Common HIPAA Mistakes

Everyone makes mistakes sometimes, but when healthcare staff does, it can cause significant repercussions regarding HIPAA. But by being aware of common HIPAA mistakes staff makes, you can limit your practice’s risk.

  1. Sharing login credentials with a coworker
  2. Improperly accessing medical charts
  3. Sharing patient information on social media
  4. Responding to online patient reviews
  5. Leaving portable electronic devices unattended 
  6. Failing to respond to patient record requests
  7. Improperly disposing of patient medical records
  8. Failing to report breaches to the compliance officer
  9. Not following the practice’s HIPAA policies and procedures
  10. Not paying attention to HIPAA training

Sharing Login Credentials with a Coworker

Login credentials should always be kept private, especially at work. Healthcare employees must each be given unique login credentials. When workers have their own usernames and password to enter systems that have access to patient information, it is easier to track when someone misuses them. 

Improperly Accessing Medical Charts

Tying into those employee login credentials, all employees do not need access to the same patient information. System administrators should give employees the necessary access levels to perform their job functions, but not more. A large portion of HIPAA violations occur from employees accessing information that they shouldn’t.

Sharing Patient Information on Social Media

Social media has infiltrated every aspect of our lives, including the workplace. This can pose a considerable risk when healthcare workers are posting from work. Employees should be discouraged from taking photos or videos at work, particularly in areas where patient information may be visible. Even patient information in the background of an image can cause a violation.

It is important to note that your practice can use social media or a website to promote your business. Remember to receive signed patient consent before sharing any of their information.

Make Sure You’re HIPAA Compliant

We can help train your staff on HIPAA and protect your practice from violations.