Info

Practice Management Nuggets

Practice Management Nuggets Podcasts for Your Healthcare Practice - is a regular interview series with practice managers, healthcare providers, or trusted vendors who support healthcare practices. Topics include things you need to know to help you start, grow, improve, or maintain your healthcare practice. The events will be short – about 30 minutes – with nuggets of information that you can use right away. And best of all – this is a free, no cost opportunity for you and your staff to hear from experts on a variety of topics how they made their clinics and businesses a success! Practice Management Nuggets© series is hosted by Jean L. Eaton (Your Practice Management Mentor and Practical Privacy Coach) of Information Managers Ltd. I am constructively obsessive about privacy and confidentiality in the healthcare sector--and I think you should be, too! I help primary care practice managers and health care providers properly manage the risk of a privacy breach, stay out of jail, avoid fines AND keep an efficient practice! Practice Management Nuggets has been interviewing guests and sharing nuggets of information since 2014! Get all the show notes at PracticeManagementNuggets.Live. www.InformationManagers.ca www.PracticeManagementNuggets.Live
RSS Feed Subscribe in Apple Podcasts
Practice Management Nuggets
2020
December
October
September
August
July
June
May
April
March
February
January


2019
December
November
September
July
June
May
April
March
February
January


2018
September
August
May
April
March
February
January


2017
December
October
July
June
May
April
March
February


2016
September
June
May
April
March
February
January


2015
December
November
October
September
May
April
March
February


Categories

All Episodes
Archives
Categories
Now displaying: Page 1
Dec 18, 2020

You might need to amend your PIA if you want to:

  • add a new digital health app or patient portal to make it easier for patients to book appointments with you, or
  • get access to Alberta Netcare Portal, or the CII or CPAR projects,
  • expedited Netcare Privacy Impact Assessment,
  • use the internet to get telehealth on-line consultations for your patients,
  • update your participating custodians and privacy officer, and
  • regular review to ensure that you are continuing to meet the requirements of the Health Information Act (HIA).

A PIA is a practical business tool in your healthcare practice.

A PIA is an important tool that you can use to help you with project management.

It will help you anticipate risks to the project before it starts and avoid serious problems, and wasted time and money.

The PIA process requires you to have written policies and procedures so that you can implement the project effectively and train your staff consistently.

Sometimes a PIA is a requirement of legislation. But it is always a best practice whenever you implement a project that includes personal health information.

Show Notes


01:14  Introduction Jean L, Eaton

05:08  What Is A PIA

06:46  Purpose of a PIA

10:53  PIA Facilitates Discussion

11:57  PIA Will Help You Select Vendors

13:38  PIA Process

16:12  What is a p-ORA?  

17:20  When do you need a privacy impact assessment (PIA) amendment?

19:17  Is It A New PIA or Amendment? 

20:55 Common scenarios

21:47 Change in Custodians

22:38  New Location

23:17  Alberta Netcare Portal

24:47  Previous PIA is more than 2 years ago

25:20  Telehealth

26:16  PIA Timeline

28:04  10 Steps To Prepare Your PIA Amendment

28:14  Step 1 Locate Previous PIA

31:03  Step 2 Review Your Current IT

40:07  Step 3 Review Policies Procedures

40:43  Step 4 Review Your Safeguards

41:34  Step 5 Authorizing User Permissions

43:43  Step 6 Training Policies

45:21  Step 7 Access and Correction Requests

47:06  Step 8  Masking

47:37  Step 9 Responding To Breaches

50:06  Step 10 Next Steps

52:20  Summary

53:29  Remote Working Telehealth Tools

PMS Tip Remote Worker Privacy And Security Checklist: https://informationmanagers.ca/pmsrw

PIA Template Remote Working and Virtual Care: https://informationmanagers.ca/pia-virtual-care

55:22 Practice Management Success Tip Privacy and Security Policies and Procedures Checklist
https://informationmanagers.ca/o6s2

55:58 Health Information Management Privacy and Security Policy and Procedure Templatehttps://informationmanagers.ca/hitemplates

56:10  3 Options To Help You With Your PIA
https://informationmanagers.ca/privacy-impact-assessment-pia/

Oct 28, 2020

If you have an appointment schedule with a lot of openings, you might need a patient recall program.

If you don't have many recall appointments in your schedule, you might need a patient recall program.

If you want to add additional or your first dental hygienist, you might need a patient recall program.

If you have patients that haven't seen you for a long time, you might need a patient recall program.

Today, Joanne Williams of U R DU Appointments is my guest on this episode of Practice Management Nuggets For Your Healthcare Practice!

Joanne will share how a patient recall program will help a dental practice, increase your revenues by implementing a consistent patient recall program.

Show Notes

Publish October 27, 2020

00:59  Introduction Jean L. Eaton

01:59  Welcome Joanne Williams

04:19  Pink elephant

05:15  Joanne Williams’s #1 Tip

Be consistent with your patient recall program.

What Is A Patient Recall Appointment

06:38  Why Are Dental Appointments Important to the Dental Practice?

07:42  Benefits Of A Patient Recall Program

08:20  Examples of Using Patient Recall Program

09:22  Metrics to Monitor

14:45  How To Start A Practice Management Program

15:40  Who In a Dental Practice Is Responsible for a Patient Recall Program

20:14  Benefits of Using Remote Team Working With Your Practice

22:35  U R Du Services On-boarding

25:27   Offer 30% off First Month Service

ttps://InformationManagers.ca/likes-urdu

Receive 30% off your first month services. Offer runs until December 31, 2020.

Sep 20, 2020

When a practice has an efficient processes in-office practice is streamlined, then you ready to embark to see patients with telemedicine. The COVID-19 pandemic is the catalyst for growth in telemedicine.

Dr. Michael Greiwe, M.D. practicing orthopaedic surgeon with OrthoCincy and the founder of the OrthoLive and SpringHealthLive telemedicine platforms is my guest on this episode of Practice Management Nuggets For Your Healthcare Practice!

He’s going to share with us how to increase you practice revenue, efficiency and patient satisfaction with telemedicine.

Meet Dr. Michael Greiwe

Michael Greiwe, M.D., is a surgeon by day and tech guru by night. He is a practicing orthopaedic surgeon with OrthoCincy, near Cincinnati, Ohio, and the founder of the OrthoLive and SpringHealthLive telemedicine platforms. The platforms allow medical practices to deliver telemedicine visits through real-time HIPAA compliant video conferencing between provider and patient - increasing practice revenue, efficiency and patient satisfaction. Dr. Greiwe is a nationally recognized expert on how telemedicine technology is changing the practice of medicine. TV news stations and podcasts across America have interviewed him about the future of telemedicine, and how to use it to improve the patient experience. He attended the University of Notre Dame, where he won the prestigious Knute Rockne Award for excellence in academics and athletics. He completed his orthopaedic surgery training at the University of Cincinnati Department of Orthopaedic Surgery and Sports Medicine. In 2010, Dr. Greiwe completed his fellowship in shoulder, elbow and sports medicine at Columbia University, training with the head team physician for the New York Yankees, Dr. Christopher Ahmad.

