Posted and filed under Compliance, Healthcare.

Cybersecurity: Are You Helping the Hackers?

Last year, Houston-based software and security company Netiq released a Cyberthreat Defense Report that published alarming statistics on the apparent vulnerabilities in Healthcare IT. Data breaches, compromised patient information, medical identity theft, and gaping holes in Cloud infrastructure are among the top contenders for worst offenses. Now, a year later, the statistics are rising, and…

Read the full article

Posted and filed under Compliance, FWA.

Clinical Labs Under Heavy Scrutiny After Cigna Lawsuit

A tidal wave of fraud has been approaching our shores for quite some time, and it’s finally broken land. The scheme, gaining popularity in clinical labs and pathology groups involves waiving patient fees and copays in order to send payer groups inflated claims fees. While these billing tactics might seem innocuous, they are fraudulent because…

Read the full article

Posted and filed under Business, Compliance.

The Consequences of HIPAA Violations

 The below tiered civil penalty structure was established from the American Recovery and Reinvestment Act of 2009. The Secretary of HHS still has discretion in determining the penalty amount based on the nature and extent of the violation as well as the nature and extent of harm resulting from the violation.  The Secretary is prohibited…

Read the full article

Posted and filed under Compliance, Healthcare.

2016 Update: OIG/OCR Audit Process

OCR’s Privacy, Security, and Breach Notification Audit Program: Although the ever-expanding use of health information technology in health care provides many benefits, in turn it poses new risks to consumer privacy. To ensure HIPAA compliance, HITECH requires HHS to perform periodic audits of covered entities and business associates. In 2011 and 2012, OCR conducted a…

Read the full article

Posted and filed under Compliance, Healthcare.

The Hopeful Future of Sharing Behavioral Health Data

The Colorado Regional Health Information Organization (CORHIO) is launching a pilot program to improve patient information exchange between providers and caregivers. This program is designed in a way that once consent is given by patients, their Behavioral Healthcare Information will be shared with long term care providers and hospitals. The newly accessible documents will summarize…

Read the full article

Posted and filed under Coding, Compliance, Medical Record Auditing.

Advize Health Meaningful Use and Security Risk Analysis Webinar Recap

On March 10, Advize Health held our fifth monthly webinar on Meaningful Use and Security Risk Analysis. For this webinar, Advize Health’s auditor Melissa Jewett presented with Don Waechter from Compliance and Remediation Services, LLC. Both Melissa and Don are highly qualified to deliver such an informative webinar; as Melissa is a Certified Professional Coder…

Read the full article

Posted and filed under Coding, Compliance.

ER Upcoding Rules & Regulations To Be Aware Of

Does documentation of more than 50% of time spent counseling or coordinating care suffice for time documentation, and therefore E/M code level selection? Many will answer: YES Let’s take a peek at an often forgotten CMS rule “In general, to bill an E/M code, the physician must complete at least 2 out of 3 criteria…

Read the full article

Posted and filed under Compliance.

Compliance Corner – October

If a patient is deceased, may a covered entity disclose to a family member who was involved in the patient’s care or payment for healthcare prior to the death, PHI of the deceased? Answer: Yes, unless there is an expressed statement to the contrary. (45CR 164.510)

Posted and filed under Compliance, Healthcare.

What to Watch Out For With Credit Balance

In May 2014, the Department of Health and Human Services, Office of Inspector General (OIG) published a proposed rule updating its regulations. The proposed rule will authorize civil monetary penalties for “failure to report and return a known overpayment,” among other issues.   The rule has outlined the penalty for failure to report and return overpayments…

Read the full article

Posted and filed under Compliance.

Compliance Corner: September

What are the 3 core health activities where a covered entity could disclose a patient’s PHI? Answer: The core health care activities of “Treatment,” “Payment,” and “Health Care Operations” are defined in the Privacy Rule at 45 CFR 164.501.