Welcome solo and group practice owners! We are Liath Dalton and Evan Dumas, your co-hosts of Group Practice Tech.

In our latest episode, we share a how-to guide for managing role-based access and shared accounts with HIPAA in mind. 

We discuss:

• How to audit system access in your practice
• Defining roles and responsibilities to determine access
• Managing shared email accounts with email delegation
• The difference between email aliases and delegated accounts
• Steps to take when systems don’t allow for multiple logins

Listen here: https://personcenteredtech.com/group/podcast/

For more, visit our website.

Resources

• HHS FAQ: Does the Security Rule permit a covered entity to assign the same log-on ID or user ID to multiple employees?

PCT Resources

• PCT Article: The Risk No One Talks [Enough] About: Shared Admin Accounts… And What To Do About It (with action items list)
• Free CE course for group practice leaders: Introduction to HIPAA Security for Group Practice Leaders (1 legal-ethical CE credit hour)
• Group Practice Care Premium
  • weekly (live & recorded) direct support & consultation service, Group Practice Office Hours -- including monthly session with therapist attorney Eric Ström, JD PhD LMHC
  • + assignable staff HIPAA Security Awareness: Bring Your Own Device training + access to Device Security Center with step-by-step device-specific tutorials & registration forms for securing and documenting all personally owned & practice-provided devices (for *all* team members at no per-person cost)
  • + assignable staff HIPAA Security Awareness: Remote Workspaces training for all team members + access to Remote Workspace Center with step-by-step tutorials & registration forms for securing and documenting Remote Workspaces (for *all* team members at no per-person cost) + more
• HIPAA Risk Analysis & Risk Mitigation Planning service for mental health group practices -- care for your practice using our supportive, shame-free risk analysis and mitigation planning service. You’ll have your Risk Analysis done within 2 hours, performed by a PCT consultant, using a tool built specifically for mental health group practice, and a mitigation checklist to help you reduce your risks.
• PCT's Comprehensive HIPAA Security Compliance Program (discounted) bundles:
  • For Group Practices
  • For Solo Practitioners