Illinois Administrative Code
Title 77 - PUBLIC HEALTH
Part 2060 - ALCOHOLISM AND SUBSTANCE ABUSE TREATMENT AND INTERVENTION LICENSES
Subpart C - REQUIREMENTS - ALL LICENSES
Section 2060.325 - Patient/Client Records
Current through Register Vol. 48, No. 12, March 22, 2024
a) Licensees shall maintain a written record for each patient or client. Such record may also be maintained electronically on a computer but shall be made available in hard copy upon request for review by the Department.
b) Any written entry on the record shall be in ink and shall be dated and shall meet all other signatory requirements for professional staff as specified in Sections 2060.421 and 2060.423 of this Part.
c) Written signatures or initials and electronic signature or computer-generated signature codes and corresponding dates are acceptable as authentication to identify the author of the record entry by that author and to confirm that the contents are what the author intended. Signature or initial stamps shall not be utilized.
d) All signatures or initials, whether written, electronic, or computer-generated, shall include the initials of the signer's credentials.
e) In order to utilize electronic signature or computer-generated signature codes and dates, the organization shall adopt a policy that permits use and authentication by electronic or computer-generated signature and dates and shall, at a minimum:
f) Records maintained on computer shall have a back-up system to safeguard the records in the event of operator or equipment failure.
g) Any document or entry made on a document in the record that is in any other language than English shall have an accompanying English language translation.
h) All records shall be protected in a locked room, locked file, safe or similar container or in computer records with secure, limited access.
i) The record shall document any service provided by the organization at any facility. Additionally, if the organization provides multiple services that are licensed by the Department at any facility, one record can document all of such services.
j) The record shall contain the signatory document that indicates the patient/client has been informed of his or her rights.
k) The record shall contain documentation indicating the consent of the patient, and any other family members or guardians, for any service.
l) The record shall contain, on a standardized format, the following information:
m) The record shall contain dates of any admission, change in level of care or discharge.
n) The record shall contain a dated service fee statement and proof, if applicable, of any qualifying documents relative to fee subsidization, including the "Qualification for DUI Services as an Indigent" form, unless this information is kept in a separate financial record.
o) The record shall be kept for a period of five years from the date of discharge, except that required accounting of disclosures of HIPAA protected health information must be kept for six years. While organizations may elect to keep records past this five year period, if the option to delete records is exercised, it shall be done by one of the following methods:
p) The record shall contain the following information or documents for any treatment service:
q) The record shall contain copies of all referenced forms in Subpart E for any offender receiving a DUI evaluation or risk education service.
r) A staff member shall be designated who will have responsibility to ensure that all records are in compliance with this Part. This staff member shall review, at least annually, the record system to ensure that the system meets all requirements specified in this Part.
s) Records shall be kept in the facility where the patient/client is receiving services (or in accordance with Section 2060.203(b) of this Part, in specific relation to off-site services) and shall be directly accessible to the professional staff providing those services.
t) Information in the record may be used for training, research and quality improvement provided that the information is collected in accordance with any relevant confidentiality requirements.
u) Licensees who are covered by HIPAA shall have procedures to comply with HIPAA Privacy and Security provisions ( 45 CFR 160 and 164 ), including the following: