JOIN US FOR A COMPLIMENTARY WEBINAR SPONSORED BY WEDI

JOIN US FOR A COMPLIMENTARY WEBINAR SPONSORED BY WEDI

OCR’s Privacy, Security, and Breach Notification Compliance Audits Are Underway: Is Your Organization Prepared?

Wednesday, May 4th, 2016 2 PM - 3 PM US/Eastern

Recent Article on Cyber Insurance as Safeguard Incentive Has Implications for Healthcare Industry

April 18, 2016. HIPAA Integrity recommends that you read the excellent April 11, 2016, Business Insurance article by Mark A. Hofmann entitled: “Cyber coverage seen as security incentive.” This article discusses concepts of “cyber insurance in risk management” presented at a recent U.S. House of Representatives Homeland Security Committee.

OCR Issues New Audit Protocols Tailored to Desk Audits, Not Necessarily to Design and Implementation of Policies and Procedures

April 15, 2016. On April 1, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Resources (HHS) published on its Website the long-awaited Audit Protocol-Current, which describes its intent as:

OCR’s Audit Pre-Screening Questionnaire: How Health Plans Must Respond

April 15, 2016. On April 1, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Resources (HHS) published on its Website its Audit Pre-Screening Questionnaire. We covered in an earlier post OCR’s initial outreach to covered entities to acquire and verify contact information. Then, OCR explains: “Once entity contact information is obtained, a questionnaire designed to gather data about the size, type, and operations of potential auditees will be sent to covered entities and business associates. [These] data will be used with other information to develop pools of potential auditees for the purpose of making audit subject selections.

Recent Article on Addressing Cyber Insurance Gaps as Both a ‘Risk Management and Brand Management Issue’

April 8, 2016. HIPAA Integrity recommends that you read the excellent April 6, 2016, Health Data Management article by Joseph Goedert entitled: “Cyber insurance gaps may surprise healthcare organizations.” This article is based on an interview with Collin Hite, a security expert with the law firm of Hirschler Fleischer in Richmond, VA.

Recent Article on HIPAA Safeguard Compliance Audits Highlights Need for Tighter Business Associate Agreements

April 7, 2016. HIPAA Integrity recommends that you read the March 28, 2016, Modern Healthcare article by Joseph Conn entitled: “HHS amps up vendor HIPAA audits,” which focuses on the role of business associates handling covered entity protected health information (PHI). The article notes that since the Office for Civil Rights (OCR) started posting breaches of medical records in September 2009, there have been 1,472 breaches posted, affecting just under 33 million individuals.

HIPAA Integrity Announces Launch of Version 3.0 Safeguard Compliance Tool Package for Preparing for OCR’s Desk Audit Program Underway

April 6, 2016. On March 21, 2016, the Office for Civil Rights (OCR) announced that its long-awaited compliance audit program is “currently underway” and “will review the policies and procedures adopted and employed by covered entities and their business associates to meet selected standards and implementation specifications of the Privacy, security, and Breach Notification Rules.” All covered entities and business associates not currently under investigation for a complaint or breach are subject to selection for audit this year.

Potential Financial Risks of Being Unprepared for the OCR HIPAA Compliance Audit Program

April 1, 2016. This week we have highlighted in our blog posts aspects of the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) HIPAA Compliance Audit Program that OCR announced as underway on March 21, 2016. In this post, we want to highlight the potential financial consequences of being found non-compliant as a result of an audit. A measure of these potential financial consequences is drawn from four 2016 settlements with HIPAA safeguard violators as outlined in HHS press announcements:

Categories



Archives

  • October 2017 (1)
  • August 2017 (3)
  • July 2017 (1)
  • June 2017 (7)
  • May 2017 (12)
  • April 2017 (10)
  • March 2017 (2)
  • February 2017 (3)
  • January 2017 (4)
  • December 2016 (4)
  • November 2016 (7)
  • October 2016 (7)
  • September 2016 (2)
  • August 2016 (1)
  • July 2016 (3)
  • June 2016 (1)
  • May 2016 (1)
  • April 2016 (8)
  • March 2016 (6)
  • February 2016 (2)
  • December 2015 (1)
  • November 2015 (1)
  • October 2015 (4)
  • September 2015 (1)
  • June 2015 (8)
  • May 2015 (3)
  • April 2015 (2)
  • March 2015 (1)
  • November 2014 (1)
  • September 2014 (15)
  • August 2014 (6)
  • July 2014 (1)
  • June 2014 (13)
  • May 2014 (11)
  • April 2014 (13)
  • March 2014 (6)
  • February 2014 (12)
  • January 2014 (3)
  • December 2013 (1)