To find more, see OrthoLive https://www.ortholive.com and SpringHealthLive https://SpringHealthLive.com

Show Notes

Publish Sept 22, 2020

00:45  Introduction Dr. Michael Greiwe

02:42  “Telemedicine is the next tool that is going to make the job easier for physicians and better for patients.” Dr. Mike Greiwe

05:14  What is Telehealth

08:53  OrthoLive Available on the App Store readily available to providers and patients

10:22 Digital Health Misconception that patients don’t want to use telehealth

11:07  “90% of Patients Prefer Telemedicine over in-office visits.”

11:54  When Is A Practice Ready To Implement Telehealth?

14:54  Processes is the way to run your practice efficiently

15:39  Future trends in telehealth

17:27  Confidence Growing with Telemedicine

18:27  Patient Access is the Beauty and the Power of Telemedicine

19:18  Lessons Learned From 500,000 Telehealth Visits – Top 3

19:45  1. Band Leader

20:10  2. Understanding Where The Low Hanging Fruit Is

20:56  3. Technology Platform Super Easy for Patient Access and Efficient for Providers

22:38  Opportunities in Canada

Key word Searchie https://PracticeManagementNuggets.Live/search  

Sep 7, 2020

Healthcare providers and clinic managers have three common myths about EMR user monitoring auditing.

Myth #1 – The electronic medical record EMR automatically does all the auditing – I don’t have to do anything

Myth #2 – I don’t have to audit my users – I know them

Myth #3 – I won’t have to worry about this until I have a breach

Rob Pruter, the User Monitoring Expert at SPHER is my guest on this episode of Practice Management Nuggets For Your Healthcare Practice!

He’s going to share with us how to protect your practice and your patients when you use Artificial Intelligence (AI) technology that can recognize unusual activities and generate a warning message.

Finally, an easy way to perform user monitoring and quickly recognize risks from external bad actors and employee snooping incidents!

Meet Rob Pruter

Rob Pruter

Rob is the Chief Revenue Officer at SPHER, Inc.

He is responsible for all global sales, marketing, and partner revenue at SPHER, Inc.

For the past 20 years, he has successfully built marketing programs and partner alliances in the healthcare IT space with larger companies and innovative start-ups.

He has a passion for protecting patient privacy and cybersecurity for the healthcare industry.

And he is my new best friend with a passion to improve audit log monitoring!

To find more from Rob, download the brochure from SPHER! https://informationmanagers.ca/likes-spher

 

Show Notes

Publish September 7, 2020

00:59  Introduction Jean L. Eaton

01:45  Welcome Rob Pruter

02:40  Pink Elephant in the room

What do clinic managers and health care providers need to know about monitoring audit logs?

02:57 Rob Pruter’s #1 Tip

Nobody goes to the doctor to get their identity stolen.

05:16  What is an audit log?

06:37  Everyone needs a unique user ID

08:48  Myth #1 – The electronic medical record EMR automatically does all the auditing – I don’t have to do anything

11:53  Myth #2 – - I don’t have to audit my users – I know them

15:05  Myth #3 – I won’t have to worry about this until I have a breach

19:45  How To Use AI Audit Log Reports

21:00  Identify security risks right away avoids remediation costs, time spent, and enforces a culture that snooping is not permitted.

23:44  Multiple locations and remote working often also means less supervision. AI auditing tools can help you be proactive.

25:46  Who is AI Audit Monitoring For?

27:14  When is a clinic ready to start AI Audit Monitoring?

28:10  Find Out More From SPHER

https://InformationManagers.ca/Likes-SPHER

Key word Searchie https://PracticeManagementNuggets.Live/search  

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too. If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach
and Your Practice Management Mentor
with Information Managers Ltd.

Aug 30, 2020

Recently, I was asked about what privacy awareness training can you do at the clinic to keep privacy awareness top of mind.

How do you keep Privacy Awareness top-of-mind in your practice?

As an employer and health care provider, you are responsible to provide training to all of your employees about privacy awareness. If you don’t provide the training, if the employees don’t understand the policies and there is a privacy breach, then the healthcare provider is more likely to be held accountable under the legislation and face penalties including fines and even prison!

Protect your organization and your patients. Equip your staff with the information they need to confidently and correctly handle personal health information. Healthcare businesses who want employee and supervisor level privacy awareness training to support key policies, procedures and risk management programs need a privacy awareness training program.

Here are some easy to implement tips to help you get started with your privacy awareness program.

Show Notes

Publish Aug 31, 2020

11:16  Introduction to Jean L. Eaton

Are you on Instagram? Me too! Tag me @Infomanltd

00:37  Privacy Awareness Training

03:09  Example - Should You Provide Your Child's Health Insurance Number to the School?

For more discussion on the topic of HIN# and schools, see the Saskatchewan Office of the Information and Privacy Commissioner

The example video will be available soon for download in this lesson.

08:39  Health Information Privacy and Security Policies and Procedures Manual

09:45  Practice Management Nuggets For Your Healthcare Practice Podcast

https://practicemanagementnuggets.live/

10:15  Privacy Awareness Training course

https://corridorinteractive.com/online-training/privacy-awareness-in-healthcare/

10:57  Practice Management Success membership

https://informationmanagers.ca/practice-management-success/

11:09  CyberSecurity Awareness Month

https://Staysafeonline.org/ncsam/champions

 

Practice Management Success

Are you feeling frustrated with the same problem over and over again in your clinic?

Or solving one problem just to find another problem popping up?

Don’t know where to go for help?

Many new and seasoned clinic managers find that they need help from time to time with questions like the ones that we discussed in this podcast episode.

Do This Now

Members of Practice Management Success can access the video of this episode and the resources here in the membership.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or fix your healthcare practice and your career!

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too. If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach
and Your Practice Management Mentor
with Information Managers Ltd.

Aug 17, 2020

Are you a clinic manager or healthcare provider who wants to build your network and re-fresh your professional connections so that you are better prepared for your next career move or, maybe, start or build your own business?

You have heard that LinkedIn is THE place to grow your career and your professional presence

But you are wondering what the correct etiquette is, and the best practices for your LI profile?

Knowing the essentials to using LinkedIn will make a big difference in improving your visibility and credibility – both crucial to building your authority and influence.

If you are serious about having a solid, fully optimized LinkedIn profile, then stay tuned!

Janice Porter will help you develop and use LinkedIn as a primary tool for bringing in new business.

Janice Porter, LinkedIn Networking Expert is my guest on this episode of Practice Management Nuggets For Your Healthcare Practice!

Janice knows the essentials to using LinkedIn that will make a big difference in improving your visibility and credibility – both crucial to prepare for your next job or move your healthcare practice towards profitability.

Meet Janice Porter

Janice is known as a master communicator, and her passion is specializing in working and teaching professionals online and offline networking and marketing strategies for attracting, developing, nurturing, and retaining relationships that enhance business growth and profitability.

Janice believes anyone in business or looking for a new position, needs to have a professional LinkedIn profile, and that LinkedIn is a powerful, under-utilized online platform for attracting new clients, new referral partners, or being found by recruiters.

Connecting like-minded people is one of her innate gifts, because she cares and deeply values each person in her network. It is with deep insight and a steadfast belief in relationship marketing that Janice makes the introductions, and only when she is knows it will be beneficial to both parties.

