HIPAA enforcement and audits are now a significant reality, and settlements for violations are being announced more frequently. With increases in breach reporting and a new random audit program under way, every HIPAA entity and business associate needs to be taking the proper steps in advance and ensuring your compliance is in order and you have the documentation to prove it.
HIPAA compliance requires that you be prepared to handle protected health information (PHI) properly and follow the requirements in the HIPAA privacy, security and breach notification rules. Compliance problems can result in an enforcement action, including financial settlements that can reach into the millions of dollars, and corrective action plans that can take years to complete and cost many times the expense of the monetary settlements. Knowing what questions are likely to be asked in an audit and what documentation is necessary to show compliance are key to preparing for HIPAA compliance inquiries.
In this session, healthcare compliance expert Jim Sheldon-Dean will discuss the federal government’s HIPAA audit and enforcement programs and how they work, with a special focus on the areas that caused the most issues in prior audits and enforcement actions. Jim will explore what types of entities had the most problems, and he’ll show where entities need to improve their compliance the most. He will also explore the typical risk issues that lead to breaches of health information and see how those issues may become a target for auditors in the next round.
Jim will also discuss the information and documentation that must be prepared in advance so that you can be ready for an audit or enforcement review at any time, including sample information request forms and questions asked at prior audits. The session will cover how to know if you may become the subject of an audit or enforcement action, and what you can do to help limit your exposure. You’ll learn how most enforcement actions come about and what can be done to prevent incidents that lead to enforcement activity, as well as results and penalties of prior HHS audits and enforcement actions, including recent actions that involved multimillion-dollar settlements and fines, and recent changes that increase fines and create new penalty levels, including new penalties for willful neglect of compliance that begin at $10,000. Jim will present a plan for attaining compliance and will outline the steps you need to follow to prepare for an audit and respond to an audit request.
The session will review the contents of the HIPAA Audit Protocol used in the recent years to show what documentation needs to be on hand should your organization be selected for an audit in the new round. It will present the methods for using the contents of the HIPAA Audit Protocol to build your own compliance plan by relating your compliance activities directly to the questions that might be asked. Finally, Jim will discuss the HIPAA audit and enforcement regulations and processes, and how they apply to HIPAA covered entities and business associates.
Who Should Attend
Ask a question at the Q&A session following the live event and get advice unique to your situation, directly from our expert speaker.
- Jim Sheldon-Dean
- Jim Sheldon-Dean
- Jim Sheldon-Dean
- C. J. Wolf
- Joseph P. McMenamin
- Thomas J. Force
Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...
More Events By The Speaker