As I’m sure we are all aware, in 1996 Congress passed the Health Insurance Portability and Accountability Act also known as HIPAA, then in 2013 with the Omibus Ruling the U.S. Department of Health & Human Services, Office of Civil Rights (or OCR) began to enforce the regulations. Over the last several years, we have watched many practices in our community assume that they are immune to both incidents, breaches, or even an audit.
As a Covered Entity (CE), you have a professional obligation to adhere to the matters of compliance as is stipulated by the law.
HIPAA standards seem to be ever-changing and can often be confusing for the average practitioner, business owner or manager in the medical field.
Sometimes, the best way to learn about what you should be doing when it comes to HIPAA compliance is to hear examples of what you should not be doing. So with that let me share 10 common Examples of HIPAA Violations we see in our community today.
#1 – Failure to promptly release information to patients.
#2 – Improper disposal of patient records.
#3 – Missing patient signatures.
#4 – Releasing the wrong patient’s information.
#5 – Discussing information with friends or relatives about patients.
#6 – Discussing private health information in public areas.
#7 – Discussing private health information on social media.
#8 – Not logging off a computer system that contains private health information.
#9 – Including private health information in an email that is not secured.
#10 – Releasing information about minors without the consent of a parent or guardian.
So there you have it, ten real-life examples of HIPAA violations. This should give you a good roadmap of areas you and your staff should be wary of, and for more information on how to better protect yourself, please download our free HIPAA Compliance Checklist and run a self-assessment or call of our certified security professionals to answer any questions that you might have.