HIPAA Audit and Enforcement Compliance Update

HIPAA Audit and Enforcement Update: Prepare for 2018

Event Information
Product Format
Prerecorded Event
Conference Date
Thu, Nov 09, 2017
60 minutes
Product Description

Prepare for Increased HIPAA Enforcement and More Audits

HIPAA enforcement and audits are now a significant reality, and settlements for violations are being announced more frequently. With increases in breach reporting and a new random audit program under way, every HIPAA entity and business associate needs to be taking the proper steps in advance and ensuring your compliance is in order and you have the documentation to prove it.

HIPAA compliance requires that you be prepared to handle protected health information (PHI) properly and follow the requirements in the HIPAA privacy, security and breach notification rules. Compliance problems can result in an enforcement action, including financial settlements that can reach into the millions of dollars, and corrective action plans that can take years to complete and cost many times the expense of the monetary settlements. Knowing what questions are likely to be asked in an audit and what documentation is necessary to show compliance are key to preparing for HIPAA compliance inquiries.

In this session, healthcare compliance expert Jim Sheldon-Dean will discuss the federal government’s HIPAA audit and enforcement programs and how they work, with a special focus on the areas that caused the most issues in prior audits and enforcement actions. Jim will explore what types of entities had the most problems, and he’ll show where entities need to improve their compliance the most. He will also explore the typical risk issues that lead to breaches of health information and see how those issues may become a target for auditors in the next round.

Jim will also discuss the information and documentation that must be prepared in advance so that you can be ready for an audit or enforcement review at any time, including sample information request forms and questions asked at prior audits. The session will cover how to know if you may become the subject of an audit or enforcement action, and what you can do to help limit your exposure. You’ll learn how most enforcement actions come about and what can be done to prevent incidents that lead to enforcement activity, as well as results and penalties of prior HHS audits and enforcement actions, including recent actions that involved multimillion-dollar settlements and fines, and recent changes that increase fines and create new penalty levels, including new penalties for willful neglect of compliance that begin at $10,000. Jim will present a plan for attaining compliance and will outline the steps you need to follow to prepare for an audit and respond to an audit request.

The session will review the contents of the HIPAA Audit Protocol used in the recent years to show what documentation needs to be on hand should your organization be selected for an audit in the new round. It will present the methods for using the contents of the HIPAA Audit Protocol to build your own compliance plan by relating your compliance activities directly to the questions that might be asked. Finally, Jim will discuss the HIPAA audit and enforcement regulations and processes, and how they apply to HIPAA covered entities and business associates.

Session Highlights

  • What the audit process is, what HHS OCR is likely to ask you if you are selected for an audit or compliance review, and what you’ll have to have prepared already when they do
  • How to make the HIPAA Audit Protocol useful as a way to organize and track your compliance work, and collect your documentation references
  • What you’ll need to have documented to survive an audit or compliance review and avoid fines
  • How to use an information security management process to evaluate risks and make decisions about how best to protect PHI and meet patient needs and desires
  • Policies and procedures you should have in place
  • The training and education that must take place and be documented to ensure your staff uses health information properly and does not risk exposure of PHI

Who Should Attend

  • Compliance officers, privacy and security officers, leadership and staff in health information management, information security and patient relations
  • Staff in patient intake and front-line patient relations
  • Any others involved in, interested in or responsible for patient communications, information management, and privacy and security of PHI under HIPAA, including:
    • Compliance director
    • CEO
    • CFO
    • Privacy officer
    • Security officer
    • Information systems manager
    • HIPAA officer
    • Chief information officer
    • Health information manager
    • Healthcare counsel/lawyer
    • Office manager
    • Contracts manager

Ask a question at the Q&A session following the live event and get advice unique to your situation, directly from our expert speaker.

Order Below or Call 1-866-458-2965 Today

You can also order through:




About Our Speaker

Jim Sheldon Dean - HIPAA Compliance & Regulations Expert

Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...   More Info
More Events By The Speaker

Why AudioEducator?
  • Save money on travel.
  • Meet your specific training needs.
  • Keep learning after the event.
  • Save time training your whole staff.
Join Our Mailing List
Our Accreditation Partners
Facebook Twitter Linkedin Youtube RSS Feeds Google Plus