In 2015, lawmakers at both the federal and state levels recognized—and took action to alleviate—the lack of readily available and affordable healthcare options: namely, through legislation that opened the door for telehealth expansion. In fact, this Medscape article reveals that in the last year alone, “200 bills addressing telehealth were introduced in 42 states.
Here are three simple steps to securing your practice’s data, ensuring HIPAA compliance, and protecting your business.
From burglaries and fires to tornadoes and earthquakes, disasters happen. Is your PT, OT, or SLP practice prepared?
The average American spends way more time scouring the Internet for medical advice than he or she does with an actual doctor. Here are the trends for patient behavior online and what it means for private practice PTs.
Curious as to how the new rules included in the HIPAA Final Omnibus Ruling apply to you and your clinic? Here, we provide a breakdown of what’s in store for your practice starting September 23, 2013. The American Medical Association (AMA) published some great information to help physicians navigate this new ruling, which also applies to rehab therapists. According to the AMA, providers should focus most heavily on these three areas:
Today’s post comes from WebPT copywriters Charlotte Bohnett and Erica Cohen
So, you’ve decided to ditch the pen and paper and take your practice into the cloud―maybe through a payroll service, an email marketing tool, or even (hopefully!) an EMR. Now what? As you shop around for a cloud-based vendor to meet your clinic’s needs, be sure to get answers to the following nine questions.
1.) Is this truly cloud-based? Many companies claim to have a cloud-based component, but they still require you to download a desktop application (remote desktop protocol) that connects you with the web and stores your information. The bottom line? If you have to download and install anything, you’re not really in the cloud, and future updates are entirely your responsibility.
2.) Is your application browser agnostic? Browser agnostic means that no matter what browser (Safari, Google Chrome, Mozilla Firefox, or Internet Explorer) or version of that browser (IE7 vs. IE9) you use to access the Internet, your cloud-based application will work.
3.) Where is my data stored? Not all cloud-based vendors are the same. You want to make sure they’re storing your data in the most hi-tech and secure facility possible. For example, many Level 1 secure data centers boast a defensible perimeter, digital video surveillance, biometric screening, and 24x7xforever guard staff.
4.) How is my data backed up? Your clinic and patient data is invaluable, so of course you want to make sure that it’s always safe, secure, and frequently backed up. Additionally, ask your cloud-based provider how they will provide redundancies to ensure your data is always accessible and protected should a problem occur.
5.) What measures do you use to ensure my data is secure? Your cloud-based vendor should use the SSL encryption that is standard for all online banking applications. The federal government uses this same type of encryption for all of their data and communications. Look for a vendor that offers unique user IDs and passwords because this is an absolute must for anything online. Two more plusses: a vendor that has an audit trail (i.e., user activity tracking) as well as specialized staff well-versed in online security measures at the ready to provide you with expertise.
6.) What does Google say about the company? Conduct a Google search and see what the interwebs turn up. PT message boards and forums as well as articles often talk about cloud-based companies both positively and negatively so read for reputation clues. How online sources and the media describe a company can provide you with insight as to how that company treats its vendors, employees, and customers.
7.) What is the company’s focus? Depending on the cloud-based service you’re researching, you may find it valuable to find a vendor that focuses specifically on healthcare. This will ensure the company speaks your language and provides tailored features and benefits.
8.) Does the company keep its customers? No one wants to sign up with a vendor that is constantly losing customers. Thus, when researching, be sure to look for a vendor that keeps their customers happy. A few figures to consider: retention rate, user size, and growth rate. Your best bet is a company that has shown continued customer growth (year over year) while maintaining or improving their retention rate. Asking friends, family, and fellow therapists for recommendations and referrals is always a great route, too.
9.) How do I get my data if I decide to leave?
You certainly don’t want to be tied to a vendor you’re unhappy with because your data is stuck, so ask up front. Most cloud-based companies will return your data to you digitally on a pre-loaded storage device (e.g., a CD) or in a way you can download it to a storage device of your choice.
Regardless of the cloud-based service you decide to float on, just make sure you get all the answers you’re looking for—and the only way to do that is to ask everything up front. Remember, there are no stupid questions and a good provider will appreciate you doing your due diligence. In fact, your transition to the cloud can be a breeze (get it? a little sky humor).
Hopefully these questions help give you a soaring-off point.
So, you probably remember a few weeks ago we wrote a pretty comprehensive overview on how you can ensure HIPAA compliance in your clinic. We covered everything from HIPAA basics to continuing education and training. In case you didn’t have a chance to read it, here’s a refresher:
Today’s post comes from WebPT copywriters Charlotte Bohnett and Erica Cohen.
The Health Insurance Portability and Accountability Act (HIPAA) is as dense as it is important. But for any healthcare provider handling private personal health information, which you promised to protect as part of the Health Information Privacy Rule, there are a few things you must know.
First, a little background information on HIPAA: US Congress established the Health Insurance Portability and Accountability Act in 1996. They implemented Title II: Preventing Health Care Fraud and Abuse to protect a patient’s private health information (PHI).
Under this act, all healthcare providers, insurers, and their business associates may only collect, share, or use a patient’s PHI in approved methods and only for the explicit purpose of furthering patient care.
PHI is defined as demographic information; medical history; test and laboratory results; insurance information; and any other data health professionals collect to identify individual patients and determine their appropriate care.
Ever rush back to your house to double-check that you remembered to lock up? You care about security, about having all your belongings safe and sound. So do we. In fact, we’re a bit obsessed. But you can never be too cautious when it comes to your clinic’s data, right?
Enter IO Data Centers, the crème de la crème of data storage. With centers in Phoenix and Scottsdale, Arizona as well as Edison, New Jersey, IO is home to some of the most profitable and security-conscious companies in the world, including us. Not only do we house all your WebPT data here, but we store all our own data, too.
Who is IO?
I’ll let their company video do the talkin’:
For most people, any mention of the cloud causes flashbacks to high school science class—a white, fluffy cumulus or dark, stormy nimbus. But when we talk cloud, we mean neither. We’re talking the techy type: cloud computing. Cloud computing is, quite simply, internet-based computing. Essentially, shared resources, software, and information are provided to computers and other devices (like your smartphone) on demand. Think about it like an electricity grid for information—you plug in (sign on) and immediately are able to access the flow of information available to you without needing your own generating station (in this case, bulky servers to house all your data).