HIPAA Security Reminder – Avoid Medical Identity Theft
Medical identity theft is a criminal act that occurs when a person uses someone else’s personal information, such as name and insurance card number, without that individual’s knowledge to obtain or make false claims for medical services or goods. Learn more about what you and your company should be doing…to protect yourself and your stakeholders…
Ten Tips on How to Avoid or Detect Medical Identity Theft
- Carefully examine the Explanation of Benefits (EOB) sent by your health insurance provider. You receive an EOB whenever a claim for your healthcare benefits is filed. In particular, check the dates of service, the type of service, and the provider. If there are incorrect entries, such as dates listed that you did not receive treatment, contact the insurer or the provider involved. Do not assume that all is okay just because your balance is zero.
- Most providers will include a toll-free number on the EOB to call for questions or potentially fraudulent claims information.
- At least once a year, request a listing of benefits paid in your name by health insurers that may have made payments on your behalf.
- Monitor your credit reports with the nationwide credit reporting companies – Equifax, Experian, and TransUnion – to identify reports of medical debts. You are entitled to one free credit report per year from each of these agencies. One strategy is to request your free credit report from a different agency every 4 months.
- Request a full copy of current medical files from each health care provider and examine for errors, such as treatment and medications you never received.
If you discover your medical or insurance records contain false information, you must work to correct those records. Contact the appropriate patient rights advocates at the insurer and/or provider to correct the false entries.
- If you are disposing of your EOBs, bills, or any other statements that contain your health or financial information, always shred this information prior to its disposal. Of course, exercise the same caution when disposing of university-owned personally identifiable data.
- If your health insurer provides online access to your records, make use of this feature to frequently check the accuracy of your information. Of course, you must adequately protect your computer from viruses and other threats.
While the HIPAA and HITECH regulations do not explicitly call our Medical Identity Theft safeguards, complying with the regulations by implementing reasonable and appropriate safeguards will help prevent breaches that may result in medical identity theft.
If you'd like keep up to date on HIPAA Security and Privacy reminders or HIPAA-HITECH in general, please also consider (all optional!):
- Joining our AboutHIPAA LinkedIn Group: http://AboutHIPAALI.org
- Following me: http://Twitter.com/AboutHIPAA
- Subscribing to our eNewsletter: https://app.e2ma.net/app/view:Join/signupId:61331/mailingId:3310893/acctId:36048
- Subscribing to our RSS feed: http://abouthipaa.com/feed/rss/
- Checking our company web site: http://clearwatercompliance.com/
- Attending a HIPAA HITECH live webinar: http://abouthipaa.com/webinars/upcoming-live-webinars/
- Attending a HIPAA HITECH Blue Ribbon Panel Live Web Event: http://abouthipaa.com/webinars/blue-ribbon-panel-live-events/
- Viewing a pre-recorded webinar: http://abouthipaa.com/webinars/on-demand-webinars/