- Tags:
- Show more
- Pages:
- 3
- Words:
- 825
MAINTAINING HIPAA COMPLIANCE IN SYSTEM SECURITY Name Institution Introduction The “Health Insurance Portability and Accountability Act (HIPAA)”, was implemented by Congress in 1996. It specifically indicates who can have access or be responsible for the retrieval of a patient’s medical records. Apparently, the law laid down limits on the utilization and release of medical records and introduced a sequence of confidentiality principles for medical practitioners to follow HIPAA compliance. The HIPAA security and privacy requirements of a medical professional are essentially unaltered by transforming to Electronic Health Records (EHR), but might necessitate modification in Practice according to findings in Menachemi and Collum 2011) Healthcare providers must inform patients about the confidentiality, privacy and security rights they are accustomed to and must also indicate the procedures and guidelines they undertake to meet requirements. (Wu, Ahn and Hu 2012) Since a medical professional is responsible for keeping medical records of a client, he or she has the right to access the original copies of the documents. With regard to HIPAA compliance, healthcare providers who store the records are allowed to charge patients access or retrieval fees that are sensible and vary widely. It is also important to realize that HIPAA does not forbid a retrieval fee. Moreover, in the case of medical professionals who are covered entities, client approval is not necessitated for admission to another healthcare provider for treatment or payment. The approval is not entailed for healthcare activities if the recipient is related to the patient and the information provided is
Leave feedback