HIPAA 2 - The Top 4 Issues Providers Must Prepare For Today

Event Information
Product Format
Prerecorded Event
Conference Date
Wed, May 01, 2013
60 Minutes
Product Description

Discover How HIPAA Regulations Have Changed—And What You Have to Do to Be Compliant

New updates to the HIPAA regulations contain numerous changes, but some of them have a more significant impact than others. Those with the greater impact will require drastic changes to policies, procedures, and practices for healthcare providers to remain compliant.

This session will cover four of the most significant changes that will affect most providers:

  • Business associates and their subcontractors are directly subject to the HIPAA rules and are liable for breaches of personal health information.
    Whereas under the old rules business associates were solely controlled by their contracts with providers, now they are directly under HHS regulation. That means change for all.
  • Patients have expanded rights to obtain electronic copies of their records.
    Patients now have the right to get electronic copies of any records held electronically. Providers will need to understand what data is affected and how they will provide those copies.
  • Individuals have new rights to request restrictions regarding disclosure of their PHI.
    If a patient pays for a service out of pocket and requests that the encounter not be disclosed to their insurer, the provider MUST comply (with a few exceptions). Providers will need to understand how their processes need to change and what their systems will need to do to comply with the new requirement.
  • The breach notification rule is changed so that any improper disclosure of PHI is presumed to be a breach until shown otherwise.
    This change eliminates the old “Harm Standard” in the Breach Notification rules.  If an improper disclosure does not meet one of defined exceptions for breach reporting, it must be reported unless a risk assessment shows there is a “low probability of compromise” after considering what the data are, to whom it was released, whether or not it was accessed or viewed, and whether or not the breach was mitigated.  Providers will need to revise their breach handling policies and procedures to comply.

The new rules require compliance by September 23, 2013, so it is essential for all HIPAA Covered Entities and their business associates to review and adjust their policies and procedures before then.

In a nutshell: In this audio conference, you will discuss the new regulations. Our expert presenter, Jim Sheldon-Dean, will explain the impacts on business associate relationships, patient rights, and breach notification.  

You’ll note the differences between the old and new rules and highlight the policies that you have in place already that need modification.  

You’ll also explore the effects on HIPAA Notices of Privacy Practices. Here are the new responsibilities and rights that you must accommodate.

Identify how you need to modify current practices in contracting with and managing business associates, responding to patient requests for electronic records and disclosure restrictions, and the evaluation of breaches.

You’ll highlight business associate agreement requirements and  discuss the sample language provided by HHS.

You’ll examine methods for responding to patient requests for electronic records and explain the special considerations for responding to requests under the new disclosure limitation rule.

Finally, you’ll go in-depth with risk assessment for breach evaluation, including an exploration of the four factors of risk in a breach. Our expert speaker will present a framework for performing the evaluation and risk assessment necessary when a breach occurs.

This session will help you:

  • Figure out how to adjust to a number of HIPAA regulation changes. These significant changes went into effect March 26, 2013 and are to be enforced beginning September 23, 2013.
  • Learn how and why HIPAA regulations cover Business Associates directly. Also, the relationship with healthcare providers has changed. That means your agreements and practices also must change to match.
  • Determine how to respond to requests for electronic copies of information held electronically. This may require adjustments to policies and practices at healthcare providers.
  • Underline a new right to restrict disclosure of encounter information to an insurer if it is paid fully out of pocket by the individual. Providers must comply with requests, and their systems and practices will have to support compliance.  
  • Ensure EHR systems support the needs of healthcare providers in order to meet the new requirements for patient rights.  
  • Discover how processes in place for Breach Notification under HIPAA have changed. The old “harm standard” is gone, replaced with a new risk assessment to determine if there is a “low probability of compromise.” You must change policies and practices to match the new rules.
  • Update HIPAA Notices of Privacy Practices to reflect policy changes and the new rules by September 23, 2013.

Ask a question at the Q&A session following the live event and get advice unique to your situation, directly from our expert speaker.

Who should attend? Compliance Manager, HIPAA Officer, Chief Information Officer, Health Information Manager, Medical Office Manager, Medical Practice Lawyer, CFO, CEO, COO. Privacy Officer, Information Security Officer.

Order Below or Call 1-866-458-2965 Today

You can also order through:




About Our Speaker

Jim Sheldon Dean - HIPAA Compliance & Regulations Expert

Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...   More Info
More Events By The Speaker

Why AudioEducator?
  • Save money on travel.
  • Meet your specific training needs.
  • Keep learning after the event.
  • Save time training your whole staff.
Join Our Mailing List
Our Accreditation Partners
Facebook Twitter Linkedin Youtube RSS Feeds Google Plus