- Use hospital equipment/cameras to take patient photos, not your cell phone
- Dispose of patient information in shredding/confidential bins, not regular trash
- Ensure Valid Authorization is signed when taking photos, not for patient care (i.e., publications)
- Encrypt all internet-directed email containing ePHI
- Understand HIPAA definitions of PHI, Privacy Breach, Security Breach
- Be familiar with each hospital’s HIPAA policies
- Obtain verbal permission from the patient before discussing care in front of visitors
- Encrypt mobile devices containing PHI (phones, laptops, USB devices)
- Provide timely review and response to Record Amendment requests
- Report violations to Code of Conduct
- Lock your computer before you walk!
When in doubt, ASK! | 303-724-0983