Overview:

This webinar for HIPAA Covered Entities and Business Associates will identify the top OCR HIPAA enforcement priorities for 2018 and explain simply how you can master HIPAA compliance requirements for each enforcement priority.

Why you should Attend: HIPAA Compliance is in crisis throughout the United States. The Office for Civil Rights (OCR), the HIPAA enforcement arm of the U. S. Department of Health and Human Services has just announced results of its recent HIPAA Compliance Audits of Covered Entities (CEs). The audited CEs represented a cross-section of all types and sizes throughout the nation. All knew they were on a shortlist to be audited and had access well in advance to the questions they would be asked and documents they would be required to produce. Nevertheless, OCR found 94% (59 of 63) of CEs to be inadequate or worse in Risk Management compliance and 87% (55 of 63) to be inadequate or worse in Risk Analysis compliance. No CE was in compliance with the Risk Analysis required implementation specification in effect since 2005.

OCR also audited HIPAA Compliance of a randomly selected cross-section of Business Associates (BAs) but has not released the results yet. OCR has identified HIPAA Compliance topics that are its biggest concern and top targets for CE and BA enforcement, including, obviously Risk Analysis-Risk Management. All are routine, easily avoided and non-compliance is extremely dangerous for Covered Entities, Business Associates and Patients. Not surprisingly, HIPAA Enforcement and demands for protection of Individually Identifiable Health Information is ramping up dramatically. The public, law enforcement and elected officials are alarmed and many are outraged by continuous, serious breaches of Health Information and medical identity theft. More than 170 million Americans have been victimized since OCR began to keep count in 2009. And the organizations experiencing breaches or committing violations suffered significant financial loss and immeasurable, ongoing damage to their reputations - whether they are nationally known or locally prominent.

This session will identify OCR's highest priorities for HIPAA Compliance and explain the simple steps CEs and BAs may follow to comply. Some think HIPAA is complex, impossible to understand or follow. We think differently. The secret is the HIPAA rules are easy to follow step-by-step when you know the steps. The HIPAA Rules are a blueprint to protect Health Information. You should attend this session to see the blueprint and learn how to find and follow the HIPAA Rules easily, simply, step-by-step.

Areas Covered in the Session: This webinar for HIPAA Business Associates will cover HIPAA law that applies to Business Associates and the top HIPAA Compliance Priorities, broken into 5 steps needed for full HIPAA compliance:

• The HIPAA Compliance Official
• Risk Analysis and Risk Management - the basis of HIPAA Compliance broken down into its 3 basic parts and explained step-by-step
• Understand and implement the interconnected Business Associate Security Rule and Privacy Rule Compliance responsibilities with appropriate Policies and Procedures
• Learn how to investigate, assess and document Potential Breaches and if necessary, make notifications required by the Breach Notification Rule
• Understand Business Associate Agreements with a Covered Entity and a Subcontractor Business Associate. Write your own Business Associate Agreement, recognize red flags, and avoid making your Subcontractor Business Associate your agent under the Federal Common Law of Agency by mistake

• Health Care Practice and Business Associate Owners
• Chief Executive Officer
• Chief Operating Officer
• Chief Compliance Officer
• Chief Information Officer
• Chief Information Security Officer
• Compliance Official
• Risk Management Director
• HIPAA Compliance Official
• HIPAA Privacy Officer
• HIPAA Security Officer
• Information Technology Supervisor
• General Counsel - Associate General Counsel
• Attorney
• Certified Public Accountant