Under the new HIPAA compliance rules, patient rights have been expanded to accommodate several fresh rights of access and guidance on access to their records. The rule changes concerning patient access to records should reflect in all the policies and procedures of all health care-related organizations. HIPAA now provides individuals with the rights to receive copies of records held electronically.
Under HIPAA and the Clinical Laboratory Improvement Amendments (CLIA), patients also have new rights to access data of test results directly from the laboratories undertaking the tests. Many labs will have to create patient-facing operations—a process which they may have not been doing previously. They also need to consider how sensitive results are communicated to patients. Entities subject to HIPAA rules should respect these changes through modifications to policies and notices and staff training in order to comply with the new requirements.
In addition, there are new explanations from HHS about how to treat access to mental health information and information pertaining to minors, including giving due consideration to patient requests and safety issues of the patient. All HIPAA-covered providers need to review their HIPAA compliance, policies, and procedures to see if they are prepared to be in full compliance and meet the requirements of the changes in the rules. Compliance is required and penalties for wilful neglect of the rules begin at $10,000.
Besides the compliance rules, the enforcement rules too have changed. There is now a mandatory fine for deliberate neglect of compliance, which starts at $10,000, even if the issue is corrected within 30 days of discovery. There is now a fresh 4-tier violation schedule with increased fines. If prompt correction methods are not taken on the violations, mandatory minimum fines will be imposed starting from $50,000 and can go up to $1.5 million for any particular violation. Investigations are required under the law for any reports of wilful neglect. Even violations for a reasonable cause or with reasonable diligence taken are subject to penalty.
Join this informative session by compliance expert Jim Sheldon-Dean to understand what you should do to comply with the new HIPAA regulations and the things you should keep in mind moving forward. You will get the latest updates on the new changes and be able to prepare for the process of including the changes in your organization. Jim will also discuss what is required to avoid penalties and make good compliance decisions.
Who should attend?
Ask a question at the Q&A session following the live event and get advice unique to your situation, directly from our expert speaker.
Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...
More Events By The Speaker