Compliance

Compliance

HIPAA Compliance

BCC’s workforce undergoes comprehensive training on policies and procedures developed for HIPAA compliance. Before any trainee is allowed on the collection floor, they must pass an individual HIPAA test. Trainees are not permitted to contact any patients until they have successfully completed the training program. Regular updates and annual re-testing on HIPAA are mandatory for all collection personnel. The training materials include both general and customized HIPAA modules, covering a wide range of topics:

•  Privacy Standard
•  Security Standard
•  Administrative Safeguards
•  Physical Safeguards
•  Technical Safeguards
•  Electronic Transaction Standard

After each module, employees must pass a test to demonstrate their understanding before being released to the floor. Written training manuals are provided for reference after the initial training.

Once an employee successfully completes the training, they are assigned an active work queue. Their performance is monitored daily by their immediate supervisor. Additionally, a comprehensive audit is conducted 30 days after assignment, with findings documented and discussed to reinforce positive work ethics and identify areas needing improvement. Based on audit results, an action plan with a 60-day goal is established.

The Red Flag Rule

Also known as the Identity Theft Act, the Red Flag Rule is fully implemented at BCC. We have established policies and procedures to handle any type of red flag alert, which are immediately brought to the attention of our privacy officer for resolution.

FDCPA Compliance

Before any trainee is allowed on the collection floor, they must pass an individual FDCPA test. Trainees are not permitted to contact any patients until they have successfully completed the training program. Regular updates and annual re-testing on the FDCPA are mandatory for all collection personnel.