3-Hour Virtual Seminar - Reporting HIPAA Breaches: Protection and Prevention

Overview: Everyone in the healthcare industry knows about HIPAA (the Health Insurance Overview: Everyone in the healthcare industry knows about HIPAA (the Health Insurance 
Portability and Accountability Act), that has been in effect since 1996. The goal of the 
legislation was fairly simple - to safeguard our patient health information.
The law dictated to entities how to protect health information (PHI), how it can be shared, when 
it can be shared, and with whom it can be shared.
To date, even the best of healthcare organizations struggle with feeling confident that they have 
all the required areas covered to protect and prevent HIPAA violations from occurring in their 
organization. It is well documented that by initiating proper training and implementing effective 
monitoring tools, HIPAA violations can be reduced or more readily identified in the workplace. 
Often there is not clear communication to employees about "what constitutes a HIPAA breach" and 
how can this be reported in your organization without "fear of retaliation." 
According to a 2014 writing in HealthWorks Collective, a full 50% of persons polled rated 
training and educating staff as their biggest hurdle to HIPAA compliance. In most cases, the 
complaints surround a lack of qualified staff to perform the training, or a general lack of time 
in which the training can be completed. 
The biggest challenges organizations face coast-to-coast are:
A lack of effective rainingLittle or no monitoring tools or follow-upIssues with technology support
Remember, in cases of noncompliance where the covered entity does not satisfactorily resolve the 
matter, Office of Civil Rights (OCR) may decide to impose civil money penalties (CMPs) on the 
covered entity. CMPs for HIPAA violations are determined based on a tiered civil penalty 
structure. This can be very costly to organizations as well as damaging to the business 
reputation if effective safeguards are not put in place.
In this three (3) hour webinar conference you will take away valuable information that will 
assist you in "creating and maintaining a "culture of compliance" that will train and support 
your employees in respecting their patient privacy information. 
Why should you Attend: A breach is, generally, an impermissible use or disclosure under the 
Privacy Rule that compromises the security or privacy of the protected health information. 
According to HHS.gov, failure to comply with HIPAA can also result in civil and criminal 
penalties. If a complaint describes an action that could be a violation of the criminal provision 
of HIPAA, Office of Civil Rights (OCR) may refer the complaint to the Department of Justice (DOJ) 
for investigation. 
Administrative Simplification Regulations, face a fine of up to $50,000, as well as imprisonment 
up to 1 year. Offenses committed under false pretenses allow penalties to be increased to a 
$100,000 fine, with up to 5 years in prison. 
Areas Covered in the Session:Definition of "breach"Is your HIPAA breach reportable?The three exceptions to the definition of "breach"Who can be held liableUnsecured Protected Health Information and GuidanceBreech notification requirements by covered entitiesBreach notification by business associateFour different categories and penaltiesThe tiers for Criminal HIPAA penaltiesHIPAA violations and exclusions from MedicareReview of HIPAA breach casesHow to report a HIPAA violationSolutions for Safeguarding your HIPAA - "going forward"