You may know HIPAA regulations apply to a wide variety of healthcare entities and their business associates and that non-compliance carries serious penalties. But did you know the rules are being applied to more and more entities, and audits and enforcement are taking place more and more frequently with penalties reaching into the millions of dollars? That’s why it is more important than ever for you to take a serious look at your HIPAA compliance. Make sure you’re in compliance before the auditors arrive or before any complaints are filed.
HIPAA compliance requires a large number of policies and procedures to be in place. Also, it requires the training and documentation to show that compliance is in place and that your staff is aware of its obligations under the rules. Patients have very clear rights, and healthcare entities have very clear obligations when it comes to the privacy of health information. You must observe all the HIPAA rights of access, amendment, accounting, and more. Beyond the privacy protections, entities must take the measures necessary to protect information — electronic information in particular. The security rule has very specific safeguards that you must consider under a framework of risk analysis you should use to identify and prioritize the mitigation of information security risks. If the privacy or security of patient information is violated, it may be necessary to act under the breach notification rule. You will find significant and costly obligations under breach notification, and preventing breaches is a key tactic to keeping compliance costs down.
Along with the rules, you will find newly expanded enforcement and auditing of the rules, including newly expanded violation types and increased penalties for violations, as well as the new HIPAA random audit program. That’s why it’s vital you make sure your office is in compliance. Be sure you are prepared to keep your compliance costs to a minimum.
Expert presenter Jim Sheldon-Dean will reference the HIPAA regulations and the laws that underlie them. He will explain the various rights of individuals and obligations of HIPAA covered entities and their business associates. Also, he’ll go through the individual rights of access to health information, requests for amendment, accountings of disclosures, and special access and protections, as well as entities’ obligations to use information only as allowed within the regulations. He will describe notices of privacy practices and the adoption of privacy policies and procedures, and training on them. You’ll learn about the necessity of authorizations for many disclosures and the special considerations of marketing and fundraising.
Find out about the HIPAA security safeguards. Go in-depth with an information security management process that is essential to providing good security and preventing breaches. Also, learn more about:
Policy implementation and training must be a part of any compliance plan, and you’ll find out how to implement training so that your staff can apply privacy and security principles when they encounter new situations or new technologies.
The enforcement rules for HIPAA will be presented, as well as a discussion of the various penalty levels and fines, and some recent enforcement actions. And the HIPAA Audit Protocol will be explored as a tool for compliance preparation and documentation.
This session will help you:
Who should attend? Compliance Manager, HIPAA Officer, Chief Information Officer, Health Information Manager, Medical Office Manager, Medical Practice Lawyer, CFO, CEO, COO. Privacy Officer, Information Security Officer.
Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...
More Events By The Speaker