To find more from Janice, download 16 Steps To A Fully Optimized LinkedIn Profile

Show Notes

Publish Aug 17, 2020

00:59  Introduction Jean L. Eaton

01:10  Welcome Janice Porter

08:40  Pink elephant

09:00  Janice Porter’s #1 Tip

11:00  Why Linked In

11:55  Step 1  Be Authentic

12:40  Step 2  Create An Optimized Headline

14:58  First Impression

16:50  Step 3  Be Visible

18:23  Step 4  Be Personal

20:46  Step 5  Make New Connections

23:27  Is It Worth It?

24:45  Summary 5 Tips

32:06  Janice’s Offer https://InformationManagers.ca/Janice

Practice Management Success

Are you feeling frustrated with the same problem over and over again in your clinic?

Or solving one problem just to find another problem popping up?

Don’t know where to go for help?

Many new and seasoned clinic managers find that they need help from time to time with questions like the ones that we discussed in this podcast episode.

Do This Now

Members of Practice Management Success can access the video of this episode and the resources here in the membership.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or fix your healthcare practice and your career!

Aug 2, 2020

Mergers and acquisitions and closing and consolidating are activities that healthcare practices undertake at various times in the life cycle of a business.

There are many reasons why a practice may consider buying or acquiring an existing healthcare practice.

You might be expanding your practice to rapidly expand the scope of your services, location, or space. Or you might be downsizing your practice. Or maybe you're merging multiple practices into one streamlined practice so you can better manage your profit margins.

You might be looking to diversify your services or, perhaps, create an area of super-specialty that will provide a competitive advantage for your healthcare practice.

You might be wanting to acquire skilled employees or healthcare providers that you couldn't recruit in your current circumstances.

You might be acquiring or consolidating real estate infrastructure, medical equipment or electronic medical records, computer networking, or perhaps the management team. Or you might be exploring opportunities for economies of scale or cost-cutting.

As a custodian (including physicians, pharmacists, dentists, chiropractors, nurse practitioners, optometrists, and more) you need to ensure that the patient's health information remains private and secure, and that patients have continued access to their health information.

In this episode, I’m going to help you with

5 Important Steps Before You Merge Or Close Your Healthcare Practice To Ensure Your Continued Privacy Compliance

  1. Inventory All Your Existing Patient Records
  2. Patient Records Systems
  3. Agreements
  4. Existing Documents
  5. Privacy Impact Assessment Amendment Plan

 

Show Notes

(Recorded August 3, 2020)

Show Notes – Podcast / YouTube

01:41  Introduction Jean L. Eaton

02:20 Communication Plan

04:04  5 Things You Need To Know Before You Merge

04:47  1. Inventory All Your Existing Patient Records

07:27  2. Patient Records Systems

11:04  3. Agreements

11:52  4. Existing Documents

13:14  5. Privacy Impact Assessment Amendment Plan

16:24  Privacy Impact Assessment Amendment Takes A Team

Also see

Practice Management Success Tip - Closing and Moving a Healthcare Practice

https://InformationManagers.ca/pmscm

Practice Management Success Tip - Top 3 Agreements You Must Have In Your Healthcare Practice (And Why)

https://InformationManagers.ca/Top-3

Template Forms – see the Practice Management Success Tip!

https://InformationManagers.ca/closing-your-healthcare-practice

Template Procedures –  see the Practice Management Success Tip!

https://InformationManagers.ca/closing-your-healthcare-practice

Jul 28, 2020

Closing or moving a healthcare provider practice takes co-ordination, patience, communication, and documentation.

Once you have made the big decision about closing, moving, or merging your practice and have a general idea about the next step for you, your practice, your employees, and your patient and business records you need to plan the continued administrative, technical, and physical safeguards of the patient health records.

Patients and clients have a unique trust with their healthcare provider. They trust that you will provide them continuing healthcare and continued access to their own health information that you have recorded. You are also expected to securely keep their personal health information and follow your professional college standards and health information privacy laws.

 

In this episode Jean L. Eaton will help you with

  • Provide clarity about records management in your group or shared practice.
  • Guide you to develop health records management plan when you close, move, or expand your chiropractic practice.
  • Contribute to the health information privacy compliance.

Get the show notes and links to the templates at https://PracticeManagementNuggets.Live 

Show Notes

01:49  Introduction to Jean L. Eaton

Are you on Instagram? Me too! Tag me @Infomanltd

03:05  Close, Move, Merge Your Practice

04:32  Continuing Care and Treatment

05:44  Custodian Defined Under HIA

08:34  Patient Records

09:22  Steps When You Close Your Practice

10:05  Notice To Patients

Template Forms – see the Practice Management Success Tip!

https://InformationManagers.ca/closing-your-healthcare-practice

 

Template Procedures -  see the Practice Management Success Tip!

https://InformationManagers.ca/closing-your-healthcare-practice

 

12:16  Records Requests, Fee Schedule

14:49  Patient Access To Their Own Health Record

16:33  Moving vs Closing Timelines

18:37  Notify Others

19:19  How To Manage Conflicts

22:08  Information Management Agreement / Information Sharing Agreement

Download the Practice Management Success Tip –

Top 3 Agreements Your Healthcare Practice MUST Have (and Why).

22:45  Inventory Patient Records

25:14  Retention, Archive, Destruction

27:45  Electronic Transfer, Data Migration, Quality Assurance, Privacy Impact Assessment (PIA)

31:19  Practice Management Success Tip Download

https://InformationManagers.ca/closing-your-healthcare-practice

32:39  Discussion

33:12  Searchie

33:38  Follow Me on Social Media

Do you have a question about practice management or privacy compliance? Would you like to be a guest on Practice Management Nuggets? Send me an email at https://practicemanagementnuggets.live/contact-us/ 

Jun 13, 2020

Have some of your employees been working remotely during COVID-19?

If schools re-open with children attending alternate days, will your employees continue to work from homes on alternate days?

Do the social distancing guidelines for re-opening suddenly limit the number of employees who can work out of your current space?

Or, are you considering changing your business structure to include remote working as your new business model?

In this podcast, Jean L. Eaton will discuss privacy breach risks when remote working - and how you can prevent them!

Get the show notes and links to the templates at https://PracticeManagementNuggets.Live 

May 13, 2020

Each healthcare practice has been impacted by the COVID-19 pandemic.

This is certainly a disruption to our business continuity and a risk to privacy and security of patient, employee, and business information.

Each custodian and healthcare provider must maintain a written record of safeguards that have been implemented during the pandemic, ensure that these are communicated to their affiliates, and monitor to ensure they are followed.

What can we learn about the pandemic incident response so far?

As we prepare to re-open our practices, what can we anticipate?

If we experience a second wave and have to lock down again, are you prepared?

In this podcast, Jean L. Eaton shares a strategy to help you with your pandemic incident response review so that you can respond to a similar incident with confidence.

Get the show notes and links to the templates at https://PracticeManagementNuggets.Live 

Apr 20, 2020

Are you a healthcare provider who needs to hire information technology or business support services - but don't know what questions to ask?

Are you a vendor who works with healthcare or dental practices and need to better understand your responsibilities to keep your clients regulations compliant and your business disaster-free?

In this podcast episode, my guest expert Jon Harmon of Trinus Technologies shares his tips about computer security and standards that every healthcare provider needs to know!

Mar 25, 2020

Is Remote Working A Good Choice For Your Healthcare Practice?

In our healthcare practices, we have policies and procedures to identify the reasonable safeguards we need take to protect personal and health information entrusted to us.

