• Home
• Topics
  • Federal Stimulus Funding
  • Business and Finance
  • Chronic Disease Care
  • Health Plans
  • Hospitals
  • EHRs and PHRs
  • Global Health
  • Physician Practices
  • Policy
  • ONC
  • Patient Safety
  • Telehealth
  • Tools and Devices
  • Privacy and Security
  • Public Health
  • Long-Term Care
  • Consumer Information
  • Data Standards
• Perspectives
  • Current Perspectives
  • Perspectives Archive
• Features
  • Current Feature
  • Features Archive
• Stimulus Watch
• Data Points
  • Current Data Point
  • Data Point Archive
• Special Reports

EVENTS

View All Events

FROM THE FOUNDATION

The Social Life of Health Information

A new Pew Internet/CHCF national survey finds the Internet has joined doctors and family members as one of the top three ways people search for answer to their health care questions.

Evaluating One-e-App

CHCF and The California Endowment funded the development of One-e-App, a Web-based program that enables users to apply for multiple public insurance programs at once. Read a business case assessment by The Lewin Group.

Privacy, Security, and the Stimulus Bill

The recently enacted economic stimulus legislation includes a number of improvements to federal health privacy law. This brief looks at issues of privacy and security in the wake of ARRA.

CMS has taken "limited actions" to ensure that health care providers are effectively protecting patients' medical records, but the agency's efforts fall short of ensuring compliance with the HIPAA security rule, according to a report from HHS Office of the Inspector General, Government Health IT reports (Moore, Government Health IT, 10/31).

The report states OIG found that CMS has "no effective mechanism" to ensure that health care providers are complying with the HIPAA security rule or that electronic health records are being protected adequately.

Although OIG concluded that CMS' system to handle complaints is adequate, the report calls for CMS to adopt compliance reviews as a more proactive method of verifying that health care organizations are complying with the HIPAA security rule.

CMS Response

In its formal response, CMS argued that its complaint-driven enforcement process is effective and has advanced voluntary compliance efforts but agreed with a recommendation to develop standards and procedures for conducting compliance reviews.

The report notes that CMS had moved forward with compliance reviews before the report was released on Oct. 27 (Manos, Healthcare IT News, 10/31).

• Print
• Email
• Share
  • del.icio.us
  • Digg
  • Facebook
  • Twitter

RELATED STORIES

10/31/2008

CMS Offers Details of Electronic Prescribing Incentive Program

10/30/2008

Survey Finds Slow Growth in Physician Practice EHR Adoption

10/29/2008

Annual Survey Gauges Health Care Facilities' Data Security Efforts

MOST POPULAR ARTICLES

• 
•