Among the nation’s top HIPAA compliance and “Big Data” attorneys, Kristen Rosati discussed the limitations of electronic medical record (EMR) software and the need for advanced HIPAA training in hospitals with Healthcare Risk Management.

Kristen joined other law, technology, and compliance professionals in discussing the need for HIPAA training and audits after a Chicago hospital reportedly fired more than 50 employees in response to improper access of actor Jussie Smollett’s medical records. Kristen noted that while some EMR software has good role-based limitations for employees, it cannot determine if a user who has treatment access to files has a treatment relationship with a particular patient.

Kristen explained that stopping infractions before they occur is nearly impossible, but audits do reveal when employees have accessed medical records that they shouldn’t have. She also shared that since HIPAA became law – and healthcare organizations have implemented proper training programs – the number of incidents has decreased.

In addition to her “Big Data” and HIPAA compliance practice, Kristen has deep experience in data breaches, health information exchange, data sharing for research and clinical integration initiatives, clinical research compliance, clinical trials contracting, and biobanking and genomic privacy. Kristen is a sought-after national speaker on these issues and has been active in national healthcare policy.

View the full article here.