Medical Record Chapter: CMS CoPs, Access, and OCR Security Requirements (W6021)-Medical Record Chapter CMS CoPs, Access, and OCR Security Requirements Recording

Video Transcription

Video Summary

The webinar introduced Laura Dixon, a nurse and attorney with extensive experience in patient safety and risk management. She presented a detailed overview of medical record rules, focusing on access, privacy, security, release of information, and CMS conditions of participation for acute hospitals and critical access hospitals.<br /><br />Key topics included the difference between a patient’s right to access records versus the authorization needed to obtain copies, along with timelines, fees, and identity verification. Dixon explained when information blocking may occur, the limited exceptions allowed, and the special protections for psychotherapy notes and substance use disorder records under Part 2 rules and HIPAA. She also covered scenarios involving behavioral health, law enforcement requests, child protective investigations, and emergency situations.<br /><br />The presentation reviewed documentation requirements for medical records: accuracy, completeness, timeliness, authentication, retention, confidentiality, and security risk assessments. Dixon emphasized proper handling of verbal orders, standing orders, history and physicals, informed consent, discharge summaries, and electronic notifications. She also addressed modern concerns such as texting PHI, copy-paste practices, electronic signatures, and cybersecurity risks.<br /><br />Throughout the session, audience questions explored real-world cases like record verification by phone, pathology delays, newborn chart access, inmate specimen collection, and releases involving substance use, HIV, and guardianship issues. Dixon repeatedly stressed that hospitals should maintain clear written policies, follow state law where it is stricter, and consult legal counsel when needed.

Keywords

medical records

patient access

privacy

HIPAA

information blocking

psychotherapy notes

substance use disorder records

CMS conditions of participation

release of information

documentation requirements

electronic signatures

cybersecurity

hospital policies