Sanction Guidelines for Privacy and Security Breaches 
AHIMA
AHIMA Practice Brief, AHIMA Journal
5/2/09
This practice brief offers recommendations for the internal application of sanctions related to information privacy and security breaches for healthcare organizations that manage or service protected or individually identifiable health information.
|
Redisclosure of Patient Health Information (Updated)
AHIMA
AHIMA Practice Brief
2/2/09
Guidelines for the proper redisclosure of health information created by another provider and made apart from one's designated record set exist at both the federal and state level. This practice brief discusses the guidelines and makes recommendations.
|
Mitigating Medical Identity Theft
AHIMA e-HIM Work Group on Medical Identity Theft
AHIMA Practice Brief, AHIMA Journal, AHIMA E-HIM Task Force Report
7/2/08
This practice brief explores medical identity theft, its ramifications, and how HIM professionals and others can work together to prevent, investigate, and mitigate the damages it causes.
|
Defining and Disclosing the Designated Record Set and the Legal Health Record
Dougherty, Michelle; Washington, Lydia
AHIMA Practice Brief, AHIMA Journal
4/2/08
This practice brief identifies the purposes of the designated record set and the legal health record for healthcare organizations and provides guidelines for disclosing health records from each set.
|
Health Data Access, Use, and Control
Burrington-Brown, Jill; Hjort, Beth; Washington, Lydia
AHIMA Practice Brief, AHIMA Journal, AHIMA E-HIM Task Force Report
5/2/07
The increasing use of electronic health data raises the industry's need to define stakeholder rights and responsibilities, and requires an increasing focus on the importance of data stewardship.
|
PHRs and Physician Practices
Fahrenholz, Cheryl Gregg, Buck, Stacie L
AHIMA Practice Brief, AHIMA Journal
4/2/07
This practice brief outlines the issues physician practices encounter as patients increasingly utilize PHRs, and explores the decisions physician practices must make as they develop policies and procedures to support patients.
|
Privacy and Security in Health Information Exchange
Carter, Patricia, et al.
AHIMA Practice Brief, AHIMA Journal
11/2/06
This practice brief outlines privacy and security issues related to developing and implementing a health information exchange.
|
Facsimile Transmission of Health Information
Davis, Nancy, et al.
AHIMA Practice Brief, AHIMA Journal
8/15/06
This practice brief recommends periodic review of organizational fax policies and practices to ensure the best privacy protections are in place for exchange of protected health information.
|
Using the SSN as a Patient Identifier
AHIMA e-HIM Work Group on Regional Health Information Organizations (RHIOs)
AHIMA Practice Brief, AHIMA Journal, AHIMA E-HIM Task Force Report
3/2/06
This article examines SSN uses within the healthcare industry, its inappropriateness for most of these uses, and alternative forms of identification that may be used in its place. 
|
Identity Theft and Fraud--the Impact on HIM Operations
Davis, Nancy, Lemery, Chrisann, Roberts, Kim
AHIMA Practice Brief, AHIMA Journal
4/2/05
This practice brief helps you understand the issues involved in identity theft, offers practical measures for your organization to prevent identity theft, respond to an identity theft event, or assist victims of identity theft.
|
Homeland Security and HIM (AHIMA Practice Brief)
AHIMA Practice Brief, AHIMA Journal
6/2/04
This practice brief provides a brief analysis of the Homeland Security and Patriot Acts, background about mandatory reporting of health information, and an overview of syndromic reporting, as well as practical advice for responding to requests for PHI.
|
Securing Wireless Technology for Healthcare
Retterer, John, Casto, Brian
AHIMA Practice Brief, AHIMA Journal
5/2/04
This practice brief serves as a guideline to help ensure that healthcare organizations have exercised due diligence, and that risks pertaining to wireless networking are defined and addressed with respect to an organization's bottom line.
|
HIPAA Security Overview
Quinsey, Carol Ann
AHIMA Practice Brief, AHIMA Journal
4/2/04
This practice brief provides a succinct overview of the security rule, along with some of the background and basic concepts needed to understand it. Skills HIM professionals have that may aid in implementing the rule in their organizations are outlined.
|
Release of Information Reimbursement Laws and Regulations
Hjort, Beth
AHIMA Practice Brief
3/15/04
The distribution of health information may appear to be a simple task, but close analysis of the process reveals that many factors must be addressed to ensure that the release of information (ROI) is prompt, accurate, complete, and confidential.
|
10 Security Domains
Dougherty, Michelle
AHIMA Practice Brief, AHIMA Journal
2/2/04
This practice brief identifies the ten security domains that provide the foundation of security principles and practices, and provides a highlight of each domain's key principles.
|
Security Audits (Updated)
Hjort, Beth
AHIMA Practice Brief
11/21/03
Security audits must be performed to hold users of information systems accountable for their actions. This practice brief covers legal and regulatory requirements surrounding security audits, and offers guidelines and recommendations for performing them.
|
HIPAA Privacy and Security Training (Updated)
Hjort, Beth
AHIMA Practice Brief
11/21/03
HIPAA's privacy and training rules independently address training requirements. This practice brief offers guidelines to covered entities to aid in implementation and suggests the efficacy of combining privacy and security training efforts.
|
Protecting Patient Information After a Facility Closure (Updated)
Rhodes, Harry, Brandt, Mary D.
AHIMA Practice Brief
11/20/03
Providers must protect personal health information when healthcare facilities close or medical practices dissolve. This practice brief discusses factors that must be taken into consideration when creating procedures for disposition of patient records.
|
Information Security: an Overview
Quinsey, Carol Ann, Brandt, Mary D.
AHIMA Practice Brief
11/20/03
|
Complete Medical Record in a Hybrid EHR Environment. Part II: Managing Access and Disclosure
AHIMA Task Force
AHIMA Practice Brief, AHIMA E-HIM Task Force Report
10/20/03
|
Complete Medical Record in a Hybrid EHR Environment. Part III: Authorship of and Printing the Health Record
AHIMA Task Force
AHIMA Practice Brief, AHIMA E-HIM Task Force Report
10/20/03
|
E-mail as a Provider-Patient Electronic Communication Medium and Its Impact on the Electronic Record
AHIMA Task Force
AHIMA Practice Brief, AHIMA E-HIM Task Force Report
10/20/03
|
Security Risk Analysis and Management: an Overview
Amatayakul, Margret
AHIMA Practice Brief, AHIMA Journal
10/2/03
This practice brief addresses HIPAA privacy and security rule interpretations related to educational program affiliations where students/trainees are exposed to PHI.
|
Protecting Confidentiality in Healthcare Education Programs
Hjort, Beth
AHIMA Practice Brief, AHIMA Journal
9/2/03
This practice brief addresses HIPAA privacy and security rule interpretations related to educational program affiliations where students/trainees are exposed to PHI.
|
Provider-Patient E-Mail Security
Burrington-Brown, Jill, Hughes, Gwen
AHIMA Practice Brief
6/15/03
This practice brief explores the advantages and risks of e-mail communication between providers and patients, and discusses the legal, accreditation, and professional practice standards to be considered, with recommendations for providers and patients.
|
