|Medical Risk Institute|
Medical Risk Institute, founded and led by Michael Sacopulos, JD, works exclusively to provide proactive counsel to help physicians understand where liability risks originate and to reduce or remove these risks.
Medical Risk Institute knows that in spite of the many current and emerging medical legal threats facing the healthcare community, proper proactive actions and education & training on strategies/procedures enables a medical practice to properly protect itself and focus on delivering high-quality patient care.
Protecting Patient Privacy and Maintaining Governmental Compliance Requirements
From e-mail to medical records to social media, medicine is squarely in the digital age. While technology has expanded the frontiers of medicine, it has also triggered a whole new web of risks and legal regulations to which a practice maybe vulnerable. Protected health information (PHI) breaches are becoming commonplace and costly.
The federal government passed the HITECH Act in 2009, and in January 2013 the privacy rules under HIPAA were greatly expanded. This expansion included approximately 570 pages of new rules that involve everything from third party marketing to patients to requirements for some healthcare venders that a practice hires. The federal government now requires all medical practices and facilities to conduct a routine security risk analysis. These federal laws are enforced by the Office of Civil Rights under the Department of Health and Human Services.
Medical Risk Institute offers AACS Members a discounted on a comprehensive HIPAA & HITECH Compliance Program.
The program offered by Medical Risk Institute provides legal documents, staff education and assessments required to ensure a practice is fully compliant with governmental regulations and ePHI/PHI protection. Specifically:
-Staff training on privacy and security issues with each individual receiving a certificate to document the successful completion of training.
-A remote consultation with Michael Sacopulos, JD and an independent IT review which forms the basis of a Security Risk Analysis Report specifically written for the practice.
-Policies, notices, forms and agreements centered on protecting patient privacy and ePHI/PHI:
-Social Media Policy
-Mobile Device Policy
-Photograph and Video Release
-Business Associate Agreements for a physician and a vendor
-Instructions on proper determination of “Business Associates”
-Confidentiality and use of Information
-PHI Breach Notification Policy
-Data Destruction Policy
-Patient Privacy Notice
-Custom binder and compliance activity log to assist with HIPAA and HITECH Act organization and compliance documentation.
-A hotline for privileged communications with Michael Sacopulos, JD concerning HIPAA questions by staff
-Sixty (60) minutes of practice consultation with Michael Sacopulos, JD to confidentially help the physician and/or practice administrator with HIPAA and HITECH Act issues.
Learn more about Medical Risk Institute. www.medriskinstitute.com.