11 Images Total
The Centers for Medicare & Medicaid Services recently released a tip sheet for eligible professionals on 10 myths associated with conducting a HIPAA security rule risk analysis to ensure the privacy and security of their patients' protected health information, which is a requirement in the EHR meaningful use program. Here are the facts.
MYTH: The security risk analysis is optional for small providers.
FACT: All providers who are covered entities under HIPAA are required to perform a risk analysis. In addition, all providers who want to receive EHR incentive payments must conduct a risk analysis.