We have over 500 employees. I prefer to determine what qualifies as an issue, incident or breach myself. All staff are required to report the following to the Compliance Department immediately and in no less than 24 hours:
This allows me to monitor areas of risk and trends so I know what to emphasise for our annual trainings.
Also, if there is a recurring problem at one site or in one department I can address it with them directly before it becomes a large incident.
This statement is included in the Breach Reporting Procedure that is posted in all departments.
A breach occurs when protected health information (PHI) is lost or sent to, overheard, seen, or stolen by someone who does not have authorization to see, hear, or possess the information.
If you think or know a breach occurred you must contact the Compliance Dept. immediately.
Whether items were stolen or not, you must contact Compliance Dept immediately after any break-in at a clinic, office, mobile unit, or company vehicle.
If someone has stolen or broken-in to your personal vehicle and PHI or Company property was in the vehicle you must contact the Compliance Dept. immediately.I hope this helps.