Steer clear of a HIPAA violation by auditing your user permissions and log files.
It’s important to make sure that your forms are going to the right people, but it’s even more important to make sure that they’re not going to the wrong people. If they do, this could be a clear and direct violation of HIPAA and put you in quite a bind. Because your forms can contain sensitive ePHI, it’s important to give them to same importance as access to your EMR or EHR.
We highly suggest doing frequent checks of the users that are able to access your forms, and placing this on any sort of checklist you may have for staff departure. The easiest way to do this by following these steps:
- Log in to your Practis Forms account.
- Click “Users” at the top of your screen.
- Verify what users are meant to be attached to the form, and remove those that aren’t by clicking “delete.”
Pro tip: Make a recurring calendar invite at least quarterly to review these users, and keep it to a small amount. We even may go as far as suggesting having just one user for your forms. The more people that have access, the more room for error!
If you have any questions about managing your users, or want to learn more about any of the updated Practis Forms features, contact our support team today!