The language of the HIPAA Security Final Rule is in 45 C.F.R. § 164.308(a)(8) and is clear -- you must perform a periodic compliance assessment to ensure you comply.
Standard: Evaluation. Perform a periodic technical and non-technical evaluation, based initially upon the standards implemented under this rule and subsequently, in response to environmental or operational changes affecting the security of electronic protected health information, which establishes the extent to which an entity's security policies and procedures meet the requirements of this subpart.
Have you completed your HIPAA Security Assessment? Need help jump-starting your project? …attend our upcoming 4/14 complimentary webinar... register today!
The HITECH Act, which was enacted as part of the American Recovery and Reinvestment Act (ARRA) of 2009, significantly modified and strengthened many aspects of the HIPAA Security Rule (and Privacy Rule), including the penalties that the U.S. Department of Health and Human Services (HHS) could impose for violations of the HIPAA rules.
OCR has hired Booz Allen Hamilton to develop an audit plan for compliance. OCR has also added investigators in 10 regional OCR offices with the expectation to conduct more HIPAA security compliant investigations and compliance reviews.
If you create, receive, maintain or transmit ePHI, you need to attend this webinar. No matter where you are in your HIPAA-HITECH compliance journey and no matter where you are in the ePHI "chain of trust", you will benefit from ideas on how to:
• Jump-start your program
• Revitalize your compliance efforts
• Update your program with HITECH requirements
• Develop an internal benchmarking system
• Implement safeguards as soon as possible
• Evaluate current administrative, physical and technical safeguards
Many CEs have ignored the law for the last five years. A majority of BAs are not even aware of their new obligations under the law. Will compliance change? -- Most experts think so and so do we! The Health Information Technology for Economic and Clinical Health (HITECH) Act has been called a "game changer" because it significantly strengthens many aspects of the HIPAA Security Rule (and Privacy Rule), including the penalties that the U.S. Department of Health and Human Services (HHS) could impose for violations of the HIPAA rules as well as enforcement.
•Review the HIPAA Security Final Rule
•Learn about major changes brought about by The HITECH Act
•Learn about the new Civil Monetary Penalty System
•Learn how to assess your compliance with the law
•Learn practical, actionable steps to take today to mitigate risk and help assure compliance
Who Should Attend?
Business leaders and managers with responsibility for Risk Management, Corporate Compliance, and HIPAA-HITECH Privacy and Security compliance should attend. C-suite, Chief Compliance Officers, Chief Risk Officers, Chief Privacy Officers, CISOs, CIOs.
Benefit from our expertise; register for a complimentary HIPAA-HITECH compliance webinar today!