Author: Rose, Angela Dinh

Source: Journal of AHIMA

Publication Date: November 2013

In the most simple terms, information governance is the accountability framework and decision rights employed by an organization to ensure effective and efficient use of information across the enterprise. Ideally, this also achieves enterprise information management (EIM), which is the inf....

Author: Downing, Kathy; McMillan, Mac

Source: Journal of AHIMA

Publication Date: October 2013

The American Recovery and Reinvestment Act (ARRA) of 2009, in section 13411, requires the US Department of Health and Human Services (HHS) to conduct periodic audits to ensure covered entities and business associates are meeting HIPAA compliance requirements.


The findings of....

Author: AHIMA

Source: AHIMA practice brief

Publication Date: October 2013

Editor's note: This update supersedes the February 2004, February 2010, and May 2012 practice briefs "The 10 Security Domains."


In today's healthcare environment, HIM professionals must understand basic information security principles to fully protect the privacy of information. T....

Author: AHIMA

Source: AHIMA practice brief

Publication Date: October 2013

Editor's note: This practice brief supersedes the October 2011 practice brief "Sanction Guidelines for Privacy and Security Violations."


The HIPAA Breach Notification Rule requires healthcare providers, health plans, and other HIPAA covered entities (CEs) to notify individuals whe....

Author: Downing, Kathy; Lucci, Susan; Lerch, Diane M

Source: AHIMA practice brief

Publication Date: October 2013

Editor's note: This update replaces the November 2010 practice brief "HIPAA Privacy and Security Training."


On January 25, 2013, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published the long-awaited Health Insurance Portability and Accoun....

Author: McSteen, Thomas

Source: Journal of AHIMA

Publication Date: September 2013

The 2013 HIPAA Omnibus Rule marks a key milestone for implementation of the 2009 Health Information Technology for Economic and Clinical Health Act (HITECH). One of the most far-reaching impacts of HITECH and the Omnibus Rule is that business associates (BA) and their subcontractors now mu....

Author: AHIMA Work Group

Source: AHIMA practice brief | Journal of AHIMA

Publication Date: August 2013

Editor’s note: This update replaces the 2007 practice brief “Guidelines for EHR Documentation to Prevent Fraud.”


Electronic documentation tools offer many features that are designed to increase both the quality and the utility of clinical documentation, enhancin....

Author: Warner, Diana

Source: AHIMA practice brief

Publication Date: May 2013

This practice brief reviews the federal regulations that affect research and the requirements regarding the use and protection of an individual's information.

Author: McDavid, Jan P

Source: Journal of AHIMA

Publication Date: May 2013

Business associates (BAs) of HIPAA-covered entities like hospitals and doctor's offices should already be intimately acquainted with HIPAA's privacy and security regulations. BAs should already have business associate agreements with every covered entity with whom they work and assume resp....

Author: AHIMA

Source: AHIMA toolkit

Publication Date: May 02, 2013

This toolkit provides guidance for developing policies and procedures, establishing an educational program and managing record requests, denials, and appeals. It highlights some of the government entities and programs that focus on medical record audits.