Category: HIPAA & Compliance

HIPAA settlement payments hit an all-time high in 2018 following year-long HIPAA compliance requirements audits conducted by the Department of Health and Human Services Office for Civil Rights. These monetary…

Continue Reading

There have been several resources for measuring compliance program effectiveness.  The Office of Inspector General (OIG) of the Department of Health and Human Services (HHS) put out “Measuring Compliance Program…

Continue Reading

HIPAA Encryption requirements? Not really! To be sure, encryption may not always be directly required, but it is often best practices. When it comes to HIPAA compliance, the way you…

Continue Reading

We are entering the second year of the OIG’s new approach to publicizing and managing its FY18-19 Workplan.  Just like last year, the OIG Workplan 2019 is not a static document. …

Continue Reading

In 1996, Congress enacted the Health Insurance Portability and Accountability Act (HIPAA) primarily to protect individuals and their personal health information (PHI) contained in medical records. HIPAA applies to all…

Continue Reading

If you work in medical billing or healthcare administration, you probably think you can answer the question: What is HIPAA Compliance? Yet, a recent Office of Civil Rights (OCR) audit…

Continue Reading

As many organizations have found out the hard way, there is an important relationship between HIPAA compliance policy and your Electronic Medical Records (EHR). Consider these recent headlines: 100 million…

Continue Reading

Many articles and blog posts mention HIPAA compliance, but what are HIPAA requirements, and what do you have to do to be compliant? What is the security rule? The privacy…

Continue Reading

For many healthcare organizations, especially smaller or rural hospitals, resources are scarce.  Outsourcing can often be beneficial for hospitals.  An effective approach in this situation is to outsource the management…

Continue Reading

A HIPAA gap analysis, according to the U.S. Department of Health and Human Services (HHS) is “typically a narrowed examination of a covered entity or business associate’s enterprise to assess…

Continue Reading

An effective Corporate Compliance Program in healthcare is a critical necessity!  Corporate compliance professionals spend a lot of their time assessing the performance of other people in their hospital or…

Continue Reading

Still not convinced a HIPAA Risk Analysis is not optional? Here are a couple of historical headlines: Oregon Health & Science University (OHSU) has agreed to settle potential violations of…

Continue Reading

Is this a HIPAA privacy violation?  Not too surprisingly, the questions never end!  In just over three months in 2018, we have received over 12 specific questions about HIPAA privacy. …

Continue Reading

The OIG advertised that they have published its OIG Work Plan for FY 2018-2019, a 2-year frame-work for the audits, inspections, evaluations, and investigative activities planned in support of OIG’s…

Continue Reading

CMS made several changes to the Stark regulations for physicians in 2016, including some useful clarifications.  Now there are some court decisions which further clarify the expectations of the Stark…

Continue Reading

A HIPAA compliance checklist is the tool to turn to when imposing sanctions on employees for HIPAA privacy breaches.  It may feel like a never-ending and thankless task, but consider…

Continue Reading

HIPAA Compliance for Dental Offices now stand in parallel with medical organizations in terms of having access to Protected Health Information (PHI).  Meaning they must adhere to the same level…

Continue Reading