08.02
2019

The Do’s and Don’ts of HIPAA Compliance

If your company has a long history of working within the medical world, then there’s a good chance that you have a deep-seated understanding of the Health Insurance Portability and Accountability Act (HIPAA). The rules, which were passed by Congress back in 1996, were put into place in order to protect patients’ coverage and personal information, as well as reduce the instances of healthcare fraud.

But if your company is still in the early stages of branching off into healthcare-related services, or you just want a refresher course, you may not be as familiar. For those in need of some brushing up, we thought we’d share a list of some of the biggest do’s and don’ts to make sure you’re staying compliant when handling such sensitive information.

DO
First and foremost, it’s of the utmost importance that you know exactly what is considered protected health information (PHI). Examples include names, addresses and contact information, social security numbers, medical record information, personally identifying dates (birth, death, appointments, etc.), and photographs. If you’re unsure whether something qualifies, your best bet is to err on the side of caution and treat it as though it does.

DON’T
If you need to have a discussion about a patient of yours with someone else, make sure that person is authorized and that you aren’t doing it in a public setting. Instead, find a private setting to do so and avoid the potential that anyone else overhears what’s being discussed.

DO
Keep your login information to yourself. Under no circumstances should you ever share this information with anyone else, even if it’s a colleague that you trust. Along the same vein, never write down this information even as a personal reminder for yourself. In both situations, it constitutes a breach of security and counts as an infraction.

DON’T
Never leave patient information in plain sight. This means that, whether you’re at the back office or in the field, don’t leave your devices unlocked and able to be seen by anyone else. It doesn’t matter if you’re stepping away for 20 minutes or 20 seconds.

DO
When patient PHI and ePHI retention periods expire and you are no longer required to hold onto this information, if you choose to dispose of the records, you must be sure they are fully destroyed. Hard copies must be shredded, pulped, or incinerated, while electronics must be securely wiped or the device on which the ePHI is stored can be destroyed, if need be.

DON’T
If your patients want access to their own records, it’s your responsibility to provide them within 30 days of their request. If patients choose to share this information with other entities, that is at their discretion, but denying them the right is a violation and can result in hefty fines.

DO
Implement software that truly supports HIPAA compliance. The Vault tier of our Encore software allows you to collect sensitive customer information and transmit it to your back office with complete end-to-end data encryption. We even brought in third-party experts for an additional layer of vetting to help make sure we covered all our bases and confidently stand by our ability to keep your client information safeguarded.

You can never be too safe when you’re working in the healthcare industry. By taking a few cautionary steps, as well as implementing trustworthy software to help you with your daily needs, you’ll be well on your way to running a HIPAA-ready business.

Have any questions on how Actsoft can help you?

Call (888) 732-6638 or Receive a Live Webinar

07.30
2019

What is Electronic Visit Verification (EVV)?

Technology is rapidly changing the ways that businesses in the healthcare industry reach and serve their patients. A relevant example of this is through Electronic Visit Verification (EVV), a type of system that helps companies document proof of their service delivered to patients. EVV is especially crucial for home healthcare providers with mobile medical staff as they make visits to clients in the field.

Aside from providing key returns like reduced paper costs, more secure data storage and transmission, and efficient workforce coordination, an EVV solution can help your healthcare organization remain in compliance with federal mandates, as healthcare companies will eventually be required to implement one, according to the 21st Century Cures Act. The implementation deadline is January 1, 2020, for Personal Care Services; Home Healthcare Services must have an EVV solution by January 1, 2023, in order to avoid fines and stay in regulation.

There are six key data elements that an EVV system must track: patient names, dates, locations, types of service performed, the home health provider’s name, and the start and finish times of care delivered. Recently, we released Encore Vault, a version of our flagship solution whose EVV options let you capture this information. Encore Vault contains even more features for enhanced security and is in compliance with the Health Insurance Portability and Accountability Act (HIPAA). This new tier’s timekeeping- and scheduling-based options for EVV give healthcare companies like yours the flexibility they need to select a plan that works for them.

Benefits of Encore Vault include:

  • The ability to eliminate overbilling by pinpointing and logging visits
  • The ability to reduce insurance fraud and falsely filed invoices with GPS-tagged records
  • Enhanced worker safety
  • Timestamped trips by caregivers for accurate visit times
  • A highly secure messaging platform to communicate on

Unlike most lower price point EVV applications, Encore Vault also offers GPS Tracking as a complement to all of its proof of service delivery functionalities. See the near real-time positions of your mobile nurses and delivery people to verify that they’re at the correct locations, help them choose the most fuel- and time-efficient routes to patient homes, and increase workforce accountability using this intuitive feature. With our diverse EVV solutions, your organization can stay compliant and optimize its daily visit schedules through improved locational insight. Find out more today about what Encore Vault can do to help your healthcare company better serve its patients.

Have any questions on how Actsoft can help you?

Call (888) 732-6638 or Receive a Live Webinar

 

03.27
2019

Actsoft and HIPAA Compliance

Actsoft is pleased to announce its compliance with the Health Insurance Portability and Accountability Act (HIPAA). We’ve realized the need that organizations in the healthcare industry have to keep sensitive health information secure; in turn, our company has taken steps to ensure that we are able to provide a solution that’s tailored to their necessities.

By enhancing our security levels even more and having our dedicated team of employees undergo extensive training on HIPAA requirements, organizations can rest assured that we’re able to effectively help them keep the Personal Health Information (PHI) of their patients safe. While our solutions have always been able to help businesses of nearly any industry increase their efficiency and productivity, we will soon be able to assist healthcare companies in particular better than ever with Electronic Visit Verification (EVV) and encrypted PHI storage.

The milestone of becoming HIPAA-compliant is a huge step into the future for our organization and is just one of the many goals we’ve accomplished during the process of fulfilling our team’s vision for 2019. Stay tuned for specific launch dates regarding our line of HIPAA-compliant solutions for businesses in the healthcare industry.

Have any questions on how Actsoft can help you?

Call (888) 732-6638 or Receive a Live Webinar