When working remotely, you are responsible for protecting and securing all information including HIPAA protected health information (PHI) in the same manner as if you were working on-site. All system data, software, and equipment must be properly protected and secured. Except as necessary, you should not print PHI when working remotely. Any PHI that must be maintained in printed form should be properly secured and should be securely transferred to the workplace for proper storage or destruction as soon as practical.
In keeping with the recent communication from HHS/OCR regarding good-faith provision of telehealth during the COVID-19 nationwide public health emergency, the University has formally approved the following audio/video applications for use with highly confidential/HIPAA data:
Avoid potential HIPAA violations with this simple rule…
HIPAA’s “minimum necessary” rule applies when using video sharing technologies such as Zoom, Team and Skype. So when sharing your screen, DON’T share your whole desktop. DO share only the application needed.
*Note: All links previously listed here can be found on this new OCR page.
COVID-19, HIPAA and EPIC
With the massive amount of worldwide reporting, intense media and social media scrutiny, as well as fear and paranoia related to COVID-19, the circumstances are ripe for an increase in privacy violations. These HIPAA privacy violations could come in many forms, including inappropriate accesses by employees.
The message today is simple: “Mind your own business!
REMINDER: UCHealth uses artificial intelligence (AI) to proactively monitor and detect inappropriate access to PHI in Epic.