Category: HIPPA Compliant Phone

Hip about HIPAA

Female patient at the dentist giving a high-five and looking very happy with her smile design

Dr. Robertson, now retired, was my dentist. He ran a modern dental practice. It was both hip and fun. First, the fun: he always made me laugh. Sometimes, he had to stop the procedure because I was laughing so hard. He remember details about my life, and so did his staff. Shannon, his dental hygienist, always encouraged my progress. How did they remember those details? Was it note taking, a great memory or a HIPAA compliant communications and patient relationship management system? I don’t know. But I always recommended Shannon and Dr. Robertson and his staff because they were excellent in all the ways that mattered. I left their office with a problem solved, a brighter smile and a lighter step. That’s the human “technology” of a great experience.

I Like

What’s hip is that they also used technology to set my appointments. The office sent emails to remind me of my upcoming appointments, and a few years later, based on my preference, switched to text reminders. Sometimes I got texts asking if I’d like an earlier appointment as they had an unexpected opening. And because Dr. Robertson knew I marketed cool technology he would ask me my thoughts about xyz software or technology tools he used. Thanks Dr. Robertson for being great.

Today the modern dental office uses digital patient relationship management (PRM) and HIPAA compliant communication platforms to help their practices run more efficiently.  These systems save money, help staff fill empty seats, send appointment reminders to patients and more. Doctors can make calls from anywhere to their staff on their smartphones to relay patient information. Office managers can automate messages, send funny and informative texts and capture ways patients best engage. But all those digital resources must meet security standards to protect sensitive patient health information.

Meeting those security standards and HIPAA compliance is not complicated. The best technology providers ensure their systems meet regulatory requirements. Janice Janssen, a member of the Academy of Dental Management Consultants (ADMC), offers the following recommendations in her article: Tips for staying ‘hip’ with HIPAA regulations for dental practices:

Create practice HIPAA compliance and security breach policies

Well thought out, written plans are needed to ensure that your practice stays in compliance. Your HIPAA compliance policy should clearly state the responsibilities of your office and each staff member in protecting your patients’ private health information. The policy should clearly outline how your office handles and remediates various kinds of security breaches.

Have a HIPAA privacy officer

The HIPAA Privacy Rule requires certain safeguards to best protect the privacy of your patients’ health information. One safeguard is giving someone the responsibility of overseeing and applying these rules. Large offices may want to hire someone to have this sole responsibility. If you have a small office with a limited budget, then you as the dentist or your office manager can assume this role. Whoever is assigned this job needs to be reliable and organized as well as fully trained on HIPAA laws.

Educate your staff on HIPAA laws

For your practice to stay HIPAA compliant, each employee must know what’s required of them to be compliant. Have your HIPAA privacy officer hold team trainings where employees sign a written agreement that states they’ve fulfilled the required training. Employees can help prevent HIPAA violations and keep the office compliant when they’re educated on what the HIPAA laws are and the consequences of being non-compliant.

Perform regular risk assessments

Security risk analysis is a critical part of maintaining HIPAA compliancy. This helps identify security vulnerabilities in your office and lets you know what actions you need to take to correct and prevent these security violations. Although you can perform these risk assessments on your own, oftentimes it’s more effective when performed by an outside expert, such as Janssen or with the help of HIPAA compliance software.

Use a HIPAA compliant communication system

Ask your technology vendor to provide a HIPAA compliance business associate certificate. If they don’t know what you are talking about, you probably want to try another technology solution with the HIPAA expertise to answer your questions.

RingRx is a phone and patient-staff communication system that’s built specifically for doctors, therapists and providers of health services. RingRx delivers the quality, the value and the simplicity you desire and the security and compliance you need. To learn more, visit our website at www.ringrx.com or call 1-888-980-6860 to speak with RingRx HIPAA compliance certified customer service managers.

 

An App for HIPAA Compliant Communications

doctor examining a baby in a hospital

Now There’s an App for HIPAA Compliant Communications 

Mobile devices like handheld tablets and smartphones with apps for HIPAA compliant communications allow doctors unparalleled flexibility.  But along with the convenience and new uses of photographic and data transmission of patient health information (PHI), every provider must be aware of the legal implications of using these technologies. Now, there’s an app for HIPAA Compliant Communications. Here’s why it’s important.

