We discuss the record retention requirement for HIPAA; the actual client medical record requirements under state law; the difference between documentation of HIPAA compliance activities and maintaining client records; considerations for destroying records, (paper and electronic); how to document destroyed records; where to find record retention requirements for your state; and what should be in a client’s record.
We discuss leveraging technology and systems for supervision; seeking supervision or consultation throughout your career; features of good supervision; supervision as risk analysis; taking reasonable steps to ensure competence with new technology; considerations for AI use for therapists; current ways therapists utilize AI; balancing legality, ethics, and humanity; being open to other perspectives, continual learning, and vulnerability as a leader; the art form of supervision; trainings that Tara has found helpful; Tara’s podcast and training course; receiving supervision to become a better supervisor; and what’s in Tara’s tech stack.
We discuss how non-competes tend to operate in group practice; considerations if you have a non-compete in place; how clients experience non-competes; client autonomy and care outcomes; the enforceability of non-compete clauses; non-competes as a deterrent; and shifting mindsets about non-competes.
We discuss why the Texting Campaign Registry (TCR) exists; who the TCR applies to (all businesses that send texts in any form); how to register through your phone carrier or service provider; what happens when you don’t register your business; and some of the information you’ll need to provide to register; and when you should register.
We discuss misconceptions that stem from non-enforcement for parts of the HIPAA Security Rule during the federal Public Health Emergency; who needs a BAA; the protections BAAs provide for the HIPAA Covered Entity; client’s rights to request non-secure communications; client’s rights to access their health information; and why clients cannot waive the Business Associate Agreement requirement.
We discuss covered entities; HIPAA policies and procedures; IRS factors of control for contractors vs employees; the ABC test to determine classification; contracting as a business to business relationship; acting as a Managed Services Organization (MSO); Business Associate Agreements (BAAs); risk exposure and risk analysis; consequences of misclassifying contractors; and our HIPAA compliance manual service that can help with setup and implementation.
In our latest episode, we’re talking about HIPAA compliance with phone services in group practice.
We discuss VoIP, cellular, and landline services; what is subject to the HIPAA Security Rule; how to get a BAA with your phone service provider; phone service providers we recommend; porting phone numbers; managing phone service for a team; and implications for the end of the Public Health Emergency.
We discuss risks, both classic and new, around WiFi and network security; whether it’s ever okay to connect to unsecured networks on a device that handles PHI; ways to mitigate risk and to be proactive; good cyber hygiene; setting up a trusted network; VPNs; what to do when you don’t have access to the router; and what to use as a last resort.
In our latest episode, we take a look at how to keep established and potential client info safe and secure on your website.
We discuss the BetterHelp debacle and lessons we can learn from it; contact forms on websites; what qualifies as PHI; where PHI gets collected through websites; how to set up a secure contact form; HIPAA friendly vs. secure email communication; requests for non secure communication; secure form options; what to include in HIPAA Notice of Privacy Practices; Good Faith Estimates; whether tracking technologies and Google Analytics are permissible; and what is and isn’t included in Google’s BAA.
Welcome solo and group practice owners! We are Liath Dalton and Evan Dumas, your co-hosts of Group Practice Tech. In our latest episode, we share a potpourri of updates on inter-state compacts, parity laws, the end of the PHE, and positive developments in the fight against VC backed mental healthcare companies. We discuss: where the […]