Tuesday, November 1, 2011

Privacy compliance needn't be so scary



http://ow.ly/7fijR

An article by Rick Kam posted on the website govthealthit.com.

This article discusses the need to protect healthcare information, and regulatory compliance issues related to such responsibility.

The article provides a link to 4 best practices for protecting healthcare info, discussed in a previous article.

The article states the following, "No certifying body or standard exists for determining privacy compliance. In the absence of legislation, we’re proposing that organizations set their own standards for measuring the success of a data breach response. The big question is: Has an organization done everything that is reasonable from a patient’s perspective to ensure a positive outcome from a data breach?

When looking at privacy compliance, an organization faces some tough challenges. For instance, a healthcare provider must:

- Know what its risks are and prioritize those risks

- Meet compliance requirements

- Stay compliant on an ongoing basis

- Ensure business associates meet compliance requirements

- Know where PHI is located and used

- Know when a breach occurs

- Measure compliance—and make those compliance metrics understandable"

0 comments:

Post a Comment