Join Online Tech and guest speaker Attorney Brian Balow of Dickinson Wright as we discuss how to handle HIPAA security and privacy concerns with using patient portals.
Title: Security and Privacy Concerns with Patient Portals
When: Tuesday, April 16, @2PM ET
Register: Online with GoToMeeting
Description: The HIPAA Privacy Rule grants individuals the right of access to inspect and obtain a copy of protected health information (PHI) about the individual. Medicare and Medicaid’s Stage 2 Meaningful Use requirements include the obligation of eligible professionals and hospitals to provide patients the ability to view online, download, and transmit their health information, and of eligible professionals to use secure electronic messaging to communicate with patients on relevant health information. And outside of this, patients as consumers are demanding better and quicker access to their health information.
While electronic portals are lauded for their ability to afford patients easy and fast access to their health records, the creation and use of these portals raise legal and regulatory concerns that fall outside of the typical covered entity/business associate/privacy and data security construct under HIPAA. Please join us for an informative discussion of these issues, and some recommendations on how to minimize risk while successfully deploying an electronic patient portal.
For a complete guide to HIPAA technical, administrative and physical security, read our HIPAA Compliant Hosting white paper. This white paper explores the impact of HITECH and HIPAA on data centers. It includes a description of a HIPAA compliant data center IT architecture, contractual requirements, benefits and risks of data center outsourcing, and vendor selection criteria.
Brian Balow, Attorney, Dickinson Wright
Brian Balow concentrates his practice in the areas of IT, healthcare law, and intellectual property. Brian has worked with Fortune 100 clients over the last 15 years on IT-related matters, including the drafting & negotiation of agreements, formulation & implementation of policies & procedures for the management of IT (including outsourcing-related issues), counseling & advising on privacy & data security issues, and assisting clients in favorably resolving disputes with IT vendors (including disputes with the BSA and SIIA).
More recently, Brian has spoken and written extensively on healthcare IT and telemedicine issues (including HIPAA/HITECH issues). In 2012, Brian presented on social media in healthcare issues at HIMSS12 in Las Vegas and to the National Council of State Boards of Nursing in Idaho, on regulation of mHealth technology at the SoCal HIMSS Health IT Innovation Summit in Yorba Linda, California, and on BYOD issues at the HIMSS mHealth Summit in Washington, DC. In December of 2011, Brian contributed the chapter entitled “Allocation and Mitigation of Liability” to the ABA Health Law Section’s “E-Health, Privacy, and Security Law” treatise.
Brian is a 1988 cum laude graduate of the University of Georgia School of Law, where he was twice a scholarship recipient and was Managing Editor of the Georgia Journal of International and Comparative Law. Following graduation, Brian served as a judicial law clerk to the Hon. James Harvey in the United States District Court, Eastern District of Michigan.
HIMSS 13: HHS Final Ruling Changes the Rules & Roles for HIPAA Hosting
At HIMSS 13, I attended a session, A Dialogue on HIPAA/HITECH Compliance: Considerations Now That the HITECH Rules Are Here that revealed insights into real-world applications of the new privacy and security rules, including the practical implications of the final … Continue reading →
Michigan Physicians Benefit From HIPAA Compliant E-Prescribing
The federal government agency for health IT, the Office of the National Coordinator for Health Information Technology (ONC), has recognized Michigan as an early achiever, completing the first milestone in e-prescribing as determined by the State Health Information Exchange Grantee … Continue reading →
No More Excuses: HHS Releases Tough Final HIPAA Privacy and Security Rules
Join us January 31st @2PM ET for a webinar with Brian Balow of the Dickinson Wright law firm to find out how the latest HIPAA modifications affect the healthcare industry and healthcare vendors. Title: No More Excuses: HHS Releases Tough … Continue reading →
Otava provides the secure, compliant hybrid cloud solutions demanded by service providers, channel partners and enterprise clients in compliance-sensitive industries. By actively aggregating best-of-breed cloud companies and investing in people, tools, and processes, Otava’s global footprint continues to expand. The company provides its customers in highly regulated disciplines with a clear path to transformation through its effective solutions and broad portfolio of hybrid cloud, data protection, disaster recovery, security and colocation services, all championed by an exceptional support team. Learn more at www.otava.com.