In an informative article from the Advisory Board, Stacy Cook of Barnes & Thornburg LLP discusses how doctors and therapists can maintain HIPAA compliance as the usage of mobile devices increases among staff and patients. “Mobile devices are not mere cell phones. People often forget that mobile devices are essentially handheld computers where one can easily access and transmit PHI.

For instance, mobile device users transmitting and receiving PHI via public Wi-Fi or email applications on mobile devices are using unsecure mobile networks. This puts PHI at risk of interception. Most mobile devices can take and store photographs, which can be a compliance concern if the pictures violate their privacy. Also, with any mobile device that is relatively small in size, providers must be concerned about misplacement and/or theft resulting in the unintended loss of PHI.

Mobile devices also pose unique storage challenges for providers. This is because individual users can dictate where information is stored. Cloud storage is popular among mobile device users, and users storing PHI in clouds may be putting the cloud provider at risk if a HIPAA business associate agreement is not signed.

To minimize PHI storage liability, most providers now require cloud storage capabilities to be turned off on company-issued mobile devices. However, the major challenge is still managing employees’ and business associates’ personal mobile devices.”

Use a HIPAA Compliant App for PHI Communications

Providers should know that the majority of health-related apps are not HIPAA compliant. Fitness related apps do not need to be HIPAA compliant. But apps that deal with PHI and/or allow providers and patients to communicate with each other must meet the regulatory standard for HIPAA compliance. Ask for credentials and business agreement certifications. Ensure an app supports a HIPAA compliant phone and communication system. Best of all a bundled communication system allows clinicians to choose from a variety of HIPAA-compliant mediums to safely discuss and/or share PHI. It needs to easily integrate with popular office software and EHR systems.

Risk Management Steps

“Providers should develop policies and procedures outlining mobile device usage standards,” states Cook.  “Policies should state whether or not personal mobile device usage is allowed and if so, the usage parameters should be clearly defined. Providers should also be clear as to which party is responsible for security and encrypting the mobile devices. Once mobile device policies are in place, providers should perform periodic audits to ensure that compliance is upheld.”

In Case of a Breach

Cook writes, “Under HIPAA, if the organization is a covered entity (CE) and a breach occurs, then each patient whose PHI was compromised needs to be notified.

Providers should have written policies and procedures in place. They should outline how to investigate a breach and actionable steps to prevent future breaches. Providers must report breaches involving 500 patients or more to the Office of Civil Rights (OCR) at the same time as the patient notifications. For breaches affecting under 500 individuals, providers can submit an annual report to OCR due February of the succeeding year.

Risks of HIPAA Non-compliance?

Under HIPAA, providers can face financial penalties for PHI breaches. The sanctions for enforcement cases range from $100-50,000 per violation with a cap of $1.5 million per calendar year.  Sometimes settlements in excess of this cap occur because the government determined that the violation occurred over a number of years.

A provider’s reputation can also diminish because in addition to reporting to patients and the OCR, CEs are required to report to the media in some situations.”

An App for HIPAA Compliant Communications

RingRx delivers a state of the art HIPAA compliant communications system built specifically to meet help make doctors’ lives easier.  And this includes an app for HIPAA compliant communications relayed on your smartphone. It’s  convenient, secure and delivers high value.

To learn more about a HIPAA compliant for system for doctors, dentists, therapists and clinicians, please visit www.RingRx.com.

RingRx: A Simpler, Better Communication System. One Platform. All Your Devices. HIPAA Compliant and MACRA Ready.

RingRx unifies all digital communication streams from your mobile device, business phone and fax—all into one easy to use dashboard. It simply increases efficiency, helps you improve flexibility, makes patient communications more meaningful with every interaction while reducing errors and cost.

To learn more, call our HIPAA compliance phone and communication system experts at 1-888-980-6860.

HIPAA-Like Protections Are Also In Place For Pets

Young happy vet reading medical documents of a Bulldog.

