• Home
  • Blog
  • Contact

Call us toll free 0800 0000 900

support@hipaa.com
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceHIPAA Compliance
  • Home
  • Blog
  • Contact

How Should We Run Background Checks on Our Staff?

February 5, 2009 Health IT and HITECH 1 Comment

Clearance and Background Checks is an addressable standard under HIPAA’s Security Rule, which means that your organization may authorize a background check for any new employee or existing workforce member who engages in activities that cause the Security Official to question clearances. As part of your compliance activities, you already determined the risks your workforce presents to your practice, and you assigned one person to own/manage this risk

As part of your clearance procedures, determine which of the following you will do:

» Require a written application for employment.
» Require written proof of citizenship or resident alien status.
» Confirm prior employment history.
» Request professional/personal references and contact those references.
» Confirm educational history and practicing credentials.
» Verify licenses.
» Verify candidate’s compliance history with any regulatory or medical requirements relevant to employment.
» Conduct a criminal background check using a consulting service.
» Confirm application statements, as appropriate.
» Require up-to-date written documentation for Federal and state tax withholding and Social Security Numbers.

Document all assigned security clearances, such as passwords, building entrance pass, and office key to each workforce member, as appropriate. Expect workforce members to acknowledge in writing receipt of clearances and immediately inform the Security Official of any change in job responsibilities.

Authorize your Security Official to cancel immediately any clearances when notified that a member of the workforce’s employment has terminated for any reason.

Tags: background checkcomplianceemployeesemploymenthealth information technologyHITSecuritySecurity RuleSecurity Standards
1 Comment
Share
0

You also might be interested in

The Definition of Vendor of Personal Health Records

May 11, 2009

This posting is one of several that outline the HITECH[...]

Facility Access Controls: Contingency Operations-What to Do and How to Do It

Apr 24, 2009

In our series on the HIPAA Administrative Simplification Security Rule,[...]

The Definition of Health Care Operations

May 10, 2009

This posting is one of several that outline the HITECH[...]

1 Comment

Leave your reply.
  • Robert Wormser
    · Reply

    August 11, 2016 at 7:43 AM

    As a patient must I trust all protected health information (PHI) to a Dentist’s receptionist/ Assistant? The paper work was simply left on the counter in the reception area (with few other patients).
    How can I determine that these small offices meet all security requirements? Are compliance audits regularly performed? Are the results published? (Even food service health inspections are public.) Where are violations published?
    I realize this is a low level inquiry but many are affected. Thank you, Bob

    http://www.hipaa.com/how-should-we-run-background-checks-on-our-staff/

Leave a Reply Cancel Reply

Categories

  • 5010
  • American Recovery and Reinvestment Act
  • Enforcement
  • GINA
  • Health Care Reform
  • Health IT and HITECH
  • HIPAA Law
  • Identifiers
  • Meaningful Use
  • Privacy
  • Red Flags Rules
  • Security
  • Transactions & Code Sets
  • Uncategorized

Recent Posts

  • Contracting with Vendors that are NOT HIPAA Business Associates: Best Practices
  • HIPAA Breach: Who You Gonna Call?
  • Can I Be Sued for a HIPAA Violation?
  • Business Associate Agreements – a First Look at Indemnification
  • Gmail, Google Apps for Business HIPAA Business Associate Agreements

Archives

Contact Us

We're currently offline. Send us an email and we'll get back to you, asap.

Send Message

© 2023 · hipaa.com

Prev Next