Healthcare centers must be ready to provide complete EHR Audit Trails. The Audit Trail is a log of actions related to Electronic Patient Health Information (ePHI) that supports the forensic reconstruction of the sequence of changes to a patient’s chart.
There are several legal reasons why your practice must have the EHR logging technology and procedures in place.
- All EHRs certified to qualify for the Medicare and Medicaid Electronic Health Records Incentive Programs must maintain an Audit Log
- The HIPAA Security Rule Audit Controls Standard requires mechanisms to record and examine activity in information systems containing ePHI.
- HIPAA Security Management Process Standard requires regular review of records of information system activity, such as Audit Logs and reports of access to the systems.
Lawsuits, audits and investigations have revealed that some Covered Entities and Business Associates are not maintaining Audit Logs.
This lapse may be unintentional, or in some cases, because Management, Boards of Directors, or CEOs were unaware that the Compliance and IT staff had not implemented the technology and procedures.
Are you aware of how your practice maintains Audit Logs? Are you violating HIPAA Rules? Learn how to avoid legal peril by attending this webinar. Register today.