Understanding HIPAA breach penalties can be a problem for many providers, in part because of the myriad of ways in which a breach can occur. HIPAA created standards for protecting…
Category: HIPAA & Compliance
HIPAA Compliance Requirements
HIPAA settlement payments hit an all-time high in 2018 following year-long HIPAA compliance requirements audits conducted by the Department of Health and Human Services Office for Civil Rights. These monetary…
Measuring Compliance Program Effectiveness – 3 Critical Questions
There have been several resources for measuring compliance program effectiveness. The Office of Inspector General (OIG) of the Department of Health and Human Services (HHS) put out “Measuring Compliance Program…
HIPAA Encryption Requirements or Best Practices
HIPAA Encryption requirements? Not really! To be sure, encryption may not always be directly required, but it is often best practices. When it comes to HIPAA compliance, the way you…
OIG Workplan 2019: What’s New!
We are entering the second year of the OIG’s new approach to publicizing and managing its FY18-19 Workplan. Just like last year, the OIG Workplan 2019 is not a static document. …
Understanding HIPAA Policies and Procedures
In 1996, Congress enacted the Health Insurance Portability and Accountability Act (HIPAA) primarily to protect individuals and their personal health information (PHI) contained in medical records. HIPAA applies to all…
What is HIPAA Compliance? What You Don’t Know Can Cost You.
If you work in medical billing or healthcare administration, you probably think you can answer the question: What is HIPAA Compliance? Yet, a recent Office of Civil Rights (OCR) audit…
HIPAA Compliance Policy and Your EHR
As many organizations have found out the hard way, there is an important relationship between HIPAA compliance policy and your Electronic Medical Records (EHR). Consider these recent headlines: 100 million…
HIPAA Requirements – and how to be in compliance
Many articles and blog posts mention HIPAA compliance, but what are HIPAA requirements, and what do you have to do to be compliant? What is the security rule? The privacy…
Outsourced Chief Compliance Officer for Hospitals
For many healthcare organizations, especially smaller or rural hospitals, resources are scarce, and outsourcing can often be beneficial for hospitals. One effective option is to outsource the management of a…
Why Healthcare Organizations need a HIPAA GAP Analysis
A HIPAA gap analysis, according to the U.S. Department of Health and Human Services (HHS) is “typically a narrowed examination of a covered entity or business associate’s enterprise to assess…
Effective Corporate Compliance Program Checklist
An effective Corporate Compliance Program in healthcare is a critical necessity! Corporate compliance professionals spend a lot of their time assessing the performance of other people in their hospital or…
A Comprehensive HIPAA Risk Analysis in 7 Steps
Still not convinced a HIPAA Risk Analysis is not optional? Here are a couple of historical headlines: Oregon Health & Science University (OHSU) has agreed to settle potential violations of…
Is this a HIPAA Privacy Violation? 5 Questions from the Workplace
Is this a HIPAA privacy violation? Not too surprisingly, the questions never end! In just over three months in 2018, we have received over 12 specific questions about HIPAA privacy. …
OIG Work Plan FY 2018-2019 and Monthly Updates
The OIG advertised that they have published its OIG Work Plan for FY 2018-2019, a 2-year frame-work for the audits, inspections, evaluations, and investigative activities planned in support of OIG’s…
Crisis Communication and Social Media in Healthcare
Allen Gingsburg once said that whoever controls the media, the images, controls the culture. Healthcare related crisis communication and social media are intensely connected! Take a deep breath to comprehend…
Stark Regulations for Physicians New and Old
CMS made several changes to the Stark regulations for physicians in 2016, including some useful clarifications. Now there are some court decisions which further clarify the expectations of the Stark…
HIPAA Compliance Checklist and Employee Sanctions
A HIPAA compliance checklist is the tool to turn to when imposing sanctions on employees for HIPAA privacy breaches. It may feel like a never-ending and thankless task, but consider…
HIPAA Compliance for Dental Offices
HIPAA Compliance for Dental Offices now stand in parallel with medical organizations in terms of having access to Protected Health Information (PHI). Meaning they must adhere to the same level…
Acquisition of Physician Practices – Legal Observation
Acquisition of physician practices are on the rise! Hospitals acquired 31,000 physician practices across every region of the country between 2012-2015 making the number of employed physicians increase from 95,000…