HIPAA is a federal law that helps protect people and sensitive patient health information. But what about information about James Comet, the best dog in the planetary system and beyond, or what about Athena, the always sleek, elegant and sometimes incredibly sweet feline? Are HIPAA-like protections also in place for pets?

Barb Rand, HNI Compliance Advisor sums it up well: “Unlike people, pets are not protected by HIPAA, the law that guides medical privacy, because they are considered property and not persons (although there are many pet owners who would argue otherwise!) Like people, however, health information for pets and livestock collected at the vet also is protected by law. Thirty-five states have statutes that address the confidentiality of veterinary patient records. Check out this link to a summary of these privacy laws from the American Veterinary Medical Association.”

HIPAA-Like Protections Must Also Be In Place for Pets. RingRx can Help.

The ‘purrrfect’ phone system for a veterinarian should ideally:

  • Contain all the features of the best digital VoIP systems on the market which help save money
  • Be 100% HIPAA compliant
  • Free your hands to receive and organize patient calls without the need to hire new staff
  • Hide your personal phone number, even if you call from your smartphone
  • Be able to bypass caller ID block without revealing your private number
  • Organize error free, on-call schedules for multi-partner groups
  • Improve critical care and proactive patient communication
  • Store voicemails, faxes, and call recordings in state-of-the-art data centers
  • Manage all communications from a cell phone.

RingRx HIPAA Compliant phone system has bridged the real-world healthcare experience for people and pets with today’s latest technology. And that’s why Veterinarians are selecting RingRx.

RingRx works just like your existing phone – except you are now covered for compliance across all your devices. One platform. Lots of savings. RingRx is like having your office in your pocket whenever you want. The RingRx team brings over 20 years of experience in healthcare communications, telephone technology innovation, and call center management.

To learn more and get a free trial, please visit RingRx at www.ringrx.com or call us at 1-888-980-6860.

 

RINGRx App for HIPAA Compliant Mobile Devices

Doctor isn't as scary as she seems

The Apps You Use Must Meet HIPAA

Do you know that a smartphone is not just a cell phone but a computer that transmits and stores sensitive patient health information (PHI)? If you use a smartphone, efax or other digital device to transmit images or data, your system and the apps you use must meet  HIPAA compliance. How do you know if your app or smartphone software is HIPAA compliant? You must ask your service provider. Not all apps are HIPAA compliant—in fact most are not. But RingRx can help. The RingRx app meets HIPAA compliance—across mobile and deskphones, e-fax and more.

RingRx unifies all digital communication streams from your mobile device, business phone and fax—all into one easy to use dashboard. It simply increases efficiency, helps you improve flexibility, make patient communications more meaningful with every interaction while reducing errors and cost. RingRx is a high value patient-staff communication system.

HIPAA compliance matters for solo and small group practices, not just the large healthcare organizations. And being MACRA ready can be a great way to be ready for boosting your practice revenue.

For every call that we answer, the first question is, “Is RingRx HIPAA compliant?”

Yes, and we also provide a business associate agreement. RingRx allows you to  be more productive and offer the meaningful conversations that count – all securely managed with one compliant platform that provides secure, accurate relevant patient details.

No one has served this market until now. RingRx answers the call. To learn more, contact us at 1-888-980-6860.

What’s VoIP and What’s Smart About a HIPAA Compliant Softphone Anyway?

RingRx HIPAA Compliant Phone System Now Offers an App or Softphone

With the huge growth of mobile and cloud connected telephony, you may have heard about the benefits of a using #VOIP and a #softphone system vs your traditional phone system but what is VoIP and what is a softphone anyway? What are the real benefits? How can  using a softphone positively impact your business, cut costs, unify and secure your communications? RingRx can help you get smart about a HIPAA compliant communication system and now the company has launched an app, a softphone that meets your needs to make calls on the go.

