HIPAA Audits and Enforcement - Top New Takeaways for 2019

Overview:

The Phase 2 HIPAA Compliance Audit, increasing breaches of unsecured protected health information and rampant medical identity theft reveal a national crisis in HIPAA compliance.

The Office for Civil Rights (OCR), the HIPAA enforcement arm of the U. S. Department of Health and Human Services (HHS), is ramping up enforcement. And a basic HIPAA requirement, Risk Analysis - Risk Management, is the key to protecting your business, whether you are a covered entity or a business associate. 

Why should you Attend: The Office for Civil Rights (OCR), the HIPAA enforcement arm of the U. S. Department of Health and Human Services (HHS) continues to monitor compliance with HIPAA in 2019.

Audit results from the Phase 2 Covered Entity HIPAA Compliance Audits showed that 87% failed the Risk Analysis Audit and 94% failed the Risk Management Audit! Follow up investigations are underway, and penalties have not been announced yet. 

HIPAA enforcement, driven by Congressional and public demand is increasing dramatically. HIPAA Risk Analysis - Risk Management is OCR's highest compliance priority and is required of all Covered Entities and Business Associates. And it should be the foundation of every health care organization's HIPAA compliance program. 

The HIPAA Rules do not explain how to do Risk Analysis - Risk Management and government guidance is confused, confusing and of no practical help. Attend this session to review, step-by-step, how you can comply calmly and confidently with this fundamental HIPAA requirement. 

The Audits also revealed noncompliance with other basic HIPAA requirements of the Privacy Rule concerning the Individual's Right of Access to medical records, the Notice of Privacy Practices, and Breach Notification. Common misunderstandings about these requirements and how to comply with each of them will be explained.