Categories
- Accountable Care Organizations
- Ambulatory Surgery Centers
- Anesthesiologists
- Antitrust in Healthcare
- Behavioral Health
- Clinical Integration
- Compliance Issues
- COVID-19 Resources
- Dental Practice Issues
- Fraud and Abuse
- Health Care Contracting
- Health Care Legislation
- Health Law Practice
- HIPAA – Health Information Privacy
- Home Health
- Hospital Issues
- Licensing
- Long Term Care
- Managed Care Contracting
- Medical Staff Organization & Structure
- Medicare and Medicaid
- Medicare and Medicaid Reimbursement
- Physician Issues
- Radiology Issues
- Reimbursement Issues
- Self Disclosure Protocols
- Stark Law and Anti-Kickback Issues
- Telemedicine
- Uncategorized
- Wisconsin Government
- Wisconsin Health Laws
- Wisconsin Hospitals
- Wisconsin Long Term Care
- Wisconsin Physician Issues
Wisconsin Health Law Posts
- The Impact of a Physician’s Ethical Obligations on Concierge Program Structure
- Birth to 3 Program Family Communication Published
- Wisconsin HIPAA Resources –
- CMS Will Hold Lessons from the Front Line
- Wisconsin Emergency Order #35 –
Meta
Identification of AIDS Status Through Medical Alert System
Dentist Revises Process to Safeguard Medical Alert PHI
A recent OCR investigation of a dental practice’s flagging of patients records highlights a potential HIPAA violation. The OCR investigation confirmed allegations that the dental practice flagged some of its medical records with a red sticker with the word “AIDS” on the outside cover. Records were handled so that other patients and staff without need to know could read the sticker. A patient complaint commenced an OCR investigation into whether the practice potentially identified the AIDS status of patients within the office.
When notified of the complaint filed with OCR, the dental practice immediately removed the red AIDS sticker from the complainant’s file. To resolve this matter, OCR also required the practice to revise its policies and operating procedures and to move medical alert stickers to the inside cover of the records. Further, the covered entity’s Privacy Officer and other representatives met with the patient and apologized, and followed the meeting with a written apology.
The lesson here is not to place special medical alerts on the outside of physical patient records. This is a particularly bad practice in a dental office where the typical office setup can
Read more here: Health Law Blog
