Wednesday, January 23, 2013

Get Informed! David Ginsberg to host webinar on HIPAA Omnibus Rule

After a 2.5 year wait the final HIPAA Omnibus Rule has been released with 563 pages of changes to HIPAA as part of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The package of regulations will be officially posted on the Federal Register on Jan. 25. The final omnibus rule will be effective on March 26, but covered entities and business associates have until Sept. 23 to comply.
The package includes:
  • Extensive modifications to the HIPAA privacy, security and enforcement rules. Among the changes: Applying many security and privacy requirements to business associates and their subcontractors.
  • A final version of the HIPAA breach notification rule. An interim final version has been in effect since September 2009. The new version clarifies requirements for when a breach must be reported to authorities.
  • A rule spelling out that using genetic information for insurance underwriting purposes is a privacy violation under HIPAA, as well as discriminatory under the Genetic Information Non-Discrimination Act.
CRHC's Senior Advisor, David Ginsberg, is reviewing the changes and providing summaries. A webinar has been scheduled for February 14, 2013 from 12:00-1:00.
Stay posted for further details and registration instructions.
Questions? Contact: David Ginsberg, Senior Advisor
Colorado Rural Health Center
505.466.8597  or 303.883.7760 (cell)

ICD-10 News: CMS Announces More Listening Sessions



CMS is pleased to announce additional industry listening sessions hosted by National Government Services (NGS) to develop common definitions and best practices for testing of the Administrative Simplification Requirements. National Government Services (NGS) will then use ICD-10 as a business case to validate a defined universal testing process that can be used throughout the health care industry.

CMS and NGS look forward to receiving insights from:
Small Providers on January 24 (fewer than 100 employees)
 Large Providers  on January 15 and 29
 Vendors on January 17 and 31
 Payers on January 23 and February 5

To participate in a listening session, click here to register.  

Tuesday, January 22, 2013

Meet your coding, reimbursement and compliance goals in 2013!

Coding Certificate Bootcamp in Alamosa
March 19, 20 & 21, 2013
Ramada Inn & Conference Center/333 Sante Fe Ave, Alamosa, CO
Click here to register


Billing and Coding Workshop in Rifle
May 21, 22 & 23, 2013
Grand River Hospital Conference Center/501 Airport Rd, Rifle, CO
Click here to register
 
 
Questions? Contact Danette Swanson ds@coruralhealth.org
Registration Assistance: Samantha Hiner at 720.248.2757

Thursday, January 3, 2013

HHS announces first HIPAA breach settlement involving less than 500 patients

The U.S. Department of Health and Human Services just announced a landmark settlement involving the HIPAA Breach Notification Rule and the HIPAA Security Rule. At the heart of this settlement is their determination, that while the breach notification was sufficient, the underlying HIPAA Security Compliance efforts fell short. Particularly not having conducted a HIPAA Security Risk Analysis as well as maintaining specific mobile device policies and procedures! The settlement underscores that the facility was deficient in never having done a HIPAA risk analysis from the HIPAA Security Rule effective date of April 20, 2005 AND maintaining a risk analysis and management plan since that time. Click here to read the full press release from the US Dept. of Health and Human Services.

Click
here to review the Resolution Agreement and CAP and for more information on OCR's Enforcement Activities, click here. To explore information, tips, and steps on protecting and securing health information when using a mobile device, click here.

The Colorado Rural Health Center can assist your organization in completing or updating the HIPAA Security Risk Analysis. For more information email David Ginsberg at
dg@coruralhealth.org.