3. (LONG)Users + HIPAA Violation = Headache

(LONG)Users + HIPAA Violation = Headache

Howdy boys and girls. It's been a while and I've changed jobs, yet again. Now working for a labor union's medical centers (hospital-esque type sites.) Just had a doozie of a call from a typical user.

One of my sites has just opened a new area which has some really cool medical tech, fingerprint readers to sign in to Windows for dual authentication and to allow the doctors to e-sign prescriptions, RFID badges to track the locations of anyone/thing wearing one, etc.

The problem is, the person that was chosen to lead this new area is, shall we say, challenged, and, apparently doesn't understand HIPAA. I present to you, my last call.

Me: "Helpdesk, this is YankeeNinja, how can I help you?"

User: "Ohhhhh, hiiiiiii, YankeeNinja! It's user from the Pod."

cue facedesk

Me: "Hi, user, what's the issue?"

User: "Welllllll, the doctor is in Room 1, and the mouse isn't working and neither is the fingerprint reader."

Me: "Ok, can you go in the room and turn the mouse off and on and let me know if that works?"

User: "Ummmmm, wellllll, I can't. The doctor has a patient in the room. Can you just send someone up?"

cue facedesk x2

Me: "Well, let me ask you a question then. If YOU can't go in the room because the doc has a patient, how can I? It's a HIPAA violation."

User: "But, you're IT, HIPAA doesn't apply to you."

Me: "Actually, it does. If you, a patient services rep would be committing a HIPAA violation by going into the room while the doctor has a patient, then how are the rules different for an IT rep?"

User: "Ohhhhh. Let me go in the room then."

O.o

As the user is going in the room, I remote into the machine specified and see someone using the fingerprint reader to authenticate into Windows, and moving the mouse around!

Me: "Ummm, user, I just connected to the machine remotely and saw another person using the fingerprint reader and is moving the mouse."

User: "Ohhhh, it's not the mouse, it's the keyboard."

Me: "But, you just said it was the mouse."

User: "I meant the keyboard."

Me: "Ok, well, I see whomever is logged in there now is able to type, use the mouse, and was successful in using the fingerprint reader."

User: "Waittttt...which computer are you watching?"

Me: "The one you told me the doctor was having an issue with."

User: "Ohhhh, noooo, I gave you the wrong machine name. The one the doctor is having a problem with doesn't have a label on it"

(Important note, all machines in this area have BIG labels with the hostname on it and all desktops have their hostname and IP imprinted on to the background via BGInfo)

Cut to me looking at the DHCP records to find what IP the "Right" machine is pulling and trying to remote in to no avail.

Me: "Well, I just tried remotely connecting to the machine having the issue, but I wasn't able to. I'm going to ask one of my colleagues to come up and take a look, but we have to remain HIPAA compliant."

User: "Can't you just come up and go into the room while the doctor is in there?"

Me: "As long as he doesn't have a patient."

User: "Ohhhhhhhh. Ok. Ok, but what if he does?"

scene

TL;DR - TIL that IT intervention during a doctor patient conversation is NOT a HIPAA violation, but a lazy user getting up and doing the exact same thing IS a HIPAA violation.

/r/talesfromtechsupport Thread Parent
Previous
Next

Recently removed from /r/talesfromtechsupport

Why does it search near ‘corporate office location’ everytime i search for places near me? "Hey boss, my arm is soaked in cat pee and there's a snake stuck to my pants...." Sometimes you have to think for the users How TFTS saved the day That time I helped automate 20 people out of a job Experience vs Degrees part 2. Power struggle. We don't cover acts of Nature, well that is ridiculous. "What do you meaaaan I need an ID?!" Can you program my keyboard? The D.I. box problem I made her cry. Windows is taking space.. No time for remote support Why is the toner so hot?! Best boss ever

More Random Comments

CURIOUS... AI coders and being replaced by one The Swiderian Human Hybrids: Watchers, Giants, and the True Founders of Civilization (claimed) I feel trapped and need to get divorced but women can’t initiate one Part 4 of stories of my Kevin brother in-law Russia has lost at least quarter of Ka-52 attack helicopters Any suttas on money, investing and wealth? Ethnicity Insight - Might be helpful to some Hypothetical Format Change: "Cost Lock" Using Bits and pieces found on podcasts I fully believe that Brandon Cooks is going to be a Raven by the Trade Deadline. Cage match: SEC vs. Supreme Court conservatives (M)Tennessee Ladies, have you ever slid your panties off and given them to someone? Perceptions of the Astros RU pov.A Ukrainian lieutenant colonel, who was taken prisoner, spoke about crimes committed by Ukrainian soldiers against civilians.(English Subtitles) Damn Blizzard. Each Legendary Skin is the price of a whole game. (Overwatch 2)