What is VOIP?  For you, the caller, a VoIP phone system works the same way as a traditional Public Exchange phone (PBX). But unlike your landline phone, VoIP phones cost less to use and also give you more functionality than a landline phone. According to the VoIP Report, “VoIP sends voice over the  Internet just like any other data like emails or web browsing gets sent. The data uses “fire and forget” technology. For example, once you dial the number on a VoIP phone, the “line” does not stay open. The data packet containing the phone number gets transmitted and forgotten. The system converts the number into an IP address and moves it along the data stream along with all the other Internet transmissions. Hence, the VoIP line does not stay open. A traditional phone line, once the phone is dialed, remains connected. When the other person picks up the phone, the line stays open. The periods between words or sentences still require the line to remain open. ” With the Internet, if no one speaks then no data packet gets initiated and sent. You are not continually connected. Hence, VoIP is much more efficient at transmitting data or voice.”  In summary, VoIP is less costly, faster and better if…it’s delivered to meet your standards for HIPAA compliance.  Yes, that’s the catch for the medical and mobile health practices. We’ll talk more about that in a moment…but now onto the softphone…a #softphone is a phone that lets you make calls over the internet from a computer or other smart phone device. It is software that acts as a phone interface, allowing you to dial phone numbers and carry out other phone related functions via your touchscreen or by using your mouse, keypad or keyboard on your laptop or desktop.

bannerRX

The softphone is used with VoIP…and is a dynamic and unified way to deliver voice information over the internet. For businesses, the savings are significant. For #doctors and #therapists, the system needs to meet regulatory compliance. 

For doctors on the go, especially those who travel abroad, a HIPAA compliant softphone allows you to conveniently make calls from your smartphones and laptops. It’s also well suited for small and medium size practices– you can cut costs by severing ties with  expensive traditional phone companies. No hardware or upkeep. No IT required. But not all systems are alike. For #healthcare providers, doctors and therapists, your communications must be secure with standards that meet HIPAA compliance. 

RingRx uses the latest voice, web, and mobile technologies to deliver a high-value, user-friendly service to reduce cost and errors and improve convenience. The RingRx VoIP and Softphone system is comprised of several specialized features that target specific pain points unique to physicians, nurses, medical office managers, therapists and their business associates. Presently, the RingRx platform includes a professional grade cloud-based phone system, a smartphone app that adds mobility and convenience, web-based faxing, and an automated on-call system. We provide a web-based user portal to manage the system and more to help you meet requirements for HIPAA and the HITECH Act. The RingRx team’s 20 years experience with traditional on-call solutions provides deep insight into distinct medical and therapist practice needs that cannot be detected by research alone. The RingRx solution – powered by state-of-the-art technology – meets real-world demands.

RingRx is the phone system to keep your data secure and meet regulatory mandates while lowering your phone system costs. Now that’s what’s smart about using the only HIPAA compliant softphone for doctors.

  • Unlimited Local + Long Distance
  • Custom Office Greetings
  • Centralized Message Storage
  • Send Voicemail to Email
  • Link Multiple Locations

heidi 2 retouchTo learn more and try it free, visit RingRx.com. Or contact me at   1-888-980-6860 to set up a call to talk about your specific office needs. We can help simplify your patient-staff communications, save you money on your phone system, increase efficiency and practice management and new this year…grow your business with messaging and more.

 

 

 

 

Mobile Healthcare and Mobile Therapy Sessions are on the Rise — Do the Right Thing.

Mobile healthcare and mobile therapy—using smartphones and other mobile devices in the health care setting—allow us to walk the talk…pun intended, toward greater work/life balance, patient-centered care and value-based reimbursement. Simpler, better mobile patient communications, empower us to improve efficiency. However we also need to ensure our mobile healthcare communication solutions protect patient information shared on mobile devices, meet HIPAA compliance and more. Mobile healthcare technologies need to handshake with other technologies, like electronic health records and other mobile devices. And apps for delivering patient communications must be safe and effective.  It’s important to do the right thing to protect your patients, your practice, your reputation.

RXBANNER222

Mobile devices are becoming as prevalent in the health care setting as they are in the rest of our lives. The trend is tremendously freeing. Facetime, text messaging and mobile calls offer flexibility.  More than 83 percent of physicians use mobile technology to provide patient care.1 Clinicians—including physicians, nurse practitioners, nurses, and physician assistants—use mobile technology to update patient records, search for clinical information, and connect to colleagues. Patients use mobile technology to track health indicators, communicate with their providers, and search for health information.

