HIPAA, Privacy, and Confidentiality

Professional Education
HIPAA Fundamentals: 2019-2020 Edition
This program provides details on the HIPAA Privacy, Security, and Breach Notification Rules, such as the type of information that is protected, who must comply with the rules, and how patient information can be used and disclosed. This on-demand program includes many resources useful to staff training.
1.0 credits

Professional Education
Advanced Practice Providers Closed Claims: What Can We Learn?
The Doctor's Advocate CME
A recent study by the Association of American Medical Colleges predicts that the U.S. would need an additional 95,900 doctors, 22,700 NPs, and 12,800 PAs immediately if healthcare use patterns were equalized across race, insurance coverage, and geographic location. More understanding of the liability associated with APPs can help provide insight on the current situation and identify strategies that decrease risk, improve patient safety, and advance patient care.
1.0 Credits

Professional Education
Dementia Q&A: What Physicians Ask About Diagnosis and Treatment
The Alzheimer's Project Series
This course focuses on the common concerns and questions expressed by physicians about dementia and cognitive impairment. This course covers making the initial observation of cognitive decline and beginning a conversation with older adult patients; overcoming common barriers to making a definitive diagnosis of dementia; and managing the ongoing clinical needs of patients experiencing dementia.
1.5 Credits

Professional Education
Psychiatry: Preventing Adverse Outcomes
The Doctors Company study of closed claims reveals areas of higher risk in outpatient psychiatry practices. Using this as a foundation, the course provides information to evaluate your practice and make changes to improve decisions about treatment, operational processes, reporting, and documentation.
1.5 Credits

Feb 27, 2019
Wearable Medical Devices Give Abundant Data—and Risks
Miranda Felde, MHA, CPHRM, Vice President, Patient Safety and Risk Management
The number of US consumers tracking their health data with wearables has doubled. And that number continues to rise. Wearables bring promise, but also real risks for patient safety and physician liability.

Feb 08, 2019
Cybersecurity and Data Breaches Report
It’s not a matter of if a data breach will occur in your medical practice—it’s a matter of when. Make sure your practice is prepared with this guide, which covers how to comply with HIPAA rules in the event of a breach, how to thwart ransomware attacks, how to combat password theft, and more.

Jul 30, 2018
Cybersecurity Insurance for Medical Practices—The Basics
David J. Eismont, ARM, Senior Director of Business Development
More medical practices are purchasing an insurance policy to cover the substantial costs of a data breach. Here is an overview of what your practice can expect from a cybersecurity policy.

Jun 06, 2018
Is It Safe to Store PHI on Remote Cloud Servers?
David McHale, Senior Vice President and Chief Legal Counsel
Cloud storage is a convenient and cost-effective solution for medical practices and facilities, but precautions must be taken to ensure stored patient data (PHI) is secure. This article has tips for choosing a cloud service provider.

Video Jan 04, 2018
Disaster Preparedness for Your Medical Practice
Recent fires, hurricanes, and floods nationwide have highlighted the importance of planning for disasters. Wildfires in California forced several physicians to quickly relocate their practices―some permanently―and to move scheduled procedures to different facilities. Hurricane and flood damage in Texas and Florida left practices without power for days or even weeks. Is your practice prepared for this type of situation?

Dec 13, 2017
Disaster Preparedness for Your Medical Practice
Julie Brightwell, JD, RN, Director, Healthcare System Patient Safety, Department of Patient Safety and Risk Management
Recent fires, hurricanes, and floods nationwide have highlighted the importance of planning for disasters. Physicians are critical participants in disaster preparedness, ensuring that patient care and critical services are not interrupted—especially for at-risk individuals who may have special medical needs.

Video Nov 10, 2017
Healthcare Billing Risks
All healthcare providers are vulnerable to fines and penalties if they submit bills for reimbursement to the government or private payers. This video presents an overview of the risks to healthcare providers posed by billing errors and omissions.

Professional Education
HIPAA for Managers: The High Level View
This activity provides a detailed review of the Health Insurance Portability and Accountability Act (HIPAA). The program is for administrators and supervisors who need tools to develop and manage HIPAA programs within their medical and dental practices. 
2.0 Credits

Professional Education
Cybersecurity and Data Breaches
Cyberattacks or data breaches can significantly damage any size or type of group practice. Designed for doctors and staff, this activity heightens awareness about the most common ways that cyberattacks and breaches occur and what each person can do to prevent patient information from being exposed or stolen.
1.25 Credits

Video Oct 13, 2017
Case Studies: Healthcare Data Breach Risks
The healthcare industry suffers more data breaches than any other business segment—a total of 51 percent of all breaches. This video presents an overview of the cybersecurity threats facing healthcare organizations and what they can do to mitigate their risk.

