Overview:
The New Final HIPAA Breach Notification Rule that becomes enforceable on September 23, 2013 requires all HIPAA covered entities and business associates to follow a number of steps to be in compliance.
If there is a breach of protected health information that does not qualify for one of the reporting exceptions, the breach must be reported, unless a risk assessment shows that there is a "low probability of compromise." All reportable breaches must be reported to the Secretary of the US Department of Health and Human Services at least annually.
Areas Covered in the Session:
- Breach Notification Laws
- State Breach Notification Laws
- Changes to HIPAA Breach Notification
- Federal Breach Notification Law and Regulation
- The Who, What, and How of Breach Notification
- The Risk Assessment Process in Breach Notification
- Preventing and Preparing for Breaches
- Using an Information Security Management Process
- Using Risk Analysis and Risk Assessment Before a Breach
- Most Common Types of Breaches
- Information Security, Incident, and Breach Notification Policies
- The Importance of Documentation
- Enforcement and Audits
- New HIPAA Violation Categories and Penalties
- Preparing for HIPAA Audits
- Case Studies
- Future Trends and New Threats to Prepare For
- History vs. the Future
- Why Security Trends Are Changing
- Implications of New Directions in Attacks and Targets
Who Will Benefit:
- Compliance director
- CEO
- CFO
- Privacy Officer
- Security Officer
- Information Systems Manager
- HIPAA Officer
- Chief Information Officer
- Health Information Manager
- Healthcare Counsel/lawyer
- Office Manager