But when employees complete their roles off-site, due to personal circumstances or to ensure business continuity in unusual situations, we need to take action to ensure reasonable safeguards are in place to protect the privacy, confidentiality, and security of personal health information.

Remote Work May Be Available to Employees

Working from home is at the sole discretion of the custodian and owner of the clinic. Examples when this may be applicable include:

  • Business continuity - due to technical, physical, or other unusual circumstances.
  • Work levelling – volumes of work are distributed to another location usually for a short duration.
  • Illness / personal circumstances – where an employee is unable to report to work at the clinic but can continue to complete their roles off-site.

Some administrative tasks in a healthcare office—for example, incoming phone calls, appointment booking, appointment reminders, billing, and/or transcription—could be done from a home office environment. Sometimes even follow-up and consultations from the healthcare provider can be done remotely, too.

The healthcare provider or custodian is ultimately responsible to ensure the secure collection, use, and disclosure of health information.

Is Remote Working Good For Your Business?

As the custodian, you must decide if remote working is a good option for your business. When you decide that this is a viable option for your business, you then need to

  • Determine if remote working is appropriate for your employees.
  • Identify what clinic / business resources need to be provided to the employee remote worker.
  • What reasonable safeguards need to be implemented to protect the privacy, confidentiality, and security of personal (health) information.

In this podcast episode, Jean Eaton shares how to prepare a risk assessment that you can use as part of your PIA submission for Remote Working and Virtual Health.

Feb 4, 2020
Subscribe: itunes | Email | Stitcher | RadioPlayer |

Are you a healthcare provider who needs to hire information technology or business support services – but don’t know what questions to ask?

Are you a vendor who works with healthcare or dental practices and need to better understand your responsibilities to keep your clients regulations compliant and your business disaster-free?

In this podcast episode, Jean Eaton speaks with Donna Grindle  who  shares her observations on the HIPAA violations trends from the United States so that healthcare providers and vendors in Canada can prevent similar experiences.


Don’t Be Confused About Information Manager Agreements!

In this free report, I’ve explained the Top 3 Agreements Your Healthcare Practice MUST Have (and Why).

Good business practices and health information management is supported by three agreements your healthcare must have.

Buttonimage e-book

Meet Donna Grindle

Donna Grindle – Founder & CEO Kardon in Georgia, US – Kardon is a HIPAA focused business

Donna brings over 30 years experience in healthcare IT which is the solid foundation of Kardon’s HIPAA privacy and security consulting. Donna stays busy with speaking engagements, the weekly Help Me With HIPAA podcast, and managing a business with a growing client list. Donna’s sense of humor and southern charm spills out into everything she does.

You can find Donna on social media, too! Kardon  https://kardonhq.com

Twitter  |  Linkedn  |  YouTube  |  Podcast

Show Notes

Recorded: January 17, 2020
(you can fast forward to your favourite section)

01:04  Help Me With HIPAA Fan Club

It’s not about compliance. It’s about patient care.

03:04  Introduction Donna Grindle

09:00  More Similar Than Different US / Canada

09:33  US / Canada Terminology

18:00  What If There Isn’t A BAA / IMA?

19:00  Tips: Healthcare Provider Selecting A Vendor

26:00  Tips: Vendor Selecting A Healthcare Client

32:00  Liability – What Is It?

34:33  Time Frame To Report And Notify

36:38  Reportable Breach / Security Incident

39:37  Incident Response Plans

40:22  Cyber Security Insurance

42:15  Is Hacking An Act Of War?

44:15  How Big  Is Your BAA / IMA?

45:35  Key Points In Your BAA / Information Manager Agreement

48:59  THE HIPAA Boot Camp!

https://helpmewithhipaa.com/

2020 Spring Dates: March 23, 24, 25

 

Check out these Help Me With HIPAA podcast episodes where Donna and David share more vendor vetting and BAA tips.

•Ready for extreme vendor vetting?  – Episode #150

•7 Questions to Ask Your Vendor – Episode #218

Need more information about Information Manager Agreements? See https://InformationManagers.ca/Top-3


New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Or, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Jan 7, 2020

 

Organizations subject to the Personal Information Protection and Electronic Documents Act (PIPEDA), Canada’s federal private sector privacy law, are required to report to the Office of the Privacy Commissioner (OPC) any breaches of security safeguards involving personal information that pose a real risk of significant harm to individuals. They also need to notify affected individuals about those breaches, and keep records of all data breaches within the organization.

On today's podcast, PIPEDA’s Mandatory Privacy Breach Notification, we will look at how PIPEDA applies to healthcare organizations and the vendors that support them.

The Privacy Commissioner shares lessons learned after one year of mandatory breach reporting requirements under PIPEDA.

Does PIPEDA Apply To You?

PIPEDA applies to private sector businesses across Canada with the exception of Quebec, Alberta, and BC. In these provinces, provincial legislation wish is substantially similar to PIPEDA applies. In all cases, businesses which handle personal information which crosses provincial or national borders fall under PIPEDA regardless of which province that they are based in.

In Alberta, we have privacy legislation called the Health Information Act (HIA) that takes precedence over PIPEDA and Alberta's Personal Information Protection Act, (PIPA). If a business, like a physician's office, has a privacy breach which includes health information, then the custodian of the physician office must report the privacy breach following the HIA regulations. If it's employee information or other non-health information is included in the breach then that triggers privacy breach notification under PIPA. Sometimes, a breach can include both types of information and the physician office must notify under both legislation.

In BC the Personal Information Protection Act (PIPA) is BC's private sector privacy laws has also been deemed substantially similar to the federal private sector privacy law. BC does not have health information specific privacy legislation, so PIPA applies to private organizations in BC, including physician practices, and governs how the personal information about patients, employees and volunteers may be collected, used and disclosed.

If you are a business in Canada, for example, an electronic medical records (EMR) business and you have a data center in Canada where all of your clients provide their information and store it in your data center, the EMR vendor likely falls under the PIPEDA regulations.

The vendor may be responsive to other legislation as well. If you are an EMR vendor, you do not directly comply with the HIA in Alberta because that applies only to custodians. However, as an information manager of a custodian under the HIA, you have some obligations under the HIA in the event of a privacy breach. But that does not mean that you don't also have obligations under PIPEDA.

Listen to the podcast to learn more!

Show Notes

You can advance the audio to the time entries

03:00  PIPEDA

03:18  Does PIPEDA apply to you?

04:11  Alberta

04:53  British Columbia

05:26  EMR vendor and businesses that support healthcare practices

06:52  What is personal information

07:44  Why is privacy important?

In 2017, 65% of large organizations with more than 100 employees indicated that they were privacy aware, but only 43% of small businesses indicated that they were privacy aware.

09:11  What Is A Privacy Breach

12:44  PIPEDA Mandatory Privacy Breach Reporting Process

12:55  Keep Records

13:27  ROSH

14:04  Report to the OPC

14:10  Notification

Information Manager Agreement – should indicate if a vendor should directly notify a patient about the privacy breach or if the custodian will do the notification. The Information Manager Agreement should also identify which party (parties) is responsible for the cost of notification.

See the Practice Management Success Tip – Top 3 Agreements https://InformationManagers.ca/Top-3

15:46  What is ROSH?

17:47  What information, circumstances of the breach.

