DHCM complies with the HIPAA Electronic Data Interchange, HIPAA Security Standards and our client’s Notice of Privacy Practices.
HIPAA Electronic Data Interchange
DHCM transmits all professional medical claims in the ANSI X12 837 format and receives all electronic remittance advices in the ANSI X12 835 format.
HIPAA Security Standards
DHCM Administrative safeguards
Train staff on rules, regulations, and procedures for HIPAA compliance
Prepared for aftermath of catastrophic events should they happen
Contracts developed for business associates
DHCM Physical safeguards
Procedures set for workstation use and security
Procedures set for electronic media reuse and disposal
DHCM Technical safeguards
Control staff computer log-in and log-off
Monitor access to confidential patient information
Computers set up to authenticate users
HIPAA Notice of Privacy Practices
DHCM is committed to maintaining the privacy of our client’s protected health information (PHI), while providing high quality service. In accordance with the HIPAA regulations all DHCM client patients shall receive a full written notice of our client’s privacy practices at their first office visit after April 14, 2003. This notice shall explain:
How DHCM, as a Business Associate of our client, may use and disclose your PHI.
Privacy rights regarding your PHI.
DHCM obligations concerning the use and disclosure of your PHI.
DHCM may use and disclose your PHI for treatment, payment, and health care operations (TPO) in order to provide you with quality service. Patients have the right to inspect, copy, and amend their PHI. Patients have the right to request restrictions on the use of their PHI. Patients have the right to an accounting of the disclosures of our PHI for other than TPO. Patients have the right to complain about alleged violation to our client’s practice privacy officer and the U.S. Department of Health and Human Services.
