Compliance with the Health Insurance Portability and Accountability Act (HIPAA), Occupational Safety and Health Administration (OSHA) and Office of Inspector General (OIG) is a requirement for ophthalmology practices. Programs to help businesses comply involve reviewing current policy manuals and protocols, essential forms, employee training and annual Security Risk Analyses.
Eagle Associates Inc. has been helping practices implement and maintain HIPAA, OSHA and OIG plans for more than 30 years. Learn how Eagle Associates supports administrators and physicians in the ongoing commitment to regulatory compliance.
HIPAA
The Office for Civil Rights enforces the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information; the HIPAA Security Rule, which sets national standards for the security of electronic health information; the HIPAA Breach Notification Rule, which requires covered entities and business associates to provide notification following a breach of protected health information; and the confidentiality provisions of the Patient Safety Rule, which protect identifiable information from being used to analyze patient safety events and improve patient safety.
OSHA
OSHA ensures safety in the workplace and enforces regulatory standards for medical offices. Ophthalmic practices must maintain a safety manual which includes policies and procedures that are required by OSHA. In addition, onboarding and annual training on safety topics should be conducted along with a frequent review of the safety requirements.
OIG Fraud and Abuse
The Office of Inspector General (OIG) monitors fraud and abuse in health care. To avoid triggering an audit, practices should maintain a compliance plan and conduct annual fraud and abuse training. The OIG periodically publishes a work plan establishing their focus on specific health care specialties and services. OIG audit information can be found at aao.org/audits. Strengthen your audit armor with coding education by visiting aao.org/coding.
Resources
- HIPAA Protocols and Requirements
- Records Requests: Understanding Patient Right of Access, PHI and the Designated Record Set, written by Jennifer Cosey, President, Eagle Associates, Inc.
- HIPAA Policies, Requirements and Temporary Suspensions: Module 5.4 from Reboot Your Practice: Post-COVID-19 Recovery Roadmap for the Ophthalmic Practice, written by Jennifer Cosey, President, Eagle Associates, Inc.
- Webinar Recording: AAOE Roadmap to Recovery Series: HIPAA and OSHA Considerations in the COVID-19
As practices continue to reopen, ensuring the safety of employees under the Occupational Safety and Health Administration (OSHA) and the privacy and security of patient information under the Health Insurance Portability and Accountability Act (HIPAA) are critical. Regulatory compliance is a long-term, ongoing effort to implement and maintain. The COVID-19 pandemic has brought new concerns into these regulatory arenas and will require action on your part. Jennifer Cosey, president of Eagle Associates Inc., and Joy Woodke, COE, OCS, OCSR, Academy coding and practice management executive, outline practical steps for addressing COVID-related compliance issues in your practice.