Paul R. Hales, J.D. is widely recognized for his expert knowledge and ability to explain the HIPAA Rules clearly in plain language. Paul is an attorney licensed to practice before the Supreme Court of the United States and a graduate of Columbia University Law School with an international practice in HIPAA privacy and security. He is the author of all content in The HIPAA E-Tool®, an Internet-based, complete HIPAA compliance solution with separate editions for Covered Entities, Business Associates, Health Plans and Third Party Administrators.
The Internet is jam-packed with unwitting but highly visible HIPAA violations committed by Covered Entities on their social media pages like Facebook, their organization's web site, patient testimonials they post and their responses to patient reviews - whether the review is positive or negative.
Risk Analysis and Risk Management (RA-RM) are OCR's top enforcement priority and the basis for every HIPAA Compliance program. However, the biggest and most important nationwide HIPAA violation is failure to perform RA-RM in compliance with OCR requirements. OCR published shocking results of its Phase 2 HIPAA Compliance Audit on December 17, 2020 revealing that:
Risk Analysis and Risk Management (RA-RM) are OCR's top enforcement priority and the basis for every HIPAA Compliance program.
HIPAA Privacy, Security, Breach Notification and Enforcement Rules mandate compliance by Health Care Providers of all sizes - from one physician, dentist, optometrist, or licensed clinical social worker to the largest medical center.
This lesson is designed to enable your Organization to perform a complete Risk Analysis of all PHI it creates, receives, maintains or transmits in any format. You will understand and identify threats, vulnerabilities and risks to your organization's PHI wherever it is located.
This webinar focuses on HIPAA Rules for transmitting informational email and text messages to patients over an electronic communications network.
The webinar will concentrate on topics that HHS has announced will be the focus of the first round of "desk audits". They reflect significant areas of non-compliance revealed in the 2012 pilot audits and HHS HIPAA violation investigations concluded by Resolution Agreements and Corrective Action Plans.