19:33   CASL Canada’s Anti-Spam Legislation

20:34  Good Privacy Is Good For Business

When we know better, we can do better…

I’ve helped hundreds of healthcare practices prevent privacy breach pain like this. If you would like to discuss how I can help your practice, just send me an email. I am here to help you protect your practice.

How to Manage a Privacy Breach with Confidence

The 4 Step Response Plan will help you with prevent privacy breach pain and give you the tips, templates, training, and tools that you can use right away to prepare your privacy breach response plan:

In the world of privacy breaches ‘If’ has become ‘When’. Will you be ready?

Link to 4 Step Response Plan

Click here for more information on the on-line 4 Step Response Plan course available now!

https://informationmanagers.ca/4-step


New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Searchie Lady

Or, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.


Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Dec 10, 2019

Subscribe: itunes | Email | Stitcher | RadioPlayer | Spotify

Patients should be asked to show their Alberta Health Care Insurance Plan (AHCIP) card and photo identification when visiting a practitioner office.

But . . . it is not appropriate to keep a photocopy of the drivers license (or other photo ID) as part of the patient’s health record.

Correctly collecting patient identification is important!

Failure to correctly identify patients can lead to serious problems such as medication errors, as well as privacy breaches.

Positive patient identification is critical to ensure patient safety and protect patient data.According to industry research cited by RAND, 7-10% of registering patients are misidentified upon entry.

Patient misidentification contributes to:

  • 27% of radiation errors
  • 29% of medication errors
  • 5% of wrong-patient/wrong-site surgeries
  • 850 medical errors and 20 deaths related to blood transfusions

And, of course, we must deal with the administrative headache of privacy breaches and medical identity theft and duplicate patient records!

Practice Management Success

Practice Management Success

Are you feeling frustrated with the same problem over and over again in your clinic?

Or solving one problem just to find another problem popping up?

Don’t know where to go for help?

Many new and seasoned clinic managers find that they need help from time to time with questions like the ones that we discussed in this podcast episode.

To access all the resources mentioned in this podcast, join us at Practice Management Success!

 

In Canada, health ministries have underscored the importance of correct patient identification when they issue Patient Safety Alerts. Correct patient identification criteria is also included in Accreditation Canada standards.

 

  • Care – Good patient care starts with correct patient identification. Incorrectly identifying patients contributes to medication, transfusion, procedure and testing, errors.
  • Good Documentation – Avoid incomplete, inaccurate, and duplicate patient records!
  • Gatekeeper –Each caregiver has the responsibility to identify the patient before providing a health service. I think that the family physician has an added role and responsibility of the patients’ gatekeeper to additional health services to ensure that the documentation of patient identification is correct at the time of registration.
  • Billing – Avoid rejected billing and re-work when you correctly identify the patient and record the data correctly the first time. Patient demographic information is best corrected while the patient is present at the clinic instead of trying to contact the patient after they leave the clinic.

Don’t Photocopy The Photo Identification

You should record that you viewed the photo ID and verified, but do not record the unique number associated with the photo identification (for example, driver’s license number). Do not photocopy the photo identification.

Remember, we have a responsibility to collect the least amount of information necessary. Viewing photo id to verify the identity of the patient, is a reasonable step to ensure the safety of the patient and to prevent an error. Recording the drivers license number or photocopying the drivers license is not necessary to provide a health service and an unnecessary (and probably illegal) privacy and security breach.

Members of Practice Management Success receive templates of the new patient registration form, registration procedure, and the collection notice. If you are not a member yet, Click here and let me help you with your Practice Management Success!

Show Notes

Recorded May 21, 2019

You can advance the audio to these time markers:

00:38  How To Record Patient Identification

03:48  Risks Not Correctly ID Patients

05:05  Patient Safety Alert

05:20  Importance Of Correct Patient ID

08:15  Health Care Card Security

Education to the patient to ensure that they understand the importance of correctly identify the patient means they get the right health care service.

10:35  Verify Patient ID

14:40  Policies and Procedures

15:16  New Patient Registration Form

16:49  Don't Photocopy The ID

Remember - if you don’t need the information  to provide a health service, don’t collect it. You don’t have legal authority to make a photocopy the ID or the drivers license number.

17:57  Don't Photocopy the AHCIP Card

19:40  I’m happy to help you to identify a good process in your clinic to correctly identify patients so that you can continue to provide good care to your patients.

Do This Now

Members of Practice Management Success can access the video of this episode and the resources here in the membership.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or fix your healthcare practice.


New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Searchie LadyOr, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.

This video key-word search tool uses the new Searchie app. If you would like to know more about this, visit InformationManagers.ca/likes-searchie.

 

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality, and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Nov 9, 2019

Subscribe: itunes | Email | Stitcher | RadioPlayer |

Anne Genge of Alexio tells us that 96% of healthcare providers are concerned about how their staff are using personally identifying health information.

But - , many healthcare providers and business owners don’t know what to do about it!

Can your staff protect you from a ransomware attack?

Yes, they can!

And it doesn’t have to be hard or expensive to do that.

Today, on Practice Management Nuggets For Your Healthcare Practice, Anne Genge, CEO of Alexio Corporation is my guest expert. Anne will help us to understand the cyber security risks that every healthcare practice in Canada is facing now and what you can do now to reduce your risk.

6 Mistakes Made By Dentists (And Their IT)

  1. Think that IT has them covered and that ransomware won't happen to me!
    1. Not updating and monitoring computer systems with intrusion prevention/detection.
    2. Don't have a comprehensive backup of all of your data in at least 3 locations.
    3. Don't run backup restore tests regularly.
    4. Don't have a written mandatory cyber security awareness training plan.
    5. Don't have an independent cyber security risk assessment and management plan annually.

Meet Ange Genge

Anne Genge is a pioneer in protecting health data and those who use it. She is a Certified Information Privacy Professional with a specialization in dentistry. Anne also holds certifications for HIPAA, Credit Card Security, Internet, and Network Security. Ransomware and data theft have changed the face of dentistry in the past decade meaning dentists need a new toolkit for protecting their practices.

With over 20 years of experience, Anne knows the challenges healthcare providers face with technology. She and her team at Alexio Corporation work with dental and medical professionals to minimize data risk and maximize patient care. As healthcare grows increasingly dependent on the digital environment, cyber-security becomes increasingly more difficult. Protection of patient data is not only law, it’s imperative for business success and reputation. Anne simplifies cyber-security for dentists and other healthcare providers and gives ‘real world’ strategies to protect patient information and the practice business.

Be sure to tune in to my interview with Anne Genge, Ransomware - 6 Deadly Mistakes Made By Dentists (And Their IT) | Episode #082

Don’t Miss This!

Anne has a generous offer for you to get a complimentary 30 minute consultation call to discuss your practice.

Show Notes

Recorded October 29, 2019.

You can advance the audio to these time markers:

01:12  Introduction Anne Genge

02:00  How did you get started in security in healthcare?

04:34  IT support is not enough to prevent cyber security crime

05:17  #1 Tip Get a Cyber Security Risk Assessment

What Should  Healthcare Practices Know About Security Risk Assessments?

06:37  What is ransomware?

07:32  Why should healthcare providers be worried about this?

10:12  Data loss often happens even when you can de-encrypt the data often resulting in 15% loss

Without proper remediation, repeat ransomware attacks can happen.

