Privacy & Compliance 101


How would YOUR practice fare if a “mystery shopper” presented your front desk staff with a privacy situation?


Over the past year I’ve had 3 personal experiences with HIPAA privacy compliance at mid-sized medical practices where I’ve been a patient.

  • Front desk staff insisting that the Patient’s Bill of Rights is the same as the Notice of Privacy Practices
  • Front desk staff unable to provide a copy of the Notice of Privacy Practices or contact information for the Privacy Officer
  • Interruption mid-procedure that if I didn’t provide my social security number, the procedure would not be completed, and further insistence that it was a requirement from my insurance company!

The Office of Civil Rights has begun audits for HIPAA privacy compliance.  Are you prepared?

We can help you provide the basics with our

HIPAA Front Desk Privacy & Compliance 101 Package:

First, the disclaimer that it is not a be-all-end-all HIPAA compliance solution.  It addresses privacy policy for your front desk staff, who are on the front lines of patient communications.

Here’s what this package offers:

  • discovery process with office management and staff to understand and document what privacy practices are already in place.
  • development of customized deliverables:
    • Customized Privacy Policy & Compliance Procedure Manual
    • Privacy Officer job description and instructions on handling privacy issues
    • Privacy Training for staff
      • customized for how privacy is managed at YOUR practice
      • includes Employee Compliance Training Assessment (a simple test and acknowledgement of compliance training that can be filed in the employee’s personnel file)
    • Updated set of customized privacy forms
    • Optional updating of other practice specific forms to reflect current guidelines and practices, and to facilitate a uniform look and feel to all practice communications sent to patients
  • staff training (can be full staff, train the trainer, onsite or remote)
    • Privacy Officer
    • Practice staff, including physicians, front desk, management, etc.
  • Optional additional services:
    • Develop list of practice Business Associates and collect Business Associate Agreements
    • HIPAA/HITECH Risk self-assessment support

As with any consulting project, the various pieces can be mixed and matched and added on to.

Call for a free consultation to see if this package is right for your practice


What Our Clients Say

Habanero Inc. provided expert personalized Privacy & Compliance policies for our practice. Without their expertise and thorough custom fitting a front desk HIPAA package I’m sure we would have had many complications and issues. We can not thank Habanero Inc. enough for their personal attention to our practice.