When should you do a risk assessment for a breach of PHI? The short answer is any time you have a confirmed unauthorized disclosure of protected health information (PHI). The…
Category: HIPAA & Compliance
Hospital Compliance Officer
This year has not resulted in a slow-down in the need for a competent hospital compliance officer. In fact, if anything, it has increased the need for such a person…
Healthcare Compliance Program Policies and Procedures
Healthcare compliance program policies and procedures – that is the subject your boss has just asked you about. You realize while you have heard about this topic, you aren’t really…
Is Office 365 HIPAA Compliant?
Is Office 365 HIPAA compliant? A critical question, considering the worldwide usage of this program/application. “Office”, which is created by Microsoft, holds several tools for your business. These tools include…
HIPAA Encryption – Required or Not?
Does HIPAA require encryption? Well … encryption is not yet required to be HIPAA-compliant, but it is recommended. You must ensure that your ePHI (electronic Protected Health Information) is protected…
Independent Review Organization – Required by Your CIA
An Independent Review Organization (IRO) is an essential component of a Corporate Integrity Agreement executed with a healthcare organization. Every year, many healthcare organizations and providers enter into a Corporate…
HIPAA Security Standards – what are the 3 “big ones”?
HIPAA outlines the protection of protected health information (PHI). Part of HIPAA is the HIPAA Security Rule, or HIPAA Security Standards, which requires healthcare providers to protect electronic PHI (ePHI)….
Corporate Integrity Agreements in Healthcare Explained in 3 Minutes
Corporate integrity agreements in healthcare (CIA) serve as binding contracts between an organization and the Office of the Inspector General (OIG). The organization accepts all the terms and conditions that…
HIPAA Text Messaging – How Compliant is it?
Since so many people use text messaging, healthcare organizations may ask, “Is texting HIPAA compliant? And if so, how can I ensure I’m doing it right?” Although the government has…
Interim Compliance Officer in Healthcare
An interim (or full-time) compliance officer in a healthcare organization, is a person whose job is to prevent and manage compliance violations due to operations outside of internal and external…
Healthcare Compliance Consulting in the COVID-19 Pandemic
With the many regulatory changes due to COVID-19, healthcare compliance consulting has become more relevant than ever. When the first case of COVID-19 was reported on December 31, 2019, no…
What are the HIPAA Rules for a Risk Assessment?
What are the HIPAA Rules for a Risk Assessment? There have been significant new clarifications based on a recent settlement and resolution agreement (RA). The HIPAA Rules for a Risk…
HIPAA Privacy and Security – a 3 Minute Summary!
HIPAA Privacy and Security is continuing to be one of the most important functions in any healthcare organization. The United States set up HIPAA to protect medical data for citizens….
OIG Corporate Integrity Agreement – Recruiting an IRO
The Office of Inspector (OIG) Corporate Integrity Agreement requires the selection of an Independent Review Organization (IRO) within 90 days of signing the agreement. This is one of the most…
HIPAA Risk Assessment Checklist | HIPAA Compliance
A HIPAA risk assessment checklist is crucial in conducting a HIPAA risk analysis. Identifying risks that could impact protected health information (PHI) is an essential part of HIPAA compliance. In…
Benefits of Hospital Outsourcing Corporate Compliance – 6 Key Observations
The benefits of hospital outsourcing corporate compliance are important and worthy of serious consideration. The Fox Group has many years of experience providing compliance and HIPAA-related services to our clients….
HIPAA Compliance Audit Checklist – 8 Guidelines
Do you have a HIPAA compliance audit checklist? And are you using an updated version? Is your organization prepared for an audit by the Department of Health and Human Services…
HIPAA Compliance Training – 3 Must Include Subjects
HIPAA compliance training is a must! It is essential to evaluate current best practices and determine where you need to make changes. If your organization handles protected health information (PHI),…
HIPAA Security Rule – 3 Required Safeguards
Today, our focus is on the HIPAA Security Rule and how it addresses the protection of electronic medical records. Congress passed the Health Insurance Portability and Accountability Act (HIPAA) in…
HIPAA Business Associate – 6 Observations to Know
There are six observations a HIPAA business associate needs to know because it’s not only healthcare providers (covered entities) that are subject to the guidelines of the Health Insurance Portability…