12:16  Cyber security risk assessment annually as part of your routine management plan

05:16  Parking of trust

21:21  Why backup other business data outside of the practice management system?

23:47  What is an acceptable recovery time?

25:50  Policies, procedures, and training creates clarity and rules, people behave better.

29:15  Costs of a privacy breach to a small dental practice

30:12  How your staff can prevent ransomware

33:40  Difference between information technology IT support and cyber security professionals

36:55  What is a cyber security risk assessment?

39:30  Who needs a security risk assessment?

Do this now:


New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Or, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.

Searchie Lady

 

This video key-word search tool uses the new Searchie app. If you would like to know more about this,

visit InformationManagers.ca/likes-searchie.

 

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality, and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Nov 5, 2019

 

Subscribe: itunes | Email | Stitcher | RadioPlayer |

Would you like to increase your dental practice revenue immediately?

Maybe you have a need to maximize efficiencies and create your dream team.

Dr. Angela Mulrooney believes that when you focus on communication with your customers and create consistency in your practice, you will increase your revenue and reduce your working hours.

Angela Mulrooney is the Business Doctor, and today she is my guest expert.

Meet Dr. Angela Mulrooney

Angela Mulrooney is published author, a retired dentist, and a dental practice coach who resides in Calgary.

Angela Mulrooney discussed how communication with patients and your team and a marketing strategy can improve your business.

If you would like to transform your dental practice and maximize the potential within the practice so that you can focus on spending more time with patients, giving them the best care that you possibly can while trying to level up everyone's skills in the practice as well, be sure to tune in to my interview with Dr. Angela Mulrooney, Improved Communication, Improved Business Episode | #081

Don’t Miss This!

Angela has a generous offer for you to get a complimentary 1 hour strategy call to discuss your practice.

Show Notes

Recorded August 2019.

You can advance the audio to these time markers:

00:12   Introduction Dr. Angela Mulrooney

04:40   The Passion Pursuit – How Your Passion Will Make You Prosperous

06:39  What does a dental practice coach do?

Production coaching

Communicate effectively with the patient

08:50  Marketing coaching

11:00  Practice efficiencies – is it required by law, does it add to production and/or does it advance the practice?

14:20 Who is the ideal practice provider who will most benefit from a dental practice coach?

Someone who is ready to level-up.

14:26  Are you ready to level up? What kind of outcomes could you expect?

Communication improvements may generate $250,000 improvement in production.

18:07  Communication between front line staff and patients

19:29  Marketing in a dental practice – what is a good mix between traditional and social media?

21:57  On-line reviews

Content support, social media support, social media trends

26:46 What are the common motivators for a dental practitioner to reach out to a dental practice coach?

27:40  Book a 1 hour Strategy Call With Angela info@helpmegetpatientsnow.com

28:27  Upcoming Marketing Book Credible Influencer Marketing for Professionals

 

Do This Now

Members of Practice Management Success can access the video of this episode and the resources here in the membership.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or fix your healthcare practice.


 

New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Or, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.

Searchie Lady

 

This video key-word search tool uses the new Searchie app. If you would like to know more about this, visit InformationManagers.ca/likes-searchie.

 

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality, and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Nov 3, 2019

 

Subscribe: itunes | Email | Stitcher | RadioPlayer |

The way a healthcare provider collects, uses and discloses personal health information (PHI) is critical to an efficient healthcare practice.

It’s also required by legislation and professional college regulations and standards.

Policies and procedures must be in writing, available to employees, and monitored to ensure that they are followed. Otherwise, you face all sorts of risks, including privacy breaches and other legal problems.

Don't let this happen to you!

Everyone in a healthcare practice — including front office staff, wellness practitioners and physicians and other custodians — must be aware of and follow these policies and procedures.

These policies and procedures also become the foundation of your privacy impact assessment (PIA).

That’s why, in this Practice Management Nugget, we’ll review a privacy breach investigation report from Alberta's Office of the Information and Privacy Commissioner (OIPC).

 When we know better, we can do better…

I’ve helped hundreds of healthcare practices prevent privacy breach pain like this. If you would like to discuss how I can help your practice, just send me an email. I am here to help you protect your practice.

PRIVACY BREACH NUGGETS are provided to help you add a ‘nugget' to your privacy education program. Share these with your staff and patients as a newsletter, poster, or staff meeting.

Jean L. Eaton, Your Practical Privacy Coach

Register Can You Spot The Privacy Breach

References

Alberta Office of the Information and Privacy Commissioner. Investigation Report H2019-IR-01 Investigation into alleged unauthorized accesses and disclosures of health information at Consort and District Medical Society Clinic. May 21, 2019. https://www.oipc.ab.ca/media/996888/H2019-IR-01.pdf


New! Podcast Key Word Search Tool

Did you hear something on today’s podcast that you would like to go back and listen to again?

Or, maybe you heard something on one of our previous podcasts that you want to listen to again, but you can’t remember which one and you would like to find it quickly and easily.

Well, that’s easy to do now!

If you heard something on this podcast that you want to re-visit, go to PracticeManagementNuggets.Live/search and enter the keyword in the magic box.

You will automatically be brought to the podcast at the exact spot where we talked about it.

This video key-word search tool uses the new Searchie app. If you would like to know more about this, visit InformationManagers.ca/likes-searchie.

Searchie Lady

 

Sep 30, 2019

 

Subscribe: itunes | Email |  Stitcher | RadioPlayer

1/3 of all  healthcare employees who should receive cyber security training, don’t get cyber security training.

This shocking statistic is from the recent report from Kaspersky, Cyber Pulse: The State of Cybersecurity in Healthcare – Part Two

I believe that we can do better!

Today, I want to share with you some easy, no-cost resources that you can use right away to start or add to your cyber security awareness training in your healthcare practice. There is no software to buy, and if you have email, you can do this today.

October is Cyber Security Awareness Month!

A great no-cost opportunity to provide cyber security awareness training to your team!

Whether you’re at work, at home, or on the go, threats to cyber security and sensitive data can follow you. Our uber-connected world makes it more important than ever to know the threats and their potential consequences.

Information Managers Ltd has been a Cyber Security Champion for many years - and now you can, too!

NCSAM was launched by the National Cyber Security Alliance & the U.S. Department of Homeland Security in October 2004. This US organization sponsors a multi-media resource campaign each October.

You can become a Champion, too - and get direct access to all the resources.

  • Demonstrate to team the importance of cyber security at work.
  • Share with your patients - by posters in your practice, blog posts, or your email newsletters - and demonstrate that your practice is cyber aware and you want to share tips with them.
  • If you have team members who work remotely, work from home, use their own mobile devices, or use the internet to connect with apps and resources - give them additional skills to do their work as safely as possible.
  • Help your team members better manage their own personal information in their personal lives - good habits that will help them at work, too!

Become a Champion here

https://staysafeonline.org/ncsam/champions/

Or, follow Information Managers blog posts, social media, and resources that you can download and use right away!

Start Your Cyber Security Awareness Training!

 

Throughout the month of October, Information Managers is providing to you Cyber Security Awareness tips by email.

Follow the link to receive an email every few days throughout October with a short training tip to be more Cyber Security Aware.

Emails will have additional resources that you can download.

You can forward the email to easily share with your team.

Or, they can sign up to the campaign, too, and then they will receive emails directly to their in-box.

