We discuss:
Why shared accounts are a no-no, and why it’s such a common practice
The HIPAA standards that are impacted by this practice
The internal and external risks of sharing admin accounts
The why and what of role-based access control
We discuss:
Overwhelm as a barrier to HIPAA compliance and the key to success
Two security settings to update on your smartphone
Risk exposure + device security
How to get step-by-step guidance for your specific device
We cover:
Popular screen recording software, Loom, and why it’s not HIPAA compliance compatible
Google Vids being covered by the Google Workspace BAA
Use cases for screen recording software for group practices
Key reminders and usage notes for Google Vids
We discuss:
Devices being searched by Customs and Border Patrol at the US border
Why border agents can search devices without a warrant
HIPAA being the minimum security standard, not the ceiling
When HIPAA permits disclosure of PHI
How clients can be impacted when PHI is accessed by law enforcement
How to conduct a risk analysis of the potential impact of client PHI being accessed by law enforcement
What to remove from devices before traveling
Upcoming resources we will be providing on this topic
We discuss:
Common myths we hear about practicing telehealth across jurisdictions
The risks of unpermitted practice
The threshold of client risk (and the only instances where cross-jurisdictional practice is permitted for clients in crisis)
What constitutes client abandonment and what doesn’t
Requesting temporary practice permission from a different jurisdiction
Our recent training on navigating legal-ethical cross-jurisdictional teletherapy practice for therapists