Skip to main content

What Does the Term "Reasonable and Appropriate" Mean under HIPAA? And How Do You Achieve It?

Compliance Key INC - HIPAA webinar
Jonathan P. Tomes , J.D., is Keynote Speaker at Compliance key Inc. He is a health care attorney practicing in the greater Kansas City. He is a nationally recognized authority and expert witness on the legal requirements for health information. 

  Webinar Id:  HIPJPTW006 
 12:30 PM PT | 3:30 PM ET 
 03/20/2018
 Duration: 60 mins 
Overview
The HIPAA Security Rule requires covered entities and business associates to implement "reasonable and appropriate" security measures to protect against improper access, use, or disclosure of Protected Health Information ("PHI"). The Rule, however, gives very little guidance as to what constitutes reasonable and appropriate security measures. This is probably a good thing because what is reasonable and appropriate for a small town dental practice will likely be wildly different from a celebrity mental health facility in Beverly Hills. The lack of guidance, however, makes compliance difficult because how does one know whether DHHS will agree that their security measure is reasonable and appropriate if you are audited or investigated. And if you are sued, will the plaintiff 's expert be able to testify that your security measures did not meet that standard and, hence, you were negligent and are liable for the potentially huge damages of a major breach.
Why should you attend this webinar?
If you are audited, investigated, or sued and found not to have reasonable and appropriate security measures, you could face civil money penalties, supervised Corrective Action Plans, bad publicity with concomitant loss of patients, lawsuit damage awards, and significant remediation costs.

Civil money penalties to date range from $50,000 to two in the $4 million range. A number of these have resulted from deficient security measures, such as a missing firewall, lack of adequate security to prevent unauthorized access, and the like.

Nor are these penalties reserved for large practices. Fines have been assessed against two-physician practices and a small hospice in North Dakota. Being not-for-profit provides no immunity, nor does being a government entity. Alaska Medicaid was fined $1.5 million;and a county government (Skagit County in Washington State), $215,000.
Areas Covered in the Session:
  • Overview of HIPAA and the Security Rule.
  • The Requirement for Reasonable and Appropriate Security Measures.
  • DHHS Guidance on What is Reasonable and Appropriate.
  • Other Guidance on What is Reasonable and Appropriate.
    • California Attorney General Guidance.
    • NIST Guidance.
    • Other Guidance?
  • How to Determine Whether Your Security Measures are Reasonable and Appropriate.
    • Risk Analysis.
    • Required and Addressable Security Measures.
    • Penetration Testing.
    • Requirement for Evaluation-Follow-up Testing.
    • Key Security Measures DHHS Focuses On.
    • Documentation.
  • Conclusion and Question and Answer.
Who can Benefit:
Health Professionals and their staffs, Privacy and Security Officers, Medical Records Professionals, IT Professionals, Office Managers, Risk Managers, Business Associates of Covered Entities (those that provide a service for the Covered Entity involving the use of individually identifiable health information (transcription services, billing services, cloud storage companies, and the like), Healthcare Attorneys, Compliance Officers, HIPAA consultants.
Visit:https://www.compliancekey.us/webinarDetails?industryId=3&webinarid=890&speakerid=124

Compliance Key INC
717-208-8666
https://www.compliancekey.us/life-science-and-healthcare

Labels:
Location: United States

Comments

Post a Comment

Popular posts from this blog

New 2019 HIPAA Guidance on De-Identifying Protected Health Information

Compliance Key  -   HIPAA Compliance Training Overview This seminar will be addressing how practice/business managers or compliance officers need to get their HIPAA house in order, as HIPAA is now fully enforced and the government is not using kid gloves anymore. It will also address major 2019 changes taking place with the Health and Human Services regarding the enforcement of the HIPAA law as well as detailed discussions on the Phase 2 audit process and current events regarding HIPAA cases (both in courtrooms and from real-life Audits). Our instructor - Mr. Brian Tuttle  has over 20 years of experience in working as Compliance auditor and has been an expert witness on multiple HIPAA cases. He`ll thoroughly explain on HOW and in WHAT scenarios patients can claim for cash remedies. More importantly, Brian will show you how to limit those risks by simply taking proactive steps and utilizing best practices. Why should you attend this seminar? This Seminar will go over s
Post a Comment
Read more

SOX Compliance: Accounts Receivable Risks and Controls

Overview The accounts receivable process includes the sub-cycles of acquiring and accepting customer orders; writing sales contracts; granting customer credit; shipping or otherwise delivering products or services; billing and recording sales and lease transactions; maintaining and monitoring accounts receivable; instituting effective collection procedures; recording and controlling cash receipts; establishing pricing and promotional activities; and properly valuing receivable balances. In management's selection of procedures and techniques of control, the degree of control implemented is a matter of reasonable business judgment. The common guideline used in determining the degree of internal controls implementation is that the cost of a control should not exceed the benefit derived. The Order to Cash Process (O2C) Process is comprised of several sub-processes that must have a foundation of internal controls for SOX 404 certification process. This webinar wil
Post a Comment
Read more

How to Return Manufacturing to America Using Total Cost of Ownership Analysis?

How to Return Manufacturing to America Using Total Cost of Ownership Analysis? Michele Nash-Hoff Michele is founder and president of ElectroFab Sales, a sales agency specializing in helping manufacturers select the right processes for their products since 1985. She is currently a director on the board of the and the San Diego Inventors Forum and is also Chair of the California chapter of the Coalition for a Prosperous America. Michele is the author of Rebuild Manufacturing - the key to American Prosperity and Can American Manufacturing Be Saved? Why We Should and How We Can available at www.amazon.com. She has written regular articles for IndustryWeek?s e newsline, as well as many other e........ Read More Overview Moving manufacturing offshore led to the loss of 5.8 million manufacturing jobs and the loss of 60,000 companies and since the year 2000. What was the impact on the American economy? Is manufacturing returning to America? In this webinar, expert
Post a Comment
Read more