The following is an excerpt from our eBook “The ABCs of Patient Notification”, which you can download for free RIGHT HERE. Tons of great ideas to improve your patient communication efforts!
Z – zero risk
If you’ve followed our past ABCs posts, you’ve been exposed to numerous reasons why automation is the way to go in patient notifications. And when you look for a vendor to help you out, we can’t overemphasize the importance of protecting PHI, following recommended practices under HIPAA guidelines and abiding by federal and state regulations! This includes:
Adherence to FTC/FCC/HIPAA/state regulations
Is the vendor aware of the most recent regulations related to automated messaging? Does the vendor have a legal expert dedicated to these areas? Do they have a compliance officer? Make sure you choose a vendor that has expertise on important communication-related regulations. It will mean less risk for your organization…and fewer headaches for you.
Does the vendor have a high-level security officer or team dedicated to information security? While adherence to messaging regulations is essential, it’s every bit as important to make sure that patient data is protected through appropriate administrative, logical, physical and access controls. Choose a vendor that you can trust to protect your sensitive data!
Regular third-party audits
Internal confirmation isn’t enough. It’s important that a third party verifies that the vendor is following written policies and procedures. Regular audits, ISO reviews and other monitoring activities ensure that you can use the vendor’s solutions and services with full confidence. Look for a vendor that has these auditing protocols in place and can show you an official auditor’s report from a third-party auditing firm. It means that you won’t have to invest considerable time and money should your organization require regularly scheduled audits from the vendor.