Practice Brief
x Appropriate password, security, and encryption pro-
grams.
x An anti-theft plaque or etching tool to engrave the com-
pany name/ID on all portable computers. (Some anti-
theft plaques contain a metallic bar code and registration
number. If a thief tries to pry off the plaque, the computer
casing will be damaged, decreasing the resale value. If the
thief succeeds in removing the plaque, the computer will
still bear the imprint of the words “Stolen Property” on its
shell.)
x Tracking software that can remotely erase the mobile de-
vice. ¢
References
American Recovery and Reinvestment Act of 2009. Section A,
Title XIII, Health Information Technology. http://fr webgate.
access.gpo.gov/cgi-bin/getdoc.cgi?dbname=111_cong_
bills&docid=f: h1enr.pdf.
Briggs, Bill, ed. Comprehensive Guide to Electronic Health
Records. New York, NY: Faulker and Gray, 2000.
Centers for Medicare and Medicaid Services, Department
of Health and Human Services. “Medicare Conditions of
Participation for Hospitals.” Code of Federal Regulations,
2004. 42 CFR Ch. IV.
Department of Health and Human Services. “Breach
Notification for Unsecured Protected Health Information;
Interim Final Rule.” Federal Register 74, no. 162 (Aug. 24,
2009). http://edocket.access.gpo.gov/2009/pdf/E9-20169.
pdf.
Department of Health and Human Services. “Guidance
Specifying the Technologies and Methodologies That Render
Protected Health Information Unusable, Unreadable, or
Indecipherable to Unauthorized Individuals for Purposes of
the Breach Notification Requirements under Section 13402
of Title XIII (Health Information Technology for Economic
and Clinical Health Act) of the American Recovery and
Reinvestment Act of 2009; Request for Information.” April
27, 2009. www.hhs.gov/ocr/privacy/hipaa/understanding/
coveredentities/hitechrfi.pdf.
Department of Health and Human Services. “Health Insurance Reform: Security Standards; Final Rule.” Federal Register 68, no. 34 (Feb. 20, 2003). http://aspe.hhs.gov/admn-
simp/final/fr03-8334.pdf.
Department of Health and Human Services. “Standards for
Privacy of Individually Identifiable Health Information;
Final Rule.” Federal Register 67, no. 157 (Aug. 14, 2002). www.
hhs.gov/ocr/privacy/hipaa/administrative/privacyrule/
privrulepd.pdf.
The Joint Commission. 2012 Comprehensive Accreditation
Manual for Ambulatory Care. Oakbrook Terrace, IL: Joint
Commission, 2012.
The Joint Commission. 2012 Comprehensive Accreditation
Manual for Hospitals: The Official Handbook. Oakbrook
Terrace, IL: Joint Commission, 2012.
Updated By
Terrell W. Herzig, CISSP, MSHI
Acknowledgments
Carrie Ayala, RHIT, CPC-I
Barbara Beckett, RHIT
Sheila Burgess, RHIA, RN
Ben Burton, JD, MBA, RHIA, CHP
Jill S. Clark, MBA, RHIA
Linda Darvill, RHIT
Nancy A. Davis, RHIA
Angela K. Dinh, MHA, RHIA, CHPS
Cris V. Ewell, PhD
Lisa R. Fink, MBA, RHIA, CPHQ
Jean T. Foster, RHIA
Elisa R. Gorton, MAHSM, RHIA
Judi Hofman, CAP, CHP, CHSS
John T. Jensen, CHPS, CIPP
Priscilla Komara, RHIA, CCS, CCS-P
Michele T. Kruse, MBA, RHIA, CHPS
Laurie A. Lutz, RHIA, CHPS
Melissa Martin, RHIA, CCS
Jennifer McCollum, RHIA, CCS
Kelly McLendon, RHIA, CHPS
Mona Nabers, MBA, RHIA
Godwin O. Odia, PhD, RHIA, NHA
Deanna Peterson, MHA, RHIA
Daniel J. Pothen, MS, RHIA, CPHIMS
Mary Poulson, MA, RHIT, CHC, CHPC
Nancy E. Prade, RHIA
Harry B. Rhodes, MBA, RHIA, CHPS, CPHIMS, FAHIMA
Theresa Rihanek, RHIA, CCS
Diana Warner, MS, RHIA, CHPS, FAHIMA
Lydia M. Washington, MS, RHIA, CPHIMS
Lou Ann Wiedemann, MS, RHIA, CPEHR, FAHIMA
Updated By (2003)
Carol Ann Quinsey, RHIA
Prepared By (Original)
Gwen Hughes, RHIA
