Understanding How HIPAA Applies to You
PCT is here to bust a few myths about HIPAA. Many therapists and behavioral health clinicians think of HIPAA as an arduous task that takes away from the act of client care. Many feel tremendous anxiety and fear around HIPAA and have either disengaged or purchased wildly expensive programs to ease their fears.
HIPAA compliance doesn’t have to be expensive, nor is it antithetical to client care. We argue it *is* client care.
We also offer a free continuing education course on HIPAA Security in Mental Health. If you would like CE credit for your study time, and also like free things, sign up for our free course.
2024 Sponsor:
TherapyNotes is a behavioral health EMR/EHR that helps you securely manage records, book appointments, write notes, bill, and more. It has earned a recommendation from us for use by mental health professionals. Learn more about TherapyNotes and use code “PCT” to get 2 months of free TherapyNotes software.
*Please note that this offer only applies to brand-new TherapyNotes customers.
Am I a HIPAA-Covered Entity? How Much Does It Matter If I Am Or Not?
First things first! Are you even subject to HIPAA? You might or might not be. Just because you practice health care in the United States, you’re not necessarily legally required to comply with HIPAA. But what does it mean even if you aren’t? Does it really change anything? This article helps make sense of these important questions and more…
What is a HIPAA Business Associate?
This article covers a basic concept, but it’s one that not every mental health professional is very familiar with. What if companies that handle your clients’ info signed contracts promising to safeguard the information? HIPAA calls that a Business Associate Agreement. Even if you do know what HIPAA Business Associates are, this article contains some details and particulars that clinicians are often confused about. Open article→
What is HIPAA Breach Notification?
Some find the name and content of this article a little intimidating. But HIPAA’s way of dealing with security breaches is actually really flexible and reasonable. And understanding how it works will make you far more prepared to know how to avoid it all together! Preparing yourself for when an information breach does happen is like preparing for a suicidal client: a bit scary, but also something you can work with. Open article→
Mental Health Professionals’ 3 Steps to (Actually) Be HIPAA Security Compliant
Previous articles in this series reference how HIPAA Security works, but this one gets into a very high-level view of the real process and busts some myths. This article contains a simplified, chunked-down look at the process of (actual) compliance with the HIPAA Security Rule, split into three steps. Open article→
“HIPAA-Compliant” Is a Meaningless Phrase. Let’s Use “HIPAA-Secure.”
Given that the process of HIPAA Security compliance looks like the three steps mentioned in the previous article, where do “HIPAA-compliant” products come in? Well, they may not be a part of it at all! This article clarifies how the phrase “HIPAA-compliant” has become meaningless — like “inflammable” and “awesome.” It’s time for better terminology. Open article→
Empower Yourself and Your Clients: Comply With HIPAA
At this point in the article series, hopefully you’re getting the idea that “risk analysis and risk management” is the name of the HIPAA game. This article goes into detail about why that’s a good thing for you and for your practice. In fact, HIPAA’s approach to security might just be the most empowering thing available to you and your clients. Open article→
Risk Analysis and Risk Management Planning: Can You Do It Yourself?
HIPAA Security compliance requires doing a risk analysis and making a risk management plan. Many wonder how to go about accomplishing this. It’s not a simple answer, but it doesn’t have to be as hard as it sounds. Can you do it yourself? (Hint: Yes, you can. Read on for details!) Open article→
Mental Health Practice Checklist: 8 Practice Tech Items You Need
There’s a lot of technology out there for mental health professionals to choose from, but what do you actually need for your practice? This article breaks it down to the eight tools/services you’ll need to support HIPAA-compliance and overall functioning in your practice. Open article→
Where Can I Get Free HIPAA Forms, Contracts, and Tools?
In this final article of the HIPAA series we offer links to great resources that can help you with your compliance process. There are a number of helpful sources that provide free HIPAA forms like the Notices of Privacy Practices, BAAs, and Risk Analysis Tools. We list our favs. Open article→
Additional Articles of Interest:
Person Centered Tech has produced a ton of articles on HIPAA Security-related topics just for mental health professionals. Here are several that we think are worth reading your way through over time:
- Protect Your Client Records: Put Them On the Internet
- Are Electronic Records Really More Secure Than Paper Records?
- The HIPAA People To Start Investigating Small Security Breaches, *Maybe* Can Impact Small Therapy Practices
- Random HIPAA Audits 2016: Will You Be Chosen? (Spoilers Inside)
- 3 Reasons Apple vs. FBI Is Huge For Mental Health Pros Beholden to HIPAA
- HIPAA Privacy Rule Changed For Firearm Checks, Nothing Changes
What's next?
This is a component of Step 4: Risk Analysis
Get Your Required Risk Analysis Done (we’ll support you the whole way!)
For mental health, by mental health