Posted by Bob Chaput, April 11, 2012
HIPAA enforcement is on the upswing and the consequences are serious. A recent hire by the Office of Civil Rights (OCR), however, means enforcement may soon ramp up even more. OCR has hired Virginia-based audit firm KPMG to implement its HITECH-required HIPAA compliance auditing plan. Are you ready? Learn how to prepare…
Section 13411 of The HITECH Act, passed in 2009, states that periodic audits must be conducted to ensure covered entities and business associates are complying with HIPAA-HITECH requirements. According to a $9.2 million contract that was provide by the Department of Health and Human Services, KPMG will audit 150 entities by the close of 2012.
On July 15, 2011, Deputy Director Susan McAndrew, Esq., from the HHS Office for Civil Rights went on record in an interview with HealthCareInfoSecurity.com to comment on the upcoming agency audits. As McAndrew said, “This is just another opportunity for covered entities to take a moment from their busy, busy days to do a self assessment. We think that this will help them down the road in terms of building their own capacity for a robust compliance program.” The first round of audits will be followed by “up to 150” on-site audits through the end of 2012.
What actions should CEs and BAs and their subcontractors prepare?
- Webinar slide materials
- Upcoming HIPAA HITECH Blue Ribbon Live Web Events
- Upcoming Live HIPAA HITECH Webinars
If you receive, store, process or transmit ePHI and/or depend on others who do so, no matter where you are in your compliance journey, you should attend this live web event on How to Prepare for the HIPAA Audits.
In this webinar, attendees will learn the latest details / specifics on the audits, what protocols and/or frameworks will be used, what the focus will be (Privacy or Security or both), whether Breach Notification Rule compliance will be audited, how the initial 150 organizations be chosen, what types of organizations will audited and, most importantly how Covered Entities and Business Associates should best prepare. We will also discuss where Covered Entities and Business Associates can turn for help.
The material covered in this live web event has been purposefully designed help the all organizations from the largest CEs and BAs (e.g., hospitals, insurors, care management firms, etc) to the smallest BAs and subcontractors (e.g., small medical practices, clinics, dental offices, medical billing companies, IT companies, etc.). You will receive practical, actionable advice and approaches to ensuring your privacy and security goals are aligned.
Preparing for an audit by doing self-assessments and practicing site audits will help CEs, BAs and their subcontractors, many of whom are just now becoming aware of their new obligations under the regulations.
If you are a “Business Associate” or “Covered Entity” or a “subcontractor” that creates, receives, maintains or transmits ePHI, you will benefit from this Live Web Event.
Who Should Attend?
Business leaders and managers with responsibility for Risk Management, Corporate Compliance, and HIPAA-HITECH Privacy and Security compliance should attend. CEOs, COOs, CFOs, Chief Compliance Officers, Chief Risk Officers, Chief Privacy Officers, Chief Security Officers, Chief Information Officers.
This session is offered as a 60-minute Live Web Event using the GoToWebinar platform. The open format encourages questions during and after the session. Attendees will receive the presentation materials.
No matter where you are in your HIPAA-HITECH compliance journey, you will benefit from learning:
- What the Audit Program comprises
- How organizations will be chosen
- Best practices used by others to prepare for the audits
This webinar is designed to help CEs, BAs and subcontractors prepare for the HIPAA audits.
Presented by: Bob Chaput, CEO – Clearwater Compliance LLC
See our list of upcoming live webinars, or check out our on-demand webinars with resources you may have missed.