April 29, 2024 At Abyde, it’s clear that we eat, live, and breathe HIPAA. Let’s take a trip down memory lane as we start this new week. HIPAA has become a staple in championing patient’s rights, but how did we get here? Gather your compass and maps because it’s time to set sail on a compliance cruise because we’re exploring the beginnings of HIPAA. Blast to the Past: The Beginnings of HIPAA We’re going back in our time machine to the 90s. The digital revolution was starting in a time of grunge and oversized flannels. From trading cassettes for shiny CDs to the sweet, sweet sound of screeching dialup, the 90s were defined by innovation. As we were (slowly) getting connected online, so were Covered Entities (CE). As the internet became more common, so did ePHI, or electronic Protected Health Information. Health information went digital, so it was time for some federal rules. Enter HIPAA! HIPAA, or the Health Insurance Portability & Accountability Act, was signed into law on August 21, 1996, by Bill Clinton. HIPAA, or the Kennedy Kassebaum Act, provides the privacy and rights of patients’ data. But hold onto your hats! This was only the beginning of HIPAA legislation. The Privacy Rule: Keeping it Quiet Coming into effect in April of ’03, the Privacy Rule established the standards to protect the privacy of PHI, limiting how PHI is shared. This rule boils down to sharing the bare minimum information. In this, the Minimum Necessary standard is put in place. The Privacy Rule requires that only essential and necessary information is shared regarding taking care of a patient. There are some times when this standard doesn’t apply, including: The Privacy Rule also establishes the Right to Access, giving patients power over their medical records. This lets patients get their medical records fast! The Right of Access, under the Privacy Rule, usually requires patients to receive their medical records within 30 days. Some states are even quicker! The Security Rule: Keeping it Secure Not too long after, the HIPAA Security Rule came into play in April 2005. The Security Rule establishes how the ePHI needs to be protected. This rule sets the standards for all the safeguards to keep patients’ information safe. The categories of safeguards are: The Breach Notification Rule: Keeping it Transparent Fast forward a few years, and HIPAA throws another punch for patient privacy – the Breach Notification Rule! This one landed in September 2009; however, the government was still figuring out the rollout of HIPAA enforcement between the Security and the Breach Notification rules. Monetary penalty enforcement officially began in 2006, but a significant piece still needed to be added to protecting patient data. With all this data protection, patients needed to know if something went wrong, right? That’s where the Breach Notification Rule kicks in. The Breach Notification Rule defines what a small (>500) and significant (<500) breach is and how patients need to be notified when their information is compromised. Patients deserve to understand the scope of what’s going on with their data! The notification should explain the breach, what information was potentially exposed, and how individuals can protect themselves. For the OCR, it all depends on how many people were affected. So, even though a BA might not be working with a patient, the business still has to keep their PHI under lockdown! Omnibus Rule: Keeping it Clear Fast forward to 2013. The final HIPAA Omnibus Rule was created to clarify further and strengthen HIPAA regulations. Some of the new updates included: What’s next? Over the last 30 years, the HHS has updated best practices under HIPAA, ensuring patient data is appropriately secure as innovations arise. Some of the latest guidance released includes marketing tracking tips and significant changes to 42 CFR Part 2. Want to make sure you’re up to date on the latest of all things HIPAA? See the latest on our blog and social media!
The History of OSHA: More than Just Regulations
March 26, 2024 A long time ago in a galaxy far far away… Okay, maybe the history of OSHA might not be that entertaining. But, let’s be honest, being aware of the history of safety measures for your practice might be a little more important than knowing the planet Obi-Wan Kenobi is from (Stewjon, if you’re wondering). Today, we’re going over the history of OSHA. Don’t worry about this being a total snoozefest like history classes in high school, that’s not what we do here. Get comfortable, because we’re diving right into the history of this agency for workers’ rights. Back to Basics OSHA, or the Occupational Safety and Health Administration, is the government agency that ensures employees are safe and healthy. When workplaces do not follow OSHA protocols, consequences are sure to follow. OSHA dates back to 1970. Now, most might think of the 60s and 70s as a time of bell bottoms and groovy music, but before OSHA, there were few, if any, standards for employee safety. There were attempts before for federal-level workers’ safety legislation under Lyndon B. Johnson in ‘68, but were unsuccessful. Before OSHA, just in the year 1970, over 14,000 people died at work. As more people were hurt and fatally injured at work, something had to happen. After years of trying to get workers’ safety regulated on a federal level, on December 29, 1970, Richard Nixon signed the Occupational Safety and Health Act, or the OSH Act. Now, that’s something a lot better on your resume than Watergate! What Does This Mean? Okay, awesome, it was signed. Now what? How did this piece of legislation lead to the OSHA we know and love today? Well, the OSH Act went into effect early the following year, on April 28, 1971. As a result of workers’ safety regulations reaching a federal level, OSHA and the NIOSH, or the National Institute for Occupational Safety and Health, were established. OSHA and NIOSH (say that three times fast!) are sister agencies, with the same mission of mitigating and eliminating workplace injuries. OSHA’s job is to enforce regulations and standards, while NIOSH is the researcher, making recommendations on new legislation to keep employees safe. In its first decade, OSHA set out to tackle some of the largest issues in the workplace: asbestos, lead, carcinogens and cotton dust. OSHA training standards were established, and some whistleblower protections were also introduced. OSHA got busy, fast. Over its course of existence, there have been numerous rules and legislation adopted to ensure the safety of employees. For instance, in the 80s, the Supreme Court ruled that the OSH Act protects employees who refuse unsafe work. The 80s (other than awesome movies) included legislation for the certification of equipment, and protection against noise, grain dust, and hazardous energy. The 90s, a time full of grunge and social awareness, introduced numerous healthcare rules, like how to handle bloodborne pathogens in the Bloodborne Pathogen Standard, falls, toxic substances, laboratory safety, and more. There have been a variety of historical events that have influenced OSHA in the 21st century. In the 2000s, 9/11 and Hurricane Katrina brought into focus new protections and emergency response plans. The Needlestick Safety and Prevention Act was also signed, revolutionizing the medical field, requiring things like safer medical devices and a sharps injury log. The 2010s welcomed new rules regarding oil spills in the aftermath of the Deepwater Horizon Oil Spill. The latest major OSHA history news surrounds COVID-19, with the unprecedented pandemic introducing new rules to ensure employees were safe. OSHA in Action OSHA has made an undeniable impact on the safety of employees. Since OSHA was established, workplace deaths and illnesses have fallen by nearly 70%! Since its introduction in 1970, OSHA has empowered employees to feel safe at work by providing safety guidelines and enforcement. Without OSHA, employees would not have the safety frameworks they need and deserve to do their jobs safely. We hope you’ve enjoyed our history lesson today. A+s for all of our Abyde users! While OSHA has greatly benefited the safety of employees, it’s up to your practice to make sure you’re following OSHA protocols, keeping your employees safe. Abyde can be your OSHA solution, making sure you’re staying OSHA-compliant and up-to-date with all legislation. To learn more about where your practice’s compliance currently stands, email us at info@abyde.com and schedule a consultation here.