Loading

Health Center Defender

HITEQ Health Center Cybersecurity Defender Against the Dark Web

Health Centers are being inundated by an unprecedented surge in cybersecurity incidents that are having detrimental effects on healthcare worldwide. New, sophisticated threats seem to appear on a daily basis. Most importantly, these threats are primarily being targeted and spread through end users (vs health IT systems) through social engineering and phishing attack methods.

Healthcare cybersecurity is the ultimate team sport. The responsibility goes beyond the IT staff and includes front and back office staff, doctors and nurses, patients, executives, and the board of directors. These resources are directed at all levels of the healthcare organization so that they may be proactive and aware and help to defend Health Centers against the Dark Web.

Take some time to read through some of the articles on this page and then fill out the submission form on the right and you will be rewarded with a Health Center Defender Against the Dark Web badge! This is an official badge that is submitted by the HITEQ Center as a proof of completion to the blockchain. Your credentials can be added to profiles such as LinkedIn and verified through accreditation services such as Accredible and Open Badge.

I Provide SUD Services in an FQHC: Does Part 2 Apply to Me?

28582

HITEQ Center post on Sunday, February 16, 2020

| Categories: Privacy and Security, HIPAA

I Provide SUD Services in an FQHC: Does Part 2 Apply to Me?

A Decision Tree from the Legal Action Center

This decision tree, developed through funding from the Substance Abuse and Mental Health Services Administration (SAMHSA) helps organizations determine if Part 2 of CFR 42 applies to them.

It should be noted that FQHCs will always be designated as “federally assisted” due to certified status as Medicaid providers and/or federal funding. Under 42 CFR Part 2 (hereafter referred to as “Part 2”), a patient can revoke consent to one or more parties named in a multi-party consent form while leaving the rest of the consent in effect. In a non-Health Information Exchange (HIE) environment, this can be accomplished simply by the Part 2 program indicating on the consent form or in the patient’s record that consent has been revoked with respect to one or more named parties. In an HIE environment, the revocation with respect to one or more parties should be clearly communicated to the Health Information Organization (HIO) as well as noted in the patient’s record by the Part 2 program.

Documents to download

HITEQ-Legal-Action-Center-SAMHSA-I-provide-SUD-services-in-an-FQHC(.pdf, 380.63 KB) - 1360 download(s)

Resource Links

Substance Abuse Confidentiality Regulations from the Substance Abuse and Mental Heath Services AdministrationFrequently Asked Questions (FAQs) and Fact Sheets regarding the Substance Abuse Confidentiality Regulations.

Tags: Privacy and Confidentiality SUD SAMHSA 42 CFR 42 CFR Part 2 substance use disorders 42 CFR Part 2 Badge

Print

Intended Audience

health center staff

Related Resources

Health Center Defender Against the Dark Web Badge Confirmation