RE: Certification

[Heiert, David]

Well, and further..  Is there any "standard" that defines how long testing/certification data must be stored? I mean from the software vendor end..  After they are done testing and say they are ready..   Kepa, any ideas? -----Original Message----- From: Barton, Joe [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 17, 2002 4:08 PM To: '[EMAIL PROTECTED]' Subject: RE: Certification Rachel, Do we need to store outgoing transactions? Joe   -----Original Message----- From: Rachel Foerster [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 17, 2002 9:41 AM To: [EMAIL PROTECTED] Subject: RE: Certification However,   The application system (a claims processing system, for example) must be able to capture, store and make available all of the data required in any given HIPAA transaction. Another piece of software, whether an EDI management system, or a clearinghouse or billing service cannot conjure up data that the application system doesn't serve up.   So, first the data....then the format. Formatting without the required data is just junk.   Rachel   Rachel Foerster Principal Rachel Foerster & Associates, Ltd. Professionals in EDI & Electronic Commerce 39432 North Avenue Beach Park, IL 60099 Phone: 847-872-8070 Fax: 847-872-6860 http://www.rfa-edi.com -----Original Message----- From: Owens, Kris [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 17, 2002 8:46 AM To: '[EMAIL PROTECTED]' Subject: RE: Certification Let me spin it one more way.  When we talk about certification we are talking about the transactions we produce, using multiple pieces of software, our applications systems to extract data and our translator to format the data.  I don't see this as certifying either of those pieces of software, but rather as you refer to in your message, certifying the ability to create a transaction that complies with the HIPAA standard.  Our software cannot produce standard transactions, and our vendor has no plans of modifying their software to do so.  They are not a covered entity and they believe that it becomes the CE's responsibility to produce the transaction - not the vendor's software which is sold as a claims processing system, not a HIPAA standard transaction producing system.   Kris Owens 923-8108 "You don't know what you can get away with until you try"  General Colin Powell   -----Original Message----- From: Rachel Foerster [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 9:19 PM To: [EMAIL PROTECTED] Subject: RE: Certification My opinion is that it's the software that's certified, not the corporate entity. The software must create/process complying transactions so the software must be certified.   In other industries and other areas of electronic commerce, many of the standards development organizations also create what's called "conformance" requirements that developers can use to validate that the software they develop does indeed "conform" to the standard specification.   This is what HIPAA certification does.   But, there's another aspect to this. That is, that software is not "HIPAA" compliant....it's only a tool that enables the user to process transactions that comply with the specifications. But, my viewpoint is that software can be certified as having the ability to process transactions that comply with the guides, but the user can mis-use or misunderstand how to configure a software and thus actually create non-compliant transactions.   So, software can be certified, but it's the covered entity that complies with the law and the regulations.   Rachel Rachel Foerster Principal Rachel Foerster & Associates, Ltd. Professionals in EDI & Electronic Commerce 39432 North Avenue Beach Park, IL 60099 Phone: 847-872-8070 Fax: 847-872-6860 http://www.rfa-edi.com -----Original Message----- From: Natasha Farvan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 5:01 PM To: [EMAIL PROTECTED] Subject: Certification I'm in the process of creating a TCI software vendor readiness questionnaire and one of my questions is if they are certified. But then it occurred to me does the certification apply to the entity or the application?   Your input is appreciated.   Natasha Farvan Sr. I.S. Project Leader HIPAA Transactions & Code Sets Project Manager Information Technology Group Oregon Health & Sciences University 1500 SW First Ave Ste 100B Portland, OR  97201 Mailcode: Crown Tel (503) 494-0561 Fax (503) 494-4626 ********************************************************************** To be removed from this list, send a message to: [EMAIL PROTECTED] Please note that it may take up to 72 hours to process your request. ====================================================== The WEDI SNIP listserv to which you are subscribed is not moderated. The discussions on this listserv therefore represent the views of the individual participants, and do not necessarily represent the views of the WEDI Board of Directors nor WEDI SNIP. If you wish to receive an official opinion, post your question to the WEDI SNIP Issues Database at http://snip.wedi.org/tracking/. Posting of advertisements or other commercial use of this listserv is specifically prohibited.