Certified HIPAA Secure
Privacy, confidentiality, security
The 1996 HIPAA legislation—the American Health Insurance Portability and Accountability Act—laid down strong ground rules for healthcare providers, hospitals and health plans to uphold a patient's rights. On April 14, 2003, HIPAA set a challenge before the healthcare profession: ensure that all patient records, account information and handling and billing are within the HIPAA compliant platform.
Consequently, medical billing and medical record systems of all healthcare companies had to undergo a steep transformation—or face civil and criminal penalties. The legislation encompasses various sections with separate compliance dates, defining rules on software, electronic transactions, patient privacy and data security. This impacted the methodology, technology and policy-and-procedural systems. National standards were put into place, impacting payors-providers electronic transactions. Clearly, HIPAA forces all healthcare organizations to create and implement a compliant and viable infrastructure.
HELPS PRACTICES STAY HIPAA COMPLIANT
Registered with EDIFECS, AllegianceMD attained HIPAA-compliant certification for its electronic claims. In other words, no third party has to transform our claims into a compliant format.
Equally important, AllegianceMD incorporates a seamless design, integrating key features to enforce HIPAA regulations. Our expert system—the only web-based medical billing/practice management software, armed with Artificial Intelligence for outstanding performance—offers the mandated security infrastructure, functionality and ease for HIPAA adherence.
AllegianceMD ensures the four segments of HIPAA's Administrative Simplification provision are or will be met, as rules are finalized.
- Electronic transaction standards.October 15, 2003, marked the deadline for all transactions to be in an ANSIX12 format. Also, these standard code sets have to be implemented: ICD-9, HCPCS, CPT, NCPDP, and CDT.
AllegianceMD processes all electronic transaction in full compliance with these HIPAA standards.
- Unique identifiers.This controversial rule calls for specific identifiers for health plans, patients, providers and employers.
AllegianceMD will enhance this facet in its software once this ruling is finalized.
- Security. Electronic, patient-identifiable health data is to be protected across the board, uniformly. In additions, technical security and mechanisms plus specific administrative processes and physical security safeguards are to secure patient data protection. This includes reliable storage of electronic data and emergency access to that data.
AllegianceMD provides a full, secure data management system, designed to facilitate HIPAA compliance. All electronic information is housed in a secure facility with numerous security measures in place, from firewall protection and 24-hour monitoring to locked server cages.
AllegianceMD further secures data with a three-level backup system - that runs like clockwork, backing up your sensitive information every hour.
AllegianceMD also ensures your HIPAA compliance to security regulations:
- Safeguarding electronic transfers - with SSL 128-bit encryption, used by government and banks
- Timed logout - proactively hindering unauthorized access to patient data
- User tracking - traces every user logging in and out
- Audit - tracks changes to patient data for review as needed
- Privacy. By April 14, 2003, compliance had to be met, regarding specific standards for patient notification and the specificities on disclosure of patient healthcare data - paper, verbal or electronic. Now all providers must give patients a Notice of Privacy Practices and attain signed authorization from patients for release of their healthcare information in matters of treatment, payment or other healthcare operations. Also, providers are required to appoint a Privacy Officer, develop/implement HIPAA-compliant policies and procedures and train staff in HIPAA privacy policies. Meanwhile, patients maintain the right to access their data, attain records of various data disclosures, request amendments to their data and request special restrictions on data use or data disclosure.
AllegianceMD enforces privacy regulations with restricted user roles; patient data is only accessible to authorized personnel. Automated reminders and storage for electronic forms keep consent status current and upheld.