HIPAA Security Rule updates are moving forward — but slowly, deliberately, and with far less disruption for mental health practices than much of the current chatter suggests. This article breaks down what’s actually happening, why it matters, and how to stay grounded and well-positioned without panic or performative compliance.
In our latest episode, we have an update (and are once again offering reassurance) around the proposed HIPAA Security Rule changes.
We discuss:
The proposed Security Rule update on the OCR’s spring regulatory agenda
Why you’re already in good hands if you’re following PCT’s advice
Some of the proposed changes that will impact therapy practices
Reassurance about these proposed changes
Effective dates versus compliance date
Forecasting scenarios for these changes to take effect
Steps to take now (and important things to not do now) to be proactive rather than reactive
In our latest episode, we chat with Dr. Maelisa McCaffrey of QA Prep about how the landscape of insurance and documentation has shifted over the last decade.
We discuss:
Risk adjustment audits and how they impact providers
Billing codes and audit red flags
AI documentation and how insurance companies are using AI
Considerations when using AI for documentation
Pressuring professional associations to advocate for clinicians and clients
Our upcoming CE event on January 30th with Maelisa on how auditors think and why
In our latest episode, we share what to do as a practice owner to prevent email hacks, and how to respond if one occurs.
We discuss:
Technical and behavioral measures to take to prevent email hacks
Mandating two-factor authentication system-wide
Education and staff training for prevention
Creating a shame-free security culture in your practice
Steps to take if you receive an email that looks suspicious
Steps to take if you find out your email has been hacked
Breach reporting timelines to be aware of
PCT resources that guide you through security training and awareness; risk analysis and mitigation planning; and breach investigation, documentation, and reporting
Ongoing training and security reminders for your team
In our latest episode, we’re highlighting the stories that impacted your practices this year, and the main takeaways from each story.
We discuss:
The proposed changes to the HIPAA Security Rule
Common sense security updates to incorporate into your practice
The proliferation of AI and ways therapists can differentiate themselves from AI
The proliferation of platforms offering practice management as a service
How group practices can stand out from these practice management platforms
Clinician burnout and clinicians returning to their clinical roots
Progression of cross-jurisdictional practice mobility
The uncertainty around the Medicare telehealth cliff
In our latest episode, we chat with Ben Cutler, CEO of Hushmail, about how a secure email service can be a crucial part of your practice’s tech stack.
We discuss:
How secure email can complement the communication features of your EHR
Communication gaps in EHRs that can impact your security circle
Pairing secure forms with secure email to optimize the intake process
Secure communications as a marketing asset
Creating more efficient streamlined services for clients and providers
Addressing burnout via efficient business systems
Using Hushmail to customize forms and coordinate care
Misconceptions around non-secure communications
The difference between HIPAA friendly and HIPAA secure
In our latest episode, we answer a frequently asked question: whether therapy practices actually need cybersecurity insurance.
We discuss:
The benefits and considerations of obtaining a cybersecurity insurance policy
PCT’s stance on cybersecurity insurance for solo and group practices
How cyber insurance relates to your full HIPAA compliance program
Common reasons for claim denials
The six major areas where cyber policies differ, and how to choose your policy
How a PCT risk analysis can help you determine what level of insurance makes sense for your practice
In our latest episode, we share some positive stories to bring you some peace of mind at this time of year.
We discuss:
Increasing transparency requirements for AI service providers
Cross-jurisdictional licensure portability/practice permissions expansion
No telehealth cliff for Medicare clients, and the in-person visit requirement
How security standards are becoming easier to adopt
Practice culture becoming easier due to supportive systems
In our latest episode, we chat with Gabrielle Juliano-Villani of Medicare Consulting for Therapists about recent updates regarding Medicare and telehealth.
We discuss:
The extension of in-person visit requirement
What that means for new and established clients
Coping skills for the ups and downs of business
Main takeaways for practice owners with the recent extension
Where to get updates on this topic