Medical Record Chapter: CMS Hospital CoPs, Access, and OCR Security Requirements
Date: 6/24/25
9:00 – 10:30 a.m. Central time
Audience:
Chief Medical Officer, Chief Nursing Officer, Compliance Officer, Emergency Department Personnel, Joint Commission Coordinator, Medical Records, Quality Improvement personnel, Risk Manager, Legal Counsel.
Overview:
This program will detail the Centers for Medicare & Medicaid Services (CMS) regulations and interpretive guidelines for medical records for acute care and critical access hospitals. The Interoperability and Patient Access Rule, which grants patients access to health information in their electronic medical record without charge, will be discussed. This session will also cover the Health Insurance Portability and Accountability Act (HIPAA) from the Office of Civil Rights (OCR). Attendees will learn the difference between patient access and when an authorization is needed. Other topics to be discussed include security of health information and the OCR Security Risk Assessment.
Learning Objectives:
– Recall that CMS has specific informed consent requirements.
– Describe when a history and physical must be done and what is required by CMS.
– Explain CMS standards on verbal orders, preprinted orders, standing orders, and protocols.
– Describe circumstances in which healthcare providers can “block” patients’/others’ access to health information.
– Recall the requirement to conduct a HIPAA Security Risk Assessment.
Speaker:
Laura A. Dixon served as the director of risk management and patient safety for the Colorado Region of Kaiser Permanente. Prior to joining Kaiser, she served as the director, facility patient safety and risk management and operations for COPIC from 2014 to 2020. In her role, she provided patient safety and risk management consultation and training to facilities, practitioners, and staff in multiple states. Dixon has more than 20 years of clinical experience in acute care facilities, including critical care, coronary care, peri-operative services, and pain management. Prior to joining COPIC, she served as the director, Western region, patient safety and risk management for The Doctors Company in Napa, California. In this capacity, she provided patient safety and risk management consultation to the physicians and staff for the western United States As a registered nurse and attorney, Dixon holds a Bachelor of Science degree from Regis University, RECEP of Denver, a Doctor of Jurisprudence degree from Drake University College of Law, Des Moines, Iowa, and a Registered Nurse Diploma from Saint Luke’s School Professional Nursing, Cedar Rapids, Iowa. She is licensed to practice law in Colorado and California.
This speaker has no real or perceived conflicts of interest that relate to this presentation.
No Comments