Author Archive | Bob Chaput

HIPAA Audit Tips – Conduit, Business Associate, or Something Else?

In a recent blog post we advised: “Be Careful Claiming “Conduit””. Two of our colleagues, Jason Riddle and Gary Ridner, attended the OCR/NIST 6th Annual Conference on Safeguarding Health Information in Washington in early June. Jason Riddle offers up this blog post and tip. Here’s today’s big tip – Sort out your Business Associate status before OCR does!

Continue Reading

HIPAA Audit Tips – HHS Budget for Audits Increased

I don’t know if you had a chance to listen to Kathleen Sebelius announce on a brief video, the HHS 2014 budget a few days ago, or read the “Highlights of the 2014 HHS Budget”. The video announcement did not cite the reason for the $1MM, or 2.4% increase in OCR’s budget over 2013. You might want to know! Here’s today’s big tip – Learn How the Extra $1MM Will be Used!

Continue Reading

HIPAA Audit Tips – Learn from ISU’s Greg Ehardt

Gregory J. Ehardt, JD, LL.M. | HIPAA/Assistant Compliance Officer | HCA Adjunct Professor | Office of General Counsel | Idaho State University has joined the Clearwater HIPAA Compliance BootCamp™ Faculty. Mr. Ehardt will be sharing his experiences and lessons learned from the recent OCR Investigation that resulted in a Settlement Agreement with HHS/OCR that included a Corrective Action Plan and $400K payment. Here’s today’s big tip – Go to School On Idaho State University (ISU).

Continue Reading

HIPAA Audit Tips – Be Careful Claiming “Conduit”

This post is motivated by three phone conversations in one day with likely Business Associates (BAs), trying to sort out if they really are a HIPAA Business Associate. Millions of companies are now statutorily obligated to comply with HIPAA-HITECH regulations, because of their BA status. They’d prefer to meet the “conduit exception” requirements and not have to comply. I bet you wanna be a HIPAA Conduit too! In the preamble to the Omnibus Final Rule, clarity and guidance is provided. Here’s today’s big tip – Be Very Careful – “The conduit exception is a narrow one and…!”

Continue Reading

HIPAA Risk Analysis Tip – Eligible Provider EHR Pre-Payment Audit Document Request

CMS announced in January, after a critical OIG audit report, that Eligible Providers, Eligible Hospitals and Critical Access Hospitals who have purchased and implemented an electronic health record (EHR) system and attested to meaningful use of that EHR may be subjected to an audit before they see an incentive payment. Here’s today’s big TIP – Learn the exact requirement for Risk Analysis documentation.

Continue Reading

On Demand Webinar Registration

Clearwater Compliance provides a large variety and volume of complimentary HIPAA and HITECH Resources and Educational Materials through this abouthipaa site. Recorded audio copies of our weekly, live, complimentary HIPAA-HITECH Educational Webinars, along with the presentation materials, are among the most popular of these resources.

Continue Reading

HIPAA Risk Analysis Tip – EHR Pre- and Post-Payment Audits

Some Eligible Providers, Eligible Hospitals and Critical Access Hospitals who have purchased and implemented an electronic health record (EHR) system and attested to meaningful use of that EHR may be subjected to an audit before they see an incentive payment. That’s the word from CMS’ Office of E-Health Standards and Services. Here’s today’s big TIP – Learn the Audit Validation Process and Required Documentation for HIPAA Risk Analysis.

Continue Reading