Skip to main content

OCR HIPAA Audit Results & Lessons - A Compliance Wake-up Call


Overview
The results of the HHS/OCR Phase 2 HIPAA Compliance Audits found a widespread, totally unnecessary crisis in HIPAA compliance. The audit covered only 7 of the 180 HIPAA Audit topics (protocols). All audit inquiries and required supporting documentation were published well in advance of the audit. Covered Entities knew they among a carefully chosen small representative group from which auditees would be selected and had completed OCR pre-audit informational questionnaires. Two of the 7 audit topics, Risk Analysis and Risk Management are fundamental to HIPAA compliance. Nevertheless, 94% of Covered Entities and 88% of Business Associates failed the Risk Management audit and 86% of Covered Entities and 80% of Business Associates failed the Risk Analysis audit. More than half of the Covered Entities failed 3 of the other audit topics. Business Associates were audited on only three topics; the third was Breach Notification to Covered Entities. 67% of the small group of Business Associates failed that audit.
Why should you attend this webinar?
These audit results, the increasing number of privacy complaints to OCR, breaches of unsecured Protected health information and rampant medical identity theft signal a national crisis. But the HIPAA Rules are easy to follow, step-by-step when you know the steps -- and they are a blueprint to protect Covered Entities, Business Associates and patients.
Attend this webinar to see the shocking HIPAA audit results presented graphically and the step-by-step procedures to comply fully with the HIPAA Rules.
Areas Covered in the Session:
This webinar for HIPAA Covered Entities and Business Associates will cover:
  1. The results of the OCR Phase 2 HIPAA Compliance Audits.
  2. The simple steps to comply with HIPAA and pass each audit topic. 
  3. A discussion of likely reasons why audit performance was unacceptably bad. 
  4. The process that enables you to comply with the HIPAA Rules step-by-step.
Who can Benefit:
Target Audience:
  • Health Care Providers - Hospitals, Multi-Specialty Medical Groups, Dentists, Optometrists, Chiropractors, Physical Therapists, Long Term Care Facilities, Podiatrists.
  • Health Plans including Employer Sponsored Health Plans.
  • Third Party Administrators.
  • All Business Associates of Health Care Providers and Health Plans
Target Job Titles:
  • C-Suite Executives
  • HIPAA Compliance Official
  • HIPAA Privacy Officer
  • HIPAA Security Officer
  • Information Technology Supervisor
  • Practice Manager
  • Risk Manager
  • Dentist
  • Optometrist
  • Chiropractor
  • Physical Therapist
  • Podiatrist

Labels:
Location: United States

Comments

Post a Comment

Popular posts from this blog

New 2019 HIPAA Guidance on De-Identifying Protected Health Information

Compliance Key  -   HIPAA Compliance Training Overview This seminar will be addressing how practice/business managers or compliance officers need to get their HIPAA house in order, as HIPAA is now fully enforced and the government is not using kid gloves anymore. It will also address major 2019 changes taking place with the Health and Human Services regarding the enforcement of the HIPAA law as well as detailed discussions on the Phase 2 audit process and current events regarding HIPAA cases (both in courtrooms and from real-life Audits). Our instructor - Mr. Brian Tuttle  has over 20 years of experience in working as Compliance auditor and has been an expert witness on multiple HIPAA cases. He`ll thoroughly explain on HOW and in WHAT scenarios patients can claim for cash remedies. More importantly, Brian will show you how to limit those risks by simply taking proactive steps and utilizing best practices. Why should you attend this seminar? This Sem...
Post a Comment
Read more

Classifying Medical Devices in US and EU

Compliance Key INC  -  Healthcare Compliance Webinars Overview The Food and Drug Administration (FDA) has established classifications for approximately 1,700 different generic types of devices and grouped them into 16 medical specialties referred to as panels. Each of these generic types of devices is assigned to one of three regulatory classes based on the level of control necessary to assure the safety and effectiveness of the device.The determination process, how you apply the classification process to your device, is complex and requires several levels of analysis to make the proper device classification. Proper medical device classification is the fundamental first step in submitting your device for approval anywhere in the world. This webinar will detail the medical device classification process for the United States through the FDA and will overview the very complex process for medical device classification within the EU. Specifically, this webinar will provid...
Post a Comment
Read more

HIPAA Compliance with the New Omnibus Rule: How to Pass an Audit to Avoid Penalties and Criminal Convictions

Compliance Key INC  -  H ipaa webinar                                           Jonathan P. Tomes Jonathan P. Tomes , J.D., is Keynote Speaker at Compliance key Inc. He is a health care attorney practicing in the greater Kansas City.   Webinar Id:   HIPHJPT001  2:30 PM PT | 03:30 PM ET    01/18/2018  Duration: 60 mins  Overview Before the HITECH Act, DHHS could audit covered entities for HIPAA compliance, but did not have to. With that Act, now the must audit those entities and business associates as well. In the first audits, the Phase I audits, DHHS came on site. The subsequent Phase II audits, however, were paper audits in which those audited had to provide documentation of their compliance. As yet, we do not know what form Phase III will take, but the necessary actions to prepar...
Post a Comment
Read more