Online Safety Community

Entities should do everything it takes to avoid HIPAA fines and penalties

The fact of about 120 million individuals being affected by HIPAA breaches in 2015 highlights two important points:

  1. There is a mad demand for these records in the black market, which is why they are being targeted to this extent. Any wonder that PHI is in greater demand in the black market than even social security and credit cards?
  2. There is an acute need for Covered Entities and Business Associates to take all the steps at their command to avoid HIPAA fines and penalties.

The federal government, on its part, is extremely vigilant about protecting healthcare records. It has been consistently exhorting the HHS to take a fresh look at the increased incidence of cyberattacks that has resulted in medical records theft.

Phase 2 of HIPAA audits is very stringent

With the OCR’s harsher Phase 2 HIPAA audits now underway, there has been a heightened need for Covered Entities and Business Associates to devise ways of avoiding HIPAA fines and penalties. This is not to suggest that Covered Entities and Business Associates need to panic. It is just that they need to get a clear and thorough understanding of HIPAA compliance requirements expected of a healthcare provider if they have to avoid HIPAA fines and penalties.

Further, a thorough understanding of HIPAA compliance requirements is necessary to also meet another core HIPAA requirement: Providing the appropriate patient rights and controls on HIPAA’s uses and disclosures of PHI.

The HHS expects an organization that is being audited or is the subject of a compliance review to demonstrate two points if it has to avoid HIPAA fines and penalties: a) the way by which it addresses all of the required security safeguards, and b) documentation of the proper policies and procedures necessary for safeguarding patient PHI.

These facts show that it is extremely crucial for organizations to avoid HIPAA fines and penalties, given the astronomical cost of noncompliance.

A valuable learning on how to avoid HIPAA fines and penalties

A thorough learning on what Covered Entities and Business Associates need to do to get their HIPAA implementation right will be imparted at a webinar that is being organized by MentorHealth, a leading provider of professional trainings for the healthcare industry. At this webinar, Jay Hodes, who is President and Founder, Colington Security Consulting, LLC, will be the speaker. Just visit to gain complete understanding that Jay will impart about ways of avoiding HIPAA fines and penalties. This course is approved for 1.5 general credits from the Nevada Board Of Continuing Legal Education.

Clarity on how to avoid HIPAA fines and penalties

Jay will highlight the importance of being compliant with the HIPAA requirements for an organization if it has to avoid HIPAA fines and penalties. The ways by which a Business Associate or Covered Entity can provide the appropriate patient rights and controls on its uses and disclosures of Protected Health Information (PHI) and what all it has to have in place for doing so, will all be explained.

He will explain the core areas for an organization that is the subject of a compliance review or is being audited towards avoiding HIPAA fines and penalties: How it needs to show to the HHS both the documentation necessary for safeguarding patient PHI, as well as the ability to show how it is addressing all of the required security safeguards.

The following areas will be covered at this session:

  • Why was HIPAA created?
  • Who Must Comply with HIPAA Requirements?
  • What Privacy Requirements must be in place?
  • What are the HIPAA Security and Privacy Rules?
  • What is a HIPAA Risk Management Plan?
  • What is meant by “Required” and “Addressable” Implementation Specifications?
  • What are Administrative, Technical, and Physical Safeguards Requirements?
  • What is a HIPAA Risk Assessment?
  • What are HIPAA training requirements?
  • What is a HIPAA data breach and what happens if it occurs?
  • What are the penalties and fines for non-compliance and how to avoid them?
  • HIPAA Breaches -Case Examples
  • Questions.

Views: 5

Comment

You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

kate smith posted blog posts
3 hours ago
Adam Fleaming posted blog posts
5 hours ago
John Robinson posted a blog post

Training and Development is a highly developed and evolved, broad body of knowledge. Many employees place themselves at a disadvantage vis-à-vis their colleagues in the absence of the right professio…

Training and Development is a highly developed and evolved, broad body of knowledge. Many employees place themselves at a disadvantage vis-à-vis their colleagues in the absence of the right professional training and development. If employees have to consistently close gaps in their learning, they need to keep upgrading their knowledge and skills. They should also use training…See More
yesterday
Roger Steven posted a blog post

Ensuring compensation-focused compliance with Stark Law considerations

Stark Law compliance is now more than just a compliance issue. It has grown to become an Enterprise Risk Management matter, if the substantial awards and settlements in recent enforcement actions are anything to go by. For healthcare organizations that develop and implement provider contracts; managing their compliance and…See More
Tuesday

Forum

What is Class Structure in Pega?

Class contains the rule by way of which objects behave. outline rules such as houses, sports, flows, html paperwork, etc. to be had to different subordinate classes. lessons are organized into a…Continue

Started by Soujanya Naganuri on Monday.

How to Concatenate Two Tables in QlikView

Table combining and concatenationConcatenate appends the rows of one table to another. Concatenate never merges any rows. The number of rows in a concatenated table is always the sum of the rows of…Continue

Tags: datafields, developers, qlikview

Started by Soujanya Naganuri Jun 30.

SQL Server Windows Management Instrumentation Tasks

Hello,SSIS includes two special tasks that enable you to query system information and monitor system events: the WMI Data Reader Task and the WMI Event Watcher Task. These tasks are especially useful…Continue

Tags: Task, WMI, Server, SQL

Started by Madison Quinn Jun 20.

difference between NEBOSH and IOSH

NEBOSH “National Examination Board in Occupational Health and Safety”IOSH “Institution…Continue

Tags: kerala, IGC, NEBOSH

Started by mani May 31.

What's your favorite motivational/safety quote? 98 Replies

Favorite Motivational Quote: If you want something, you'll find a way - If not, you'll find an excuse.Favorite Safety Quote: Don't learn safety by accident!Continue

Started by Michelle Sears. Last reply by David R Snell Apr 26.

Badge

Loading…

© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service