Click Here to sign-up for Cyber Security Awareness Tips today!

https://informationmanagers.ca/cyber-security-awareness-2019

 

Show Notes

Recorded October 1, 2019

You can advance the audio to these time markers:

 

00:42  Introduction

02:20  Cyber Security Awareness Month

06:59  Key Messages

10:18  Engage Your Community

11:25  Raise Awareness

11:53  Become a Cyber Security Champion

https://staysafeonline.org

12:00  Cyber Security Awareness Training by Email

https://informationmanagers.ca/cyber-security-awareness-2019 

Jul 20, 2019

A Privacy Impact Assessment (PIA) is Good for Business

A PIA is part of a regular business process if you collect, use, or disclose personal health information in your healthcare practice. When you have a previous PIA that has been prepared, submitted to the Office of the Information and Privacy Commissioner (OIPC) and it has been accepted for use--well, that is not the end of your PIA journey.

You need to ensure that you are updating and amending your PIA as your practice matures and as you make administrative and technical changes to the procedures in your practice.

Join Jean L. Eaton, Your Practical Privacy Coach and Your Practice Management Mentor and host of this podcast to discover the common triggers that require you to consider if it is time for you to do a PIA amendment.

Subscribe: itunes | Email | | Stitcher | RadioPlayer

Show Notes

You can advance the podcast to the time entries

00:00  Introduction

01:07  When do you need a privacy impact assessment (PIA) amendment?

01:27  Previous PIA is more than 2 years ago

03:19  Changes in legislation

Other common triggers for PIA amendments

03:56  Electronic Medical Record or computer network, or office productivity

05:16  Physicians, Ownership, Location

05:45  New Users / Information Sharing

06:35  Communicating With Patients

07:57  Vendors Change - Alberta Netcare Portal

10:00  New PIA or PIA Amendment?

12:13  After the Amendment is Written

If you need assistance with your Privacy Impact Assessment amendment, see https://InformationManagers.ca/PIA-course

Protect Your Practice, Your Patients, and Your Assets With Privacy Impact Assessments

Are you struggling with creating your privacy impact assessment or amendment?

Not sure if you are still compliant with the HIA?

A completed PIA doesn’t last forever!

If you need help with your amendment, let me know. I'm here to help you with on-line education and coaching.

I help you complete your PIA.

https://InformationManagers.ca/PIA-course

PIA on-line training and coaching

 

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Jun 30, 2019

Subscribe: itunes | Email | | Stitcher | RadioPlayer

‘This call may be recorded to ensure quality control.’

We’ve all heard the recorded message when we call our bank or service provider

But, is this the best way to capture patient satisfaction with their healthcare visit experience?

Are you looking for options to gauge patient satisfaction with the patients’ interactions with your office staff during phone calls and their entire visit?

There are other options that require less technology, easier to implement, respects privacy, provides a more meaning constructive, helpful, feedback for your clinic team and engages your patients to improve their satisfaction.

I reached out to Brian Lee from Custom Learning Systems about his suggestions on how to explore patient satisfaction. Listen to the podcast to hear his key tips!

CareSay App from Everyone’s A Caregiver

Easily measure the patient's experience and give them an opportunity for feedback so that you can improve patient satisfaction and patient care in your healthcare practice. Make sure to check out this new app from Brian and Everyone’s a Caregiver!

Click on the image below

 

CareSay Reviews

In This Episode

In this 16 minute episode, Brian Lee, CEO of Everyone's a Caregiver Learning Systems, we discuss options for the healthcare provider and business owner to easily measure the patient's experience and give them an opportunity for feedback so that you can improve patient satisfaction and patient care in your healthcare practice.

Brian shares his key tips including

  • Options to create a patient experience survey (including CGCAPS).
  • New tools that empowers the patient to provide clinics with feedback about their experience.

Join me for the interview with Brian Lee, How To Capture Patient Satisfaction With CareSay Reviews.


Meet Brian Lee, CEO, Everyone's a Caregiver Learning Systems

Brian Lee, CSP, is one of North America’s leading experts in the field of World-Class patient experience, staff engagement and culture change. He is recognized author on HCAHPS improvement and Value-Based Purchasing.

Brian has been a passionate lifelong student of customer service and its effect on both organizational effectiveness and staff retention. He educates his audiences about the “how-to’s” of developing patient, staff, and physician loyalty. He models how to inspire hope and commitment and to bring a renewed passion for care-giving. For two consecutive years Brian has been evaluated by the International Customer Service Association Conference as the number-one-rated Customer Service Expert Speaker in the World.

Brian Lee is the Chief Executive Officer of  Everyone's a Caregiver Learning Systems, a leading provider of culture-change and training solutions to healthcare organizations across North America. He is also the founder of the Healthcare Service Excellence conference. In the past 30 years in business, Brian and his team have worked closely with healthcare organizations on several continents to achieve breakthrough results in improving the Patient Experience and Staff Engagement.

In the fall of 2018, Brian Lee and Bruce Lee invited Jean L. Eaton to become a faculty member of Custom Learning Solutions and their new initiative to assist community clinics to empower community clinics to deliver a 5 star patient experience. Their new on-line program, Patient Centered Clinic, launches in February 2019.

Find out more about Brian Lee:

www.EveryonesACaregiver.com

Twitter: @every1care

LinkedIn: Brian Lee CSP


Show Notes

You can advance the audio to these time markers:

00:00 Q: How to Capture Patient Satisfaction

00:47 Speaking with Brian Lee, CEO, Everyone’s a Caregiver

04:07 Privacy considerations

05:12 Patient Feedback Options

05:30 Adopt a Patients Experience Measurement – CGCAPS

Patient Centered Clinic Modules

Go to https://InformationManagers.ca/Likes-EAC to unlock the sample modules for the Patient Centered Clinic!

06:50 Care Say App – Deliver a 5 Star Experience!

https://informationmanagers.ca/likes-CareSay

14:13 Pilot the Care Say App!

Download the app for free – at your app store now for IOS and Android.

To learn more about the pilot, call Dorian at 403-270-5806. Or, send her an email at Dorian [at] EveryonesACaregiver.com. No obligation just check it out!


Do This Now

Members of Practice Management Success can access the video of this episode and the resources here.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, or improve your healthcare practice.


Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean, Your Practical Privacy Coach and Practice Management Mentor

May 8, 2019

Subscribe: itunes | Email | | Stitcher | RadioPlayer

Privacy Awareness Week (PAW), an initiative of the Asia Pacific Privacy Authorities forum (APPA), is held every year to promote awareness of privacy issues and the importance of protecting personal information.

This year, Privacy Awareness Week is celebrated May 6-10, 2019.

Protect Your Organization and Your Patients

Equip your staff with the information they need to confidently and correctly handle personal health information.

Healthcare businesses need privacy awareness training to support key policies, procedures and risk management programs need a privacy awareness training program.

Patients trust their healthcare providers with their sensitive, personal, and financial information.

If patients don’t feel that the healthcare provider will keep their information confidential and secure, patients may choose not to share their information which may impact their healthcare and treatment.

When we are privacy aware, we can better respond to patients’ questions and build their trust in the quality of services that we provide.

In this podcast episode, Jean L. Eaton challenges you to take the Privacy Awareness Quiz. See if you are up-to-date with common scenarios in healthcare!

