Editor’s note: This is the last in a series of articles to educate pediatricians on implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule.
By April 20, pediatricians and other covered entities (except small health plans) are to be compliant with the HIPAA Security Rule, which requires practices to take appropriate steps to protect the security of electronic protected health information (EPHI).
Following is a recap of some of the steps practices must take to comply with the Security Rule:
The Security Rule allows each practice to tailor its security plans to its environment. The responses of solo and small group practices to the Security Rule will differ from that of large practices and hospitals. Also, as with the Privacy Rule, HIPAA establishes a “floor” of protections for your patients’ health information. More stringent state and local laws may supersede HIPAA, so check with your AAP chapter and/or...