[ Wednesday, December 01, 2010 ]
Role-Based User Access to PHI:
HITECH has both raised the stakes and provided an opportunity to review and reassess HIPAA compliance generally. Additionally, the "meaningful use" rules coming down the road for electronic medical records should spur healthcare providers in particular to increase their use of EMRs; this should also trigger a re-evaluation of policies and procedures governing use of and access to PHI generally.
Now is a good time to reassess your employee's access to PHI. HIPAA requires that access decisions relate to the role the employee plays. Here's a timely white paper
from InformationWeek on role-based access issues. Check it out.
Jeff [9:57 AM]
Blogger: HIPAA Blog - Edit your Template