Show Notes

Recorded June 2018

You can advance the audio to these time markers:

00:40  Introduction

01:52  Say No to Snooping

Privacy Awareness Training Quiz

04:00  Question 1 Soccer Mom

04:52  Answer 1 Soccer Mom

05:28  Question 2 Celebrity Visit

05:57  Answer 2 Celebrity Visit

07:00  Question 3 Training Examples

07:35  Answer 3 Training Examples

08:25  Question 4 Patient Access to Their Own Information

09:15  Answer 4 Patient Access to Their Own Information

11:25  Question 5 Chart Notes Print-out

12:05  Answer Chart Notes Print-out

13:35  Bonus tips

14:05  Privacy Awareness In Healthcare: Essentials

www.InformationManagers.ca/Privacy15 Use the coupon code: Privacy15

14:33  Download the free Privacy Awareness Quiz

www.InformationManagers.ca/Privacy-Matters-Quiz

Do This Now

See https://informationmanagers.ca/privacy-awareness-week-2019/ for more resources that you can use right away for your healthcare practice.

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too. If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Apr 7, 2019
Subscribe: itunes | Email |  Stitcher | RadioPlayer

When was the last time that you reviewed your access logs in your healthcare practice?

In our policies, procedures, risk assessments, and privacy impact assessment submissions, we indicate the reasonable safeguards that we expect to implement in our practices to protect the privacy and security of health information.

But policies and good intentions alone isn’t enough.

We also need to take action on our policies.

Custodians have an obligation to ensure reasonable safeguards to protect the privacy and security of health information. This means having appropriate policies and procedures in place and demonstrate and document that you have implemented your plans.

In this podcast episode, Jean L. Eaton answers frequently asked questions (FAQ) about using audit logs of your computer and your Electronic Medical Record (EMR) / Electronic Health Record (EHR) to improve security in your healthcare practice.

Improve Privacy and Security In Your Healthcare Practice

Privacy and Security Monthly Audit Template

Privacy and Security Monthly Audit Template

This Practice Management Success Tip includes

✔ Implementation guide – easy to read ‘how-to' instructions to get the best results from your privacy and security monthly audit.

✔ Audit form template in MS Word document format that you can download, print, and use right away.

✔ Access to mini-course with video examples to get you started.

✔ On-line access to Jean L. Eaton, Your Practical Privacy Coach and Practice Management Mentor to answer your questions

No software to purchase

Get the Templates Now!


In This Podcast Episode Show Notes

Recorded June 2018.

You can advance the audio to these time markers:

00:51  Policies and Procedures Are Not Enough

01:10 What Are Audit Logs?

02:28  Importance of Audit Logs

04:52  Snooping

05:46  Reasonable Safeguards

06:11  Implementing Monthly Privacy and Security Audit

07:16  Starting Your Program

07:59  Sample Goals

09:36  Sample Compliance Observations

11:47  Sample Recommendations

12:15  Identify Your Action Items – what will you start, stop, or keep doing?

Action Steps That You Should Do Now

See https://informationmanagers.ca/audit for checklists and templates that you can use right away to help you improve your healthcare practice security.

Rate and Review the Podcast

I am honoured that you choose to spend your time with me today. Thank you for the opportunity to share my obsession about privacy, confidentiality and security with you!

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Jean L. Eaton, Your Practical Privacy Coach

and Your Practice Management Mentor

with Information Managers Ltd.

Mar 24, 2019

Subscribe: itunes | Email Stitcher | RadioPlayer

Has this ever happened to you?

You are a clinic manager in a healthcare practice. One day, you receive a phone from a healthcare provider in another clinic.

They received a fax with patients’ health information from someone in your clinic. But the fax is not addressed to them – they received it in error.

Is this a notifiable privacy breach under Alberta’s new Health Information Act (HIA) regulations?

What should you do now?

If you work in healthcare, it is your job to manage each #PrivacyBreach with confidence, compassion, and transparency to the individuals affected by a privacy breach.

In this podcast episode, Jean L. Eaton answers frequently asked questions (FAQ) about mandatory privacy breach notification in your healthcare practice.

Learn NOW how to respond a #PrivacyBreach – Don’t get caught scrambling when a privacy breach happens!

Practice Management SuccessPractice Management Success

Are you feeling frustrated with the same problem over and over again in your clinic?

Or solving one problem just to find another problem popping up?

Don't know where to go for help?

Many new and seasoned clinic managers find that they need help from time to time with questions like the ones that we discussed in this podcast episode.

To access all the resources and to ask Jean your questions, join us at Practice Management Success!

In This Podcast Episode Show Notes

Recorded Oct 16, 2018

You can advance the audio to these time markers:

00:58  Is this a privacy breach?

01:19  Part A: Circumstances where mandatory privacy breach notification is required

02:244  Part B: Circumstances where mandatory privacy breach notification is not required

02:50  Accessed the information in a manner consistent with his role as a health services provider and did not do it for an improper purpose;

03:00  Did not use or disclose the information beyond determining that he accessed it in error.

04:50  Sending custodian must record the privacy breach



Do This Now

Members of Practice Management Success can access the video of this episode and the resources here.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or fix your healthcare practice.

Rate and Review the Podcast

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

Subscribe to our podcast and join our email updates list!

When you subscribe to our podcast, the next episode of the podcast will automatically appear in your play list and you never have to go searching for an episode again!

 

Feb 28, 2019

Subscribe: itunes | Email | | Stitcher | RadioPlayer

You are working at the reception desk of a healthcare practice. Suddenly, there is a police officer or court officer giving you a court order to produce patient records!

Don’t Panic!

Learn NOW how to respond a #CourtOrder.

In this episode we discussed how to prepare patient records for a court order with confidence!

Now, just a reminder, I’m not a lawyer and I don’t play one on TV. These are my recommendations based on my experience as a director of health records in hospitals in Canada, as a court reporter, and as a mentor to clinic managers in independent healthcare practices and not legal advice.



How to Prepare Patient Records for a Court Order E-Book

Don't be scared and confused when confronted by a police officer giving you a court order to produce patient records!

With this report we show you how to:

  • Calmly receive a court order
  • Prepare the patient's health record for disclosure
  • Anticipate your testimony in court

Download this free report to protect your healthcare practice!

How to Prepare Patient Records for Court

Show Notes

Recorded September 2018
01:36 How to Prepare Patient Records for a Court Order
02:40 Don’t Panic
03:16 Review the Order Carefully
04:46 What This ISN’T
07:30 Validate the Court Order
08:14 Secure the Patient Records
11:08 Inform Your Custodian, Privacy Officer
12:38 The Fine Art of Severing
14:32 Table of Contents
15:24 Prepare the Paper Record
18:36 Testimony
22:39 When You Return to the Clinic
24:24 What You Should Do Now

Do This Now

Members of Practice Management Success can access the video of this episode and the resources here.

If you are not a member of Practice Management Success, yet—what are you waiting for?

Click here and register now!

With your membership to Practice Management Success, you will get great tips, tools, templates, and training that you can use right away to help you start, grow, maintain, or improve your healthcare practice.

Rate and Review the Podcast

Reviews for the podcast on whatever platform that you use is greatly appreciated!

When you provide your honest feedback it helps other people just like you find content that may help them, too.  If you received value from this episode, please take a moment and leave your honest rating and review.

1 2 3 4 Next »