Occasionally, medical and other sensitive records must be transported from one location to another, such as when moving to a new office, closing a location, etc. Appropriate steps must be taken to safeguard these records whether electronic or paper and ensure you remain HIPAA compliant. Learn more about what you and your company should be doing…
- Any electronic media containing Protected Health Information (PHI) must be backed up before it is moved.
- Medical records should not be left in an unlocked room or insecure area. Only authorized personnel should have access.
- All boxes containing medical records should be numbered and appropriately labeled so as not to misplace them.
- Records should never be left unattended, even temporarily, including on pavements or in front of buildings.
- An administrator should supervise all aspects of the move to ensure that the movers are aware of exactly what needs to be transported and proper, secure handling of sensitive records at all times during transit.
- Once you reach your destination, immediately make sure all items are accounted for, and again, store medical records securely.
Medical records should never be taken from secure medical records areas without proper authorization!
Records moving between facilities must be properly secured and never left alone in vehicles! To ensure adequate security and to protect records against weather, light, pollution and other dangers, vehicles must be:
- attended at all times; and,
- not used for transporting other materials, such as chemicals, that may cause risks to records.
Your company’s and your patients’ PHI must be protected! Should you ever experience a loss of medical records or other sensitive documents, immediately report it to your supervisor.
Keep up to date on HIPAA-HITECH, Data security and information risk management with these FREE resources:
We have assisted more than 400 customers to operationalize and mature their information privacy, security, compliance and information risk management programs. And in the process, we are raising the bar for safeguarding PHI, protecting millions of Americans and driving real value for the organizations we support and the healthcare industry at large.
Latest posts by Clearwater Compliance (see all)
- Clearwater Compliance’s IRM|Pro ™ Offers Expanded Enhancements to Address Evolving Hospital Cybersecurity Threats - April 4, 2017
- Cyber Contagions Knock Out Hospital Systems — Prompting Triaging of Cybersecurity to Code Red Status - July 19, 2016
- Exclusive Webinar for American Hospital Association (AHA) Members - July 12, 2016