Skip to main content

How to Manage OCR, HHS HIPAA and HITECH Audit


Overview
Among other things, the HITECH Act significantly strengthened HIPAA enforcement activities. In addition to increasing penalties, allowing enforcement by state attorneys general, requiring notices of breaches, and making business associates directly subject to penalties, the HITECH Act mandated that Office for Civil Rights of HHS conduct HIPAA audits. This one-hour webinar will focus on preparation required by healthcare organizations to successfully manage an OCR/HHS audit by regulators.
Why should you attend this webinar?
Section 13411 of the Health Information Technology for Economic and Clinical Health (HITECH) Act, requires Health and Human Services (HHS) to conduct periodic audits of providers and business associates to ensure their compliance with the HIPAA Security and Privacy Rule, and breach notification standards. To implement this mandate, the Office of Civil Rights (OCR) has conducted HIPAA/HITECH audit program with KPMG of 115 health care organizations to assess privacy and security compliance. This webinar will focus on the implementation and tracking of HIPAA audit best practices in a healthcare setup in order to prepare for the federal audit using published OCR audit protocols.
Every audit begins with interviews, a questionnaire, and a thorough policy and procedures review. Presenter, with his decades of knowledge in the compliance, legal, auditing and security areas, will walk the attendees through the audit process, documentation requirements, and implementation specifications of the HIPAA privacy, security and breach rules. This presentation not only provides opportunity for the participants to prepare for the federal HIPAA audit but also to improve the security posture of their organizations by adopting to changing technology (mobile, social media, Health Information Exchange(HIE), cloud services, etc.) and threat landscape perspective as well. This presentation will uncover reasons why many health information breaches are occurring and help organizations better secure and comply with electronic protected health information by meeting the required and addressable HIPAA/HITECH security rules.

The presenter will also share the best practices used for HIPAA security implementation and continuous risk assessment which is considered as "due diligence" by auditors for the HIPAA security compliance program.
Areas Covered in the Session:
  • Healthcare Technology Adoption/Trends
  • Healthcare Regulatory (HIPAA/HITECH) and OCR/HHS Audit Overview
  • Differences between HIPAA and HITECH Regulations
  • Confidentiality, Integrity and Availability (CIA) & ePHI Data Elements
  • HIPAA/HITECH Security, Privacy and Breach Requirements
  • OCR Audit Protocol
  • Patient Data Privacy, Security and Breach Procedures
  • Step-by-step guide preparation techniques
  • Sample policies
  • Risk Assessment questionnaire for protecting electronic health information
  • Checklist
Who can Benefit:
  • Compliance Director
  • CEO
  • CFO
  • Privacy Officer
  • Security Officer
  • Information Systems Manager
  • HIPAA Officer
  • Chief Information Officer

Comments

Popular posts from this blog

Strategies for Becoming a Business Partner to Your Healthcare Leaders.Compliance Key INC -

Compliance Key INC  -  Healthcare Training Online                                                    Jay Anstine Mr. Anstine's professional background includes working on the provider and the payer side of the market, for large for-profit and non-profit health systems, and small physician-owned entities. In tackling the countless regulatory and operational issues for these diverse organization types, he has developed a deep understanding of the business of healthcare and the regulations that govern the industry.  Webinar Id:  LSHCSJA022  10:00 AM PT | 01:00 PM ET  12/13/2017  Duration 60 mins  Overview All too often compliance is seen as an obstacle or otherwise viewed negatively by healthcare leaders. This presentation will discuss strategies and insights to help the compliance of...

HIPAA Changes 2018: How to Comply

Compliance Key INC  -  HIPAA Compliance Training Seminar                                                 Brian L Tuttle Brian Tuttle is Keynote Speaker at Compliance key Inc . He is Certified Professional in Health IT (CPHIT), Certified HIPAA Professional (CHP), Certified Business Resilience Auditor (CBRA) with over 17 years experience in Health IT and Compliance Consulting. Mr. Tuttle has worked all of those 15 years with MAG Mutual Healthcare Solutions and is now Senior Compliance Consultant and IT Manager with InGauge Healthcare Solutions (previously named MAG Mutual Healthcare Solutions).  Seminar Id:  IJ2018S2  06:00 AM PT | 09:00 AM ET  02/16/2018  Duration 1 Day Overview This lesson will be addressing how practice/business managers (or compliance offers) need to get their HIPAA house in ...

Motivation Innovation: The Latest on Carrots vs. Sticks

C ompliance Key INC  -  Life science webinars                                               Don R. Powell Don R. Powell is Keynote Speaker at Compliance key Inc.He is the President and CEO of the URAC Accredited American Institute for Preventive Medicine located in Farmington Hills, Michigan. For 33 years the Institute has been a leading developer and provider of health and productivity management programs.   Webinar Id:  LSHCDT001  10:00 AM PT | 1:00 PM ET  12/14/2017  Duration 60min mins  Overview It is one thing to know how to alter one’s behavior, but it is an entirely different matter to be motivated to do so. It is felt that employee motivation is the key factor in determining the success or failure of worksite wellness programs and their ability to reduce health care costs and increase...