Need Assistance?
Would you like more assistance regarding Health IT Enabled QI strategies or support in using any of the included resource sets?

  Request Support

 

Upcoming Events
The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More >

Accessing Data for QI

As adoption of EHRs has increased, so have the concerns about ability to access the data needed to drill down into quality improvement efforts or even reporting requirements. Depending on the type of system being used, data may be cloud based, on a remote server, or on a local server. Further, data may be accessible through preprogrammed, ad hoc, or custom reports, but there may be greater challenges to accessing raw data or data that can be analyzed for quality improvement purposes. Resources in this section address these challenges and provide actionable information for accessing the data needed.

Accessing your Data
Mitigating Office for Civil Rights Auditing Risks
HITEQ Center
/ Categories: Privacy and Security, HIPAA

Mitigating Office for Civil Rights Auditing Risks

Guidance from the Office for Civil Rights

The Office for Civil Rights (OCR) has recently announced the release of a new set of FAQs that seeks to address whether business associates of a HIPAA covered entity may block or terminate access by the covered entity to the protected health information maintained by the business associate for or on behalf of the covered entity.

The OCR guidance seeks to clarify that business associates may not use PHI in any manner that may result in a violation of the HIPAA Rules.

Print
21546
Tags: ePHIPHIHIPAAOCRBusiness AssociatesOffice of Civil RightsProtected Health Information

Resource Links

  • A link to the FAQ on the OCR websiteMay a business associate of a HIPAA covered entity block or terminate access by the covered entity to the protected health information (PHI) maintained by the business associate for or on behalf of the covered entity?

Related Resources

Acknowledgements

This resource collection was compiled by the HITEQ Center staff with guidance from HITEQ Advisory Committee members and collaborators of the HITEQ Center.