Skip to content
Why Should I Care?
- Personal fines and jail time as a consequence of willful violation
- Company fines of up to $1.5 million dollars per year places your job in jeopardy.
- Reduction in Medicare reimbursement can put your salary, benefits and job at risk.
- It’s the right thing to do.
What Can You Do? 10 Do’s and Don’ts to Keep You Out of Trouble
Don’t:
- Don’t share your user name or password with anyone.
- Don’t leave PHI exposed on an unattended computer.
- Don’t ignore a PHI exposure, even if it’s unintentional.
- Don’t give out PHI data without proper safeguards.
- Don’t assume equipment doesn’t contain PHI.
- Don’t assume that people won’t look at exposed PHI on your computers.
- Don’t ever access PHI unless you have a reason to do so.
- Do not every post anything about your day at work to social media.
- Do not load any additional software unto your computers.
- File sharing software like DropBox
- Personal email
- Other cloud services or apps
- Games or fun software
- Do not use any unapproved personal devices or software.
Do:
- Do always login as yourself when you access PHI*.
- Do lock your computer if you are leaving it.
- Do remind each other about security best practices and report exposures to your supervisors.
- Do use encryption any time PHI is shared.
- Only encrypted email.
- Only encrypted media (thumb drives, CDs, etc.)
- Do protect medical equipment that records data, copiers, fax machines, etc.
- Do limit access to viewing screens that show PHI.
- Do remind each other to limit access
- Do remember that people can figure out what you are talking about even if you talk in code.
- Do restrict your use of your computers to just business.
- Do get approval before you use or attach any hardware or load any software.
Related