HIPAA Blog

[ Wednesday, December 01, 2010 ]

Role-Based User Access to PHI: HITECH has both raised the stakes and provided an opportunity to review and reassess HIPAA compliance generally. Additionally, the "meaningful use" rules coming down the road for electronic medical records should spur healthcare providers in particular to increase their use of EMRs; this should also trigger a re-evaluation of policies and procedures governing use of and access to PHI generally.

Now is a good time to reassess your employee's access to PHI. HIPAA requires that access decisions relate to the role the employee plays. Here's a timely white paper from InformationWeek on role-based access issues. Check it out.

Jeff [9:57 AM]

Comments: Post a Comment

http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template