HIPAA Compliance
The Health Insurance Portability and Accountability Act (HIPAA) became law in 1996, and full compliance was required by April 2005. HIPAA provides for the following:
- Ensures health insurance portability.
- Protects the privacy of health care information.
- Prevents employment discrimination based on health status.
- Reduces health care fraud and abuse.
- Improves the efficiency and effectiveness of the health care system.
- Establishes electronic data exchange standards for administrative and financial transactions.
DxCG recognizes its obligation to comply with the regulations promulgated by the Department of Health and Human Services under HIPAA.
DxCG fully conforms to HIPAA privacy and security rule requirements adhering to the following:
- Policies and procedures are documented and maintained.
- Privacy officer and security officer are appointed.
- Business Associate Agreements are signed with all entities that need shared Protected Health Information (PHI) with DxCG.
- Ongoing training of all employees is maintained.
- Ongoing education of clients and associates practices related to transfer of PHI to DxCG.
- Records of all HIPAA-related matters (trainings, agreements, policies) are maintained.
- Only privacy or security officers receive and log PHI into DxCG's system, and establish information access rights permissions.
- Office and electronic security safeguards are in place.
- DxCG software products are structured to ensure HIPAA compliance among its users.