Can a meth dealer become a HIPAA Auditor?

Published

I found out that a convict meth dealer became certified as a HIPAA auditor by one of those online institutions. Now this person manages the EMR of a few clinics, and does all of their HIPAA related services. This person is hired as a vendor by the healthcare facilities, and belongs to multiple healthcare, doctors, and medical associations. Gives speeches about how to "secure" medical information and moves freely in the medical market selling his services as a HIPAA auditor and EMR specialist. I am sure this person does not disclose to any client or potential client, that she is a convict who went to a federal prison for selling meth and other illegal drugs, like crack and cocaine.

Is it legal for a convict not only to manage medical and personal records of patients, but also do HIPAA audits, meaningful use implementation, etc etc?

I believe the companies that hire her are not aware of her criminal past, and definitely do not know she is still a user and dealer.

OP, what are you hoping to accomplish?

My question is "is it legal" not if it can happen. (I lost my logins, I created a new account. Sorry)

OP, you've answered your own question.

Can it happen? Looks like it already did.

My question is "is it legal" not if it can happen. (I lost my logins, I created a new account. Sorry)

This is a nursing site, not a lawyer site.

Convicted felons have restrictions. For example.. I own my gun, felons cannot. Your question is against the TOS here.

Why would it not be legal?

I know that, it's in the site's name "allnurses" - And nurses do know hipaa and deal with it, therefor I am asking their opinion. In some states nurses loose their license if they get convicted of a crime, or don't get licensed if have a criminal record. And Network manager/hipaa auditor/EMR administrator, is not licensed by the state, and do manage very sensitive information. You as a nurse, would you be OK knowing that a convict has access to your medical and professional records?

This is a nursing site, not a lawyer site.

Forgive me, I am unaware if my question is against the TOS. I am asking for the opinion of those who know hipaa regulations. It is a hipaa question.

Convicted felons have restrictions. For example.. I own my gun, felons cannot. Your question is against the TOS here.

Providers (healthcare facilities, doctors, hospital, etc) hire hipaa auditors and EMR administrators because they have to. It is the providers responsibility to verify the integrity and honesty of the companies they chose to do business with; after all they don't want any risk of a hipaa violation fine. The providers must be selective, because if the company they hire knowingly or unknowingly breaks any hipaa rule, the providers are the responsible party and they have to foot the fine and all consequences. I doubt that a company owned and managed by a convict would be selected by any medical provider to manage their medical data and audits them. You're question is right on point, since hipaa auditors are not required to get licensed, I guess it is not illegal for a convict to not disclose her/his criminal record to get hired as a hipaa auditor.

Why would it not be legal?
Specializes in EMS, ED, Trauma, CEN, CPEN, TCRN.
Forgive me, I am unaware if my question is against the TOS. I am asking for the opinion of those who know hipaa regulations. It is a hipaa question.

The nursing knowledge of HIPAA does not cover who can be a HIPAA auditor. It's kind of like asking a bus driver if a felon can change his tires.

I got into this forum with my question because I read an article called "First-gang-members-now-meth-dealers-want-your-health-records".

Specializes in Pediatrics, Emergency, Trauma.
So we're told. In reality many convicts suffer psychological disorders for the rest of their lives. We are talking about our most private information as patients, nurses, doctors, etc. Would you be find having a ex-convict computer guy managing your data?

As long as they abide by the law, YES.

Many people who are not offenders have psychological disorders, just FYI...and are able to have jobs and careers, so what is your point?

Providers (healthcare facilities, doctors, hospital, etc) hire hipaa auditors and EMR administrators because they have to. It is the providers responsibility to verify the integrity and honesty of the companies they chose to do business with; after all they don't want any risk of a hipaa violation fine. The providers must be selective, because if the company they hire knowingly or unknowingly breaks any hipaa rule, the providers are the responsible party and they have to foot the fine and all consequences. I doubt that a company owned and managed by a convict would be selected by any medical provider to manage their medical data and audits them. You're question is right on point, since hipaa auditors are not required to get licensed, I guess it is not illegal for a convict to not disclose her/his criminal record to get hired as a hipaa auditor.

This person as the convicted of stealing identities. If they had been, then I could see where it could be an issue. I guess I do t really understand why you are so worked up over it to begin with.

+ Join the Discussion