Aug 28, 2017
The Search for Mary Smith
David B. Troxel, MD, Medical Director, Board of Governors
A case study illustrating the importance of researching healthcare technologies thoroughly before implementing them.
From The Doctor’s Advocate

Jun 12, 2017
Cybersecurity Must Be Part of Every Healthcare Professional’s Job
Craig Musgrave, CIO, The Doctors Company
Recent cyberattacks have been devastating. They’ve cost billions of dollars, angered and potentially endangered patients, eroded the reputation of healthcare organizations, and left institutions and individual physicians exposed to HIPAA violations. Cybersecurity is no longer just an IT issue. Every employee and every organization needs do their part.

Video May 06, 2017
Seven Tips to Help Stop Ransomware
Preparation is key: Once you've been hit by ransomware and your hard drives encrypted, your options are incredibly limited. This video shares the top seven tips you need to know to help your medical practice or hospital prevent or recover from a ransomware attack.

Feb 18, 2017
Up for Review: Five Keys to Managing Online Criticism
Kevin Pho, MD, Founder and Editor, KevinMD.com
No matter how professional and caring a doctor you may be, eventually you will face criticism on the web. Here are five keys to managing that criticism.

Video Feb 07, 2017
Paying Cyber Ransom: Pros and Cons
If ransomware strikes a healthcare organization, the cybercriminals behind the attack will demand a payment in exchange for restored access to the organization’s data. Typically the demand is for bitcoin equivalent to less than $10,000. Paying the ransom may be an attractive option if a healthcare organization’s entire network has been compromised and no reliable backup exists. However, there are several compelling arguments against paying.

Video Feb 07, 2017
3 Steps for Ransomware Defense
While no environment is completely secure from cyberattack, a healthcare organization can take steps to reduce the likelihood that it will suffer the consequences of ransomware.

Video Feb 07, 2017
Why Cybercriminals Prefer Bitcoin
Currency is a means of exchange typically sanctioned by a central body like a government or central bank. Bitcoin, however, is a decentralized digital currency based on a public ledger secured by cryptography. As a result, bitcoin transactions are largely irreversible and untraceable. This makes bitcoin and other digital currencies attractive to cybercriminals. They give cybercriminals a means of monetizing their attacks anonymously—one reason that ransomware attacks have proliferated.

Video Feb 07, 2017
Ransomware: Do's and Don'ts
Panic is the typical reaction when a healthcare organization suffers a ransomware attack. If an organization lacks a thought-out response plan for this type of crisis, people tend to overreact. They may do things that will make it harder to recover from the attack and could increase future liability. But an organization can avoid panic by having an incident response plan in place. This plan should provide a framework of actionable steps, including what to do, who is going to do it, and what is going to happen as a result.

Video Feb 07, 2017
Patient Data Trafficked on the Dark Web
Cyberattacks in the healthcare industry have proliferated for two main reasons. One, cybercriminals can sell PHI at a high price on the dark web (the online market where stolen data is bought and sold). Two, healthcare organizations are vulnerable to cyberattacks because they lack the defenses of banks and other financial institutions. Particularly attractive to cybercriminals are midsized healthcare organizations, which in general are underprepared to counter this threat.

Video Feb 07, 2017
Ransomware Threatens Patient Care
Cybercriminals typically target healthcare organizations using malicious software, or malware. Most malware is programmed to steal data and take it outside of the network. But cybercriminals today are often choosing a different form of attack: ransomware. A ransomware attack uses encryption to prevent the healthcare organization from accessing its PHI. This puts the healthcare organization in a serious crisis, as PHI is critical to providing care to patients.

Please select a content type from the menu.

Show by type:

Stay in the Know

Sign up for The Doctor’s Practice.

Our e-newsletter features timely articles, videos, and guides on a range of patient safety topics.

SUBSCRIBE ­

Follow The Doctors Company on Twitter Watch The Doctors Company on YouTube The Doctors Company on LinkedIn Like The Doctors Company on Facebook

© The Doctors Company. All rights reserved. Legal Notices and Privacy Policy | Glossary of Insurance Terms