Office managers and practitioners must be thoughtful in how they integrate mobile health technology while addressing “chinks in the armor”  and sensitive regulatory issues such as:

  • Clinical decision support: Evaluating and selecting the best apps to support clinical decisions;
  • Workflow efficiencies: Using simpler, better yet HIPAA compliant mobile-enabled devices, services, and software to optimize data retrieval and documentation, as well as health care transactions;
  • Communication and coordination: Appropriately connecting and sharing secured information among providers to better coordinate care;
  • Patient engagement: Supporting population health, improving compliance, and engaging patients in their care; and
  • Security: Maintaining the security and privacy of health information in a mobile environment.

Here are a few more stats reported by HIMSS on the growing use of mobile devices…and it’s only increasing.

“Sixty-nine percent of providers have used a mobile device to view patient information  and 36 percent used mobile technologies to collect data in the  exam room.”

In another HIMSS study, more than three out of four clinicians reported professional usage of smartphones. In 2014, 41 percent of clinicians qualified as “digital omnivores,” defined as those who utilize a tablet, smartphone, and computer routinely in a professional capacity.

What are Your Goals for Mobilizing Your Practice?

To get your practice up to speed for HIPAA this year, experts say, conduct a thorough evaluation of your practice operations to make certain you remain in compliance for data security, privacy, and reporting of breaches.

More information about the updated HIPAA regulations is available at https://www.cms.gov/Regulations-and-Guidance/Administrative-Simplification/HIPAA-ACA/index.html

 

Next time, I’ll talk more about the essential capability to integrate your mobile technologies with other technologies like EHR. I’ll get ready to close this post with a great quote from Mark Twain as I think about mobility and safety, security and flexibility in today’s health care setting. “Do the right thing. It will gratify some people and astonish the rest.”

 

I’d enjoy a conversation with you about your mobile office operations and how we can simplify meeting regulatory requirements regarding patient communications. I can help you learn more about customizing our premier HIPAA compliant phone system and patient communications platform to specifically meet the needs of your offices. We’ve been building phone system and conducting live after hours answering services for more than 30 years. We can help simplify your patient communications, save you money on your phone system, increase efficiency and practice management and new this year…connect your mobile phones to other technologies with our API technology, grow your business with messaging and more.  Contact Heidi for more information @ hwieland@ringrx.com or 805-722-7413.

FCC CONFIRMS RULES REGARDING HIPAA AND PATIENT TELEPHONE CALLS

The Federal Communication Commission issued a Declaratory Ruling and Order to clarify the rules regarding HIPAA and Patient Telephone Calls.

Are you among the many health care providers that have had trouble understanding these rules and how they comply with the Telephone Consumer Protection Act?   It has been more than 19 and 25 years since these acts were introduced; the FCC did issue a Declaratory Ruling and Order to help clear this up.

This ruling states that, if a patient provides a phone number to a health care provider, the provision of that phone number constitutes express consent to calls being made to that number, subject to certain HIPAA restrictions.  This consent applies to calls related to:  The provision of medical treatment, health care checkups, appointment and reminders. Lab test results, pre-operative instructions, post discharge follow up calls, prescription notifications and hospital pre-registration instructions.  You must also always provide your name and contact details as the health care provider.  It is also recommended to keep calls concise and limited to more than 60 seconds.  There is also a limit to the frequency of calls made to a patient with a maximum of 3 calls per week.  The content is still subject to HIPAA restrictions and can only be made for those purposed described above.  There can be no telemarketing, advertising or solicitation.

For more details on this ruling you can visit the FCC’s website: https://www.fcc.gov/document/tcpa-omnibus-declaratory-ruling-and-order

RingRx can also help.  We have designed a business phone system to help you stay HIPAA compliant by using professional grade encryption to keep your patient’s ePHI safe.

Using Digital Services Can Save Healthcare Companies Billions

When you think about common methods hospitals, clinics, and other healthcare companies communicate with patients and others (insurance providers, other health care professionals etc…) it’s easy to see that traditional methods relying on manually processing administration tasks is not cost effective. For the most part this takes place using outdated technology like an old fashioned mail service. The cost of doing things this way is enormous. A change to the conveyance of information via a digital format would save an estimated 8 billion dollars a year as outlined in this article

It’s true that our society in general and healthcare industry in particular have experienced significant leaps in technology that now offer us tremendous benefits. In particular our hospitals and health care facilities offer some of the most advanced patient care in the world.  And while this is all good and well, there are areas that unfortunately lag behind, especially in healthcare administration methods.

