fbpx
HIPAA Training Standards Everyone Needs to Know

HIPAA Training Standards Everyone Needs to Know

HIPAA Training Standards Every Business Associate Needs to Know

Per the HIPAA Privacy Rule and HIPAA Security Rule, both Covered Entities and Business Associates, must require HIPAA training for all workforce members that access protected health information (PHI) or electronically protected health information (e-PHI) in any of its forms and should be provided “as necessary and appropriate for the members of the workforce to carry out their functions within the [organization].”

According to the Rule, training must be provided “to each new member of the workforce within a reasonable period of time after the person joins the [organization’s] workforce.” Along with all other annual compliance requirements, HIPAA training is arguably the most important. Your workforce members are your first line of defense in the event of a Breach and must be able to identify your organization’s designated HIPAA Security Officer, and have a firm understanding of the HIPAA Privacy and Security Rule. Training should also highlight the organization’s Technical, Administrative, and Physical Safeguard objective security requirements. It is best practice to provide ongoing security awareness training and, in addition to the mandatory annual training, the Privacy Rule also highlights what’s known as “periodic” training. The goal is to ensure workforce members’ knowledge of HIPAA compliance is not forgotten.

It’s advisable that HIPAA training is given to all employees as new hires during the new employee orientation period, and before new employees are exposed to or work with individually identifiable health information. This includes officers, agents, employees, temporary employees; like students, interns, volunteers, and salespeople. At a minimum, training should cover the basics of HIPAA, the basics of privacy and security requirements and restrictions, and policies and procedures. All new hires need to be provided HIPAA training and a post-test on the material covered within the training course to ensure comprehension of relevant and appropriate HIPAA policies and procedures.  Security Officers should be trained on the Breach Notification Rule, Minimum Necessary Rule, and the Organization’s policies and procedures.

The HIPAA Privacy Rule states that “An [organization] must document that the training as described [in the HIPAA Text] has been provided.” Failing to do so will be seen as “willful neglect” and will result in HIPAA violations including monetary penalties as high as $1.5 million dollars. A minor violation may only result in a corrective action plan requirement, whereas a significant data breach attributable to a lack of training will be viewed more seriously.

For more information about HIPAA Training, join Kellie Morse on October 5, at 1 pm EST for a webinar where she will review the HIPAA training requirements for employees and designated HIPAA Security Officers. This webinar will have a strong focus on the HIPAA Security Rule requirements that every Business Associate and Covered Entity needs to be aware of in order to ensure your workforce has a fundamental understanding of the HIPAA Privacy and Security Rule. This webinar will highlight important training requirements and what you must cover to properly train your workforce, and why HIPAA training is more than just a requirement to remain compliant; it could keep your company from being part of a breach.

At Live Compliance, we make checking off your compliance requirements extremely simple.

      • Completely online, our role-based courses make training easy for remote or in-office employees.
      • Short informative video training to meet periodic training requirements
      • Depending on the size of your organization training may start as low as $79

Call us at (980) 999-1585 or visit us online at www.LiveCompliance.com/ezclaim


ABOUT EZCLAIM:
As a medical billing expert, EZClaim can help the medical practice improve its revenues since it is a medical billing and scheduling software company. EZClaim provides a best-in-class product, with correspondingly exceptional service and support. Combined, EZClaim helps improve medical billing revenues. To learn more, visit EZClaim’s website, email them, or call them today at 877.650.0904.

Watch Medical Billing Webinar on Telehealth

Watch Medical Billing Webinar on Telehealth

A recent medical billing webinar on Telehealth that EZclaim hosted is now available to review.

On April 30th, EZClaim hosted a Telehealth Updates Webinar for our clients with guest speaker Sandy Giangreco Brown – Director of Coding and Revenue Integrity Health Care at CliftonLarsonAllen, LLP

We had one of the largest viewing audiences 101 active attendees in the session. Sandy shared informative billing codes and direct links to update hands-on information for billers actively coding Telehealth sessions. For those of you who missed it, we have provided on our website the recorded session ezclaim.com/webinars and can provide the presentation slides too! Just send a request to sales@ezclaim.com

We continue to get views of this presentation and look forward to hosting more hot topics with the CLA Team.

With the onset of COVID-19 came a great opportunity for clinics and hospitals to offer Telehealth and Communication Technology Based (CTSB) services. The Centers of Medicare and Medicaid Services, or CMS, have provided many updates to the available services that can be provided and billed to the patients to help practices not only stay afloat financially but also and most importantly, to keep their staff safe and provide excellent care to their patients!

There were new guidelines released even after this webinar on 4/30/2020 (which can be found here – https://www.cms.gov/files/document/se20016.pdf, and now includes audio-only Telehealth for services such as psychotherapy, tobacco cessation and medical nutrition counseling as well as diabetes self-management training. CMS is also increasing the payments for the Audio Only services from $14-$41 nationally to $46-$110.

As of April 30, 2020, in order to bill Telehealth, RHCs are now required to bill the G2025–CG–95 from January 27, 2020, to June 30, 2020. Then from July 1, 2020, to the end of the PHE, they will be billing the G2025 with an optional 95 modifier, per CMS SE20016 Medicare Learning Network Transmittal.

FQHCs will need to report three (3) codes for their Telehealth Services:

  1. G0467 (or other appropriate FQHC specific payment code)
  2. 99214–95 (or other FQHC PPS Qualifying Payment Code)
  3. G2025–95

CLA is on the frontlines and closely monitoring and analyzing activities related to Telehealth and other virtual health regulations

CMS Telehealth fact sheet, Frequently Ask Questions:

As your practice adjusts to Telehealth going forward, EZclaim’s medical billing solution can help you simplify patient billing and help you get paid for Telehealth visits. (Our recent medical billing webinar on Telehealth may just help you better understand the current situation).

So, to help you investigate how EZclaim’s medical billing solution may work for you, either schedule a one-on-one consultation with our sales team or download a FREE TRIAL to check out the software yourself. For additional information right now, contact EZclaim’s sales team at 877.650.0904 or send an e-mail to sales@ezclaim.com.

[Contributed by Sandy Giangreco Brown – Director of Coding and Revenue Integrity Health Care, CliftonLarsenAllen LLP]