Đang chuẩn bị liên kết để tải về tài liệu:
Guide to Privacy and Security of Health Information

Expansion of employee incentives to improve health continues Although engaging employees to better manage their health is an ongoing challenge, companies have expanded their use of i nancial rewards to employees and their spouses to encourage participation in health management programs. These programs have become signii cant elements in the HR toolbox. In fact, more than two-thirds of respondents offer incentives today. This is hardly surprising since competitive pressure and the pace of change have increased the demands on everyone at all levels of any company. Companies have also been more willing to add penalties to their arsenal (used by. | The Office of the National Coordinator for Health Information Technology s SERVICE Guide to Privacy and Security of Health Information Version 1.2 060112 The information contained in this guide is not intended to serve as legal advice nor should it substitute for legal counsel. The guide is not exhaustive and readers are encouraged to seek additional detailed technical guidance to supplement the information contained herein. Putting the I in Health IT www.HealthlT.gov Guide to Privacy and Security of Health Information The Office of the National Coordinator Health Information Technology Services. Contents Chapter 1 What Is Privacy Security and Why Does It Matter .4 Chapter 2 Privacy Security and Meaningful Use MU .6 Core Measure 12.8 Assure You Comply with MU Privacy Requirements.8 Core Measure 15.9 Assure You Comply with MU Security Requirements.9 Identify Risks to Your Medical Practice.10 What Is a Security Risk Analysis .10 Mitigate Risks to Your Medical Practice.12 Risk Management Entails Five Security Components.12 The Threat of Cyber-Attacks.13 Our Own Worst Enemy.13 Chapter 3 10 Step Plan for Meeting Privacy and Security Portions of Meaningful Use.14 Step 1 Confirm You Are a Covered Entity .15 Step 2 Provide Leadership.15 Step 3 Document Your Process Findings and Actions.18 Step 4 Conduct Security Risk Analysis.18 Step 5 Develop an Action Plan.20 Step 6 Manage and Mitigate Risks.21 Information Security Settings in Your EHR.22 Written Policies and Procedures.22 Continuous Monitoring of Your Security Infrastructure.23 Step 7 Prevent with Education and Training.23 Workforce Education and Training.24 Make Protecting Patient Information Part of Your Routine.24 Step 8 Communicate with Patients.24 Fulfill Your Responsibilities for Patient s Health Information Rights.25 2 Guide to Privacy and Security of Health Information The Office of the National Coordinator Health Information Technology Services. Contents Online Communications with Patients.25 Step 9 Update .