It is no surprise that Protected Health Information (PHI) must be kept secure while at rest and throughout the PHI transfer process. This requires an in-depth knowledge of a patchwork of rules and regulations that must be learned, studied, and applied rigorously. CRIS – or Certified Release of Information Specialist – is a designation that represents professionalism and understanding in managing and releasing PHI. By ensuring a thorough knowledge of circumstances that affect how PHI is transferred, trained specialists can remain effective and compliant in the handling medical records.
A certificate is awarded to individuals who pass the examination with a grade of 80% or higher. This provides validation of professional competence in the release of information space. The test is divided into relevant subject groups like medical records, release of information theory, Privacy Provisions and terms, HIPAA standards, benefits, and practical application.
The certificate attempts to measure:
General medical records knowledge
Aptitude regarding situations that involve patient privacy
Understanding of all aspects of release of medical information
Understanding of terms related to HIPAA eligibility
Candidates must have fulfilled one of the following AND must be employed by a member or client of the Association of Health Information Outsourcing Services (AHIOS):
Healthcare information credentialed (RHIT, RHIA or CCS)
Worked previously in release of information (ROI) for at least 6 months
Attended post-secondary education in HIM but is not certified as an RHIT
WHY CERTIFICATION IS IMPORTANT
Remaining compliant is crucial in healthcare. When a PHI breach occurs, it compromises very personal data of affected individuals that could involve a leak in everything from medical information to Social Security numbers. Typically, negligent unauthorized access, use, or disclosure of individually identifiable health information is the cause for such violations. Even more stressful, breaches affecting 500 or more people get posted on the notorious Office for Civil Rights (OCR) “Wall of Shame”.
Healthcare is one of the most highly targeted industries for cyberattacks, with hospitals representing the victims of 30% of large data breaches.
Nearly 50 million Americans had their PHI breached in 2021, a threefold increase in three years.
In 2021, the share of residents whose protected health information was exposed in a data breach was 10% or higher in 22 states.
The number of reported healthcare breaches in 2021 increased by 19%. There were 905 reported in 2021 compared to 758 in 2020.
Unauthorized access/disclosure accounts for 34% of violations every year, up 162% over the past three years.
Clinical practices are constantly managing patient visits, staff training, resource management, and various administrative tasks. Ensuring that team members are fully educated and prepared to handle PHI with 100% compliance is a daunting task to tackle alone. Often, HIM Directors and Administrators confirm the frustration, challenges, and fear surrounding low-level internal knowledge of how to handle day-to-day PHI disclosure.
Compliance is a driving force behind our team’s dedication to accuracy and effective use of technology. Our goal is to give our clients confidence in our commitment to handling PHI with the utmost care and respect. 100% of HealthMark’s staff are Certified Release of Information Specialists, and our medical records platform is fully secure. If you have any questions related to our processes or how we manage PHI, please contact us at email@example.com.