIPAA, it is an important tool to mitigate the risk in your office. If you are a TLD Systems client, you have unlimited access to our live HIPAA training courses which also allow you to ask a HIPAA expert any questions you may have at the end of the webinar.

Upcoming HIPAA Trainings:

Wednesday October 14, 2020 at 12 pm Eastern

Thursday, November 12, 2020 at 3 pm Eastern

Tuesday, December 15, 2020 at 7 pm Eastern

Get all portable devices encrypted

There have been many breaches over the last few months involving unencrypted portable devices, such as laptops or flash drives, getting lost or stolen. Given that these devices are easily lost, misplaced, or stolen, it is important that they are encrypted. As a Covered Entity, it is your responsibility to take steps to protect the ePHI that you have in your office and computer systems. Given the availability of encryption software and IT professionals you must encrypt these devices. When an encrypted device gets lost or stolen, it is not a HIPAA breach and your office has avoided a large fine or settlement.

Make sure you have valid Business Associate Agreements

Any entity that you share PHI with, who is doing work on your behalf, is a Business Associate. However, before you share PHI with these entities, it is important that you get a signed Business Associate Agreement (BAA) with them. A BAA is not only mandatory under HIPAA, it helps to protect your office. The BAA ensures that your Business Associate with protect the PHI you share with them.  If you terminate your relationship with your Business Associate, The Business Associate will be required to

Return or destroy any PHI you shared with them

Or

If they cannot destroy the data, they will be maintaining the data securely even after the relationship has ended.

If you do not have a BAA with any of your Business Associates it is time to get one.

For clients of TLD Systems, we track your BAAs and provide you with tools to create new BAA’s for new Business Associates.

 

Have questions about what your office should be doing to be HIPAA compliant, call us at (631) 403 6687 or email info@tldsystems.com

Tags: HIPAATrainingBreachMitigate RiskCulture of ComplianceBusiness AssociateBusiness Associate AgreementEncryption
tahlia@tldsystems.com

Tahlia

Read Comments

Add Your Comment