We are happy to share details of a new tool aimed to ensure employees are HIPAA compliant when accessing patient information.
The Explanation-Based Auditing System (EBAS) by MAIZE Analytics is a new Epic security application that reviews user access to patient charts. This automated system monitors and analyzes access to patients’ electronic medical record (EMR) and highlights any suspicious activity. With customizable security filters, the EBAS can flag when a user enters another employee’s chart, family member chart, neighbor’s chart, or any other charts that are not part of the employee’s normal work routine. Suspicious activity reports are reviewed by NOAH’s Compliance Officer and handled accordingly. This robust system quickly identifies any HIPAA violations within Epic usage and reduces manual inspections.
If you have any questions about HIPAA compliance, access to patient charts, or need clarification on what’s appropriate or inappropriate, please reach out to Brandy Riviezzo at briviezzo@noahhelps.org.
Please also be diligent by immediately reporting any EMR breaches or accidental access through Compliatric.
For more information please review NOAH’s HIPAA Sanction Procedure and related Corrective Action Policy.
