1. Member Sections

HIPAA

What Are HIPAA Transaction and Code Sets Standards? - 03/20/2025

Learn about the HIPAA Transactions and Code Sets Rule that standardizes electronic data interchange (EDI) transactions for submitting, processing, and paying claims. Has your practice met the required standards?

20 Everyday HIPAA Tips - 03/17/2025

 The goal of HIPAA is to make sure the protected health information you are responsible for or come into contact with remains confidential, secure, and available when you need it. Here are basic steps every practice can take to help make this happen.  

FTC Mandates Vendors Notify Patients of Breaches in Health Information - 11/07/2024

The Federal Trade Commission has amended its Health Breach Notification Rule to require vendors of personal health records and related entities not covered by HIPAA to notify individuals, the FTC, and, at times, the media, when a breach in protected health information occurs. The change will take effect July 29.

Physicians Can Delegate Breach Notifications to Change Healthcare Following Cyberattack - 06/26/2024

The U.S. Department of Health and Human Services’ Office of Civil Rights announced  May 31 that covered entities – such as health plans, health care clearinghouses, and physicians – affected by privacy breaches stemming from the February cyberattack on Change Healthcare and its parent corporation UnitedHealth Group may delegate breach notifications to both companies.

HIPAA and Medical Power of Attorney - 03/20/2024

Does the HIPAA Privacy Rule change the way in which a person can grant another person medical power of attorney?

Stop Paying to Get Paid - 02/28/2024

Did you know you don’t have to accept health plan payment via virtual credit card? You have a right to request direct deposit.

Feds Update HIPAA Security Risk Assessment Tool - 11/01/2023

To aid small- and medium-sized practices in complying with the HIPAA Security Rule, federal officials have updated their risk assessment tool designed to help practices identify areas where electronic  protected health information (ePHI) is at risk.

New Texas Law Shortens Data Breach Notification Period - 08/21/2023

Texas physician practices and other health care facilities soon will be required to give more timely and public notice of any breaches of computerized data, including electronic health records and billing information.

HIPAA Security Rule: Move It to Top of Mind - 08/07/2023

Problems with HIPAA Security Rule safeguards, both administrative and technical, continue to fall among the top five HIPAA security issues the U.S. Department of Health and Human Services identifies each year.

Security Risk Analysis for HIPAA — and Medicare/Medicaid? - 08/07/2023

Do you need to conduct a security risk analysis or review of your practice in the next 72 days?

Your Photocopier May Be a Security Risk - 08/07/2023

Don’t let this happen to you! A health plan paid a huge fine after it returned leased copiers that held protected health information.

Patient Privacy’s New Frontier: AMA Aims to Keep Apps Honest With Personal Health Data - 12/01/2020

In the evolving world of health information technology, some vendors that store and transmit health information – such as the tech minds behind certain mobile apps – are getting their hands on patient data without any HIPAA leash to rein in their use of it. Now, organized medicine is doing its part to preserve patients’ privacy when their health information finds its way outside of HIPAA-covered organizations.

Upgraded Free Tool Helps With HIPAA Compliance - 10/12/2020

If you participate in the Medicare Merit-Based Incentive Payment System (MIPS), you must complete your security risk assessment by Dec. 31. An upgraded tool from the U.S. Department of Health and Human Services might make the assessment easier.

Is Your Patients’ HIPAA-Protected Information Secure? - 05/13/2020

A guide from TMA-endorsed DocbookMD helps smaller practices understand the risks of using mobile devices and how to stay HIPAA-secure.

Understanding HIPAA: Working From Home - 05/30/2019

Can an employee work from home under HIPAA? The answer is yes, as long as you implement the appropriate security to protect data accessed from the employee’s home.

Protect Your Practice’s Social Media Accounts - 05/30/2019

Social media is a terrific way to reach out and stay in contact with your patients. However, the risks created by social media cannot be ignored. Controlling access to your social media accounts is just the first step in ensuring their security.

Security Alert: Are Your Browsers Vulnerable to POODLE? - 05/30/2019

Many of us take for granted that if we’re diligent about keeping our systems current with the latest security updates, we’re protected from threats. Unfortunately, this isn’t the case.

Phishing: Popular Sport of Cyber Attackers - 05/30/2019

…And they are out to catch you. Here’s how to identify malicious emails you need to guard against.

Most Physicians No Longer Creditors Under Red Flags Rule - 05/30/2019

A new law limits the definition of “creditor” under the Red Flags Rule — and now most physicians no longer fall under its requirements.

HIPAA: Are You Prepared for a Patient Complaint? - 05/30/2019

The most common type of patient HIPAA complaint stems from interpersonal relationships and conflicts. Do you know what do if you receive a patient HIPAA complaint?

HIPAA: Are You Prepared for a Lost Laptop or Smartphone? - 05/30/2019

Even if the only work-related activity is accessing your email, you may have PHI on your phone right now. Lost and stolen devices are the No. 1 reason for patient data breaches of more than 500 records.

HIPAA: Are You Prepared for a Business Associate Breach? - 05/30/2019

Business associate breaches can be the most costly type of breach and present some of the highest risk because you don't have insight or control over the business associate's security or policies.

HIPAA Security: What Risks Are Realistic for Your Practice? - 05/30/2019

Here are some of the factors practices should consider when assessing the security of their patients’ electronic protected health information.

HIPAA Compliance Requires Continuous Monitoring - 05/30/2019

HIPAA security compliance means not only preventing compromised protected health information but also recognizing when it happens and being able to discover what went wrong.

HIPAA Best Practices for Photocopiers, Printers, and Fax Machines - 05/30/2019

Here are three best practices to consider when creating your HIPAA policy and procedures for photocopiers, printers, and fax machines.