HIPAA Compliance
Virtual Boot Camp 2017
Presented By: Jim Sheldon-Dean
Prerecorded (4 Hrs)
HIPAA Compliance 2017: Future Proof Your Organization from PHI Breaches, HIPAA Violations and Ransomware Attacks!
Overview:
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) has now been around for 20 years and it has evolved over the years based on changing threats, demands and focus of the healthcare industry. But even after two decades, HIPAA compliance still remains a challenge for covered entities—healthcare providers, health plan or healthcare clearing houses.

While patients are increasingly using smart phones and demand information through texting and email, the threat of PHI breaches, violations, and high-risk of Ransomware and other cyber attacks are a real area of concern for HIPAA covered entities. Non-compliance and violations carries a high cost and penalties for willful neglect of the rules begin at $10,000. As the use of new technologies in storing and sharing data become increasingly common, healthcare entities will have to create plans, policies and procedures that are robust and relevant in the current scenario.
In recent years, there has been a dramatic increase in HIPAA enforcements and settlements, as well as discovery of new and lethal threats to the privacy and security of patient information. HIPAA compliance is more important than ever and violators of willful neglect of the rules may face serious legal consequences and penalties. In 2017 we may expect still more surprises similar to Ransomware and the proposed changes to the HITECH Act. The HHS’ Office for Civil Rights plans to fund the HIPAA compliance audit program further by using some of the $27 million collected from fines and penalties due to HIPAA violations. For HIPAA covered entities, there are three areas that they need to watch out for in 2017 to stay out of trouble:

  • Patient Access of Information, Texting, and E-mail
  • Communication with Family and Friends of Patients
  • Avoiding and Responding to Ransomware Attacks
Session Details
Session 1: Patient Access of Information, Texting, and E-mail

Length: 90 Minutes | CEUs: 1.5 AAPC CEUs

HIPAA now provides for individual rights to receive electronic copies of records held electronically and individuals have new rights under HIPAA and the Clinical Laboratory Improvement Amendments (CLIA) to directly access test results from the laboratories creating the data. In addition, there is new guidance from HHS about how to treat access to health information and information pertaining to mental health and minors, including giving due consideration to patient requests and safety issues of the patient and others.
Session 2: Communication with Family and Friends of Patients

Length: 60 Minutes | CEUs: 1 AAPC CEU

One of the toughest situations that healthcare professionals can face is whether or not to share information about an individual with the individual’s family and friends involved with the individual’s care. These situations arise when family and friends need to know more about an individual than may usually be available, to help with care, to help with payment for services, and to help calm the fears and properly inform those who are involved with the individual.
Session 3: Avoiding and Responding to Ransomware Attacks

Length: 90 Minutes | CEUs: 1.5 AAPC CEUs

A recent U.S. Government interagency report indicates that, on average, there have been 4,000 daily Ransomware attacks since early 2016 (a 300% increase over the 1,000 daily Ransomware attacks reported in 2015). Even if you pay off the ransom, you may not get control of your data back, and you may never know if the data remains compromised or not. Victims of Ransomware face the expense of recovery, the hassle of compliance issues like breach reports, and the loss of good will with patients who may never trust your organization again.
Who Should Attend?
  • Compliance Director
  • CEO
  • CFO
  • Privacy Officer
  • Security Officer
  • Information Systems Manager
  • HIPAA Officer
  • Chief Information Officer
  • Health Information Manager
  • Healthcare Counsel/Lawyer
  • Office Manager
  • Contracts Manager
About Our Speaker
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities. He is a frequent speaker regarding HIPAA, including speaking engagements at numerous regional and national healthcare association conferences and conventions and the annual NIST/OCR HIPAA Security Conference. Sheldon-Dean has more than 15 years of experience specializing in HIPAA compliance, more than 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development, and eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.
Buy Now