PHI may be referred to as “personal health information” or “patient health information”, and both of these acronyms are technically true, as the information in question is personal to the patient. However, according to the HIPAA Privacy Rule, PHI is short for “protected health information”. According to the HIPAA website, this information includes: “patient names, addresses, and all information pertaining to the patients’ health and payment records”. It can also extend to financial information, SSN numbers, and even photos of patients.
Keeping this information private and secure is essential in order to avoid negative repercussions for the patient (should their personal, medical and/or financial information fall into the wrong hands) and to avoid civil and criminal penalties which could be incurred if a practice fails to comply with HIPAA Rules.
So ask yourself how can my practice keep PHI under wraps? Below are several areas in which a healthcare provider can focus on in order to maintain security and stay compliant:
To maintain PHI security a radiology practice should utilize measures such as:
In order to be sure that your practice is employing the most up-to-date methods it is important to keep abreast on current trends in healthcare information and technology.
In this day and age, no healthcare practice, no matter how secure or cutting-edge their software is, is infallible to security breaches. This is why keeping staff up-to-date on current standards via employee training is key to maintaining HIPAA compliance and maintaining PHI security.
It’s also advisable for a practice’s employees to be well-versed in procedures which may seem like common sense but which can be overlooked when working in a bustling healthcare practice. For example:
These points should be reinforced in order to avoid a personal health information (PHI) security breach.
Patients should be able to rest easy when sharing their personal information with healthcare providers. Adherence to guidelines, attention to detail and clear communication of what is required from employees in terms of PHI security will go a long way toward maintaining patient trust and staying compliant.
Healthcare Information Services, L.L.C. is ready to be your HIPAA compliant business partner for your practice’s revenue cycle management and consulting needs. For more information on how HIS can be your partner in assuring PHI is held secure and protected, contact Tom Wold at 847-720-7226.