There is still an overall reliance on outdated communication services. Specifically landline telecommunication, and of course the costly practice of traditional hardcopy mailing practices. When you think of the numbers involved, both in terms of the cost of paying people to perform these services as well as the cost of material, even a slight trend toward digitization could result in large cost savings.

Naturally the lure of saving money is the main reason that facilities are moving in this direction. This is an unneeded cost and one that can be spent in other areas. This is money that doesn’t need to be spent, not really. It’s being used on something that can be easily be done by computer, with proper encryption of course; which is necessary to keep patient data private and in paperlesscompliance with HIPAA regulations.

As stated in the article, Gwendolyn Lohse, Deputy director at CAQH (Council for Affordable Quality Healthcare) stated, “I think we’re all familiar with HIPAA, which was created two decades ago. Even though that it was created two decades ago, we’re still really using manual processing for a lot of these transactions and a minimum reporting of the results to realize, as an industry, we need to do better and we need to work together to do better and to push adoption on things that do exist like best practices so we can have electronic, real-time transactions to support what needs to be a modern healthcare system.”

RingRx is at the forefront of the move towards a digital solution in how we communicate. In using our smart phone app in addition to the option to have the most advanced desk phones on the market for your office you have less to worry about, since both utilize encryption technology making HIPAA compliance a non issue. The advanced RingRx on-call application is user friendly and makes you available to the needs of your office in real time. And the money saved when switching to a cloud based VoIP service like RingRx is substantial.  For health care facilities looking to improve efficiency and save money, we are here to help out.

For more information on the topics touched upon in this blog please follow the link bellow.

http://revcycleintelligence.com/news/how-automation-technology-could-cut-8-billion-in-healthcare

Enforcement Action Results in $1.5M Settlement for HIPAA Charges

The Office of Civil Rights at the federal department of Health and Human Services conducted an investigation into a Massachusetts eye care group following a report of a security breach filed by the group.  The investigation discovered several potential areas of violations including failure to adequately secure ePHI.  The original security breach that resulted in the report was the theft of an employee laptop that contained ePHI.  The was for totals $1.5 million.

See the story here

Increase in HIPAA Data Breaches

With rarely a week passing without another data breach, the news that they are on the increase is no surprise.  This includes breaches of Protected Health Information, which presents special challenges to doctors and other health care providers.

The number of health data breaches has been increasing in recent years, and the most frequent type was theft, Marion Jenkins, PhD, said here at the annual meeting of the Healthcare Information and Management Systems Society.

Since 2009, there have been 1,185 data breaches as defined by the Health Insurance Portability and Accountability Act (HIPAA), said Jenkins, who is chief strategy officer at 3t Systems, a healthcare consulting firm in Denver. And the pace is accelerating, with an increase of more than 50% in the last 12 months. Breaches have so far affected 133 million patient records.

“You don’t have to be a really large organization to end up on the list,” Jenkins said. The largest breach involved 80 million records at the health insurer Anthem.

“secure all electronic protected health information against accidental or intentional causes of: unauthorized access, theft, loss or destruction, from either internal or external sources,”

Healthcare providers should also be aware that in addition to regulating the privacy of paper records, HIPAA also covers data from all types of electronic media — not just EHRs and data stored on laptops and computers, but also any data that winds up on memory sticks and cards, smartphones, and even fax machines and copiers, since most of them aren’t just fax machines and copiers any more but also function as scanners and printers, which means they hold electronic data, Jenkins said.

Cloud services present special challenges because networks and services are frequently provided by companies that have not taken the extra steps to achieve HIPAA compliance because most of their customers don’t need it.  But if you are in healthcare, odds are you do need it.  RingRx can help you avoid data breaches involving healthcare information in your communications systems.

Download our whitepaper on
What a Phone Upgrade Should Look Like
Find out the shortcomings of "typical" solutions