Privacy And Security: Learn From Best Practices For HIPAA Compliance
01:00 PM EDT | 10:00 AM PDT | 12:00 PM CDT Duration 180 Minutes
Webinar Includes : All the training handouts , Certificate by the Speaker ,Q/A and 3 Hrs Live Webinar
"Hear By Angela Bazigos who recently quoted in Wall Street Journal for using training to bring regulatory compliance to the Boardroom. "
HIPAA, the Health Insurance Portability and Accountability Act, sets the standard for protecting sensitive patient data.
Any company that deals with protected health information (PHI) must ensure that all the required physical, network, and process security measures are in place and followed.
This includes covered entities (CE), anyone who provides treatment, payment and operations in healthcare, and business associates (BA), anyone with access to patient information and provides support in treatment, payment or operations. Subcontractors, or business associates of business associates, must also be in compliance
Why should you attend
HIPAA violations can prove quite costly for healthcare organizations. First, the HIPAA Breach Notification Rule within the omnibus set of regulations requires covered entities and any affected business associates to notify patients following a data breach. In addition to the notification costs, healthcare organizations can encounter fines after HIPAA audits mandated by the HITECH Act and conducted by the Office for Civil Rights(OCR). Providers could also face criminal penalties stemming from violations of the HIPAA privacy and security rules.
According to the US Department of Health and Human Services Office for Civil Rights, between April 2003 and January 2013 they received 91,000 complaints of HIPAA violations, in which 22,000 led to enforcement actions of varying kinds (from settlements to fines) and 521 led to referrals to the US Dept of Justice (criminal actions). Examples of significant breaches of protected information and other HIPAA violations include:
• the largest loss of data that affected 4.9 million people by Tricare Management of Virginia in 2011
• the largest fines of $4.3 million levied against Cignet Health of Maryland in 2010 for ignoring patients' requests to obtain copies of their own records and repeated ignoring of federal officials' inquiries
• the first criminal indictment was lodged in 2011 against a Virginia physician who shared information with a patient's employer "under the false pretenses that the patient was a serious and imminent threat to the safety of the public, when in fact he knew that the patient was not such a threat
Organizations can lower their risk of regulatory action through HIPAA compliance training programs. This webinar will give participants the tools that they need to ensure their organization is compliant with HIPAA regulations. It will clear any ambiguity or misinterpretation in any area of HIPAA or HITECH and will equip the participant with the latest happenings in this area
1. What is HIPAA?
2. Why is HIPAA Important?
3. HIPAA Definitions
4. HIPAA Enforcement
5. Patient Rights
6. HIPAA Privacy Requirements
7. The Breach Notification Rule
8. Release of Information (ROI)
9. HIPAA Security Rule
10. PHI Safeguarding Tips
11. Business Associate Agreements
12. HIPAA Violations and Complaints
Note: “HIPAA Certified” is not the same as “HIPAA compliant”. Not third party or hosting provider can make your organization HIPAA compliant. There is also no certification program recognized by the federal governing body of the HIPAA standard, the Department of Health and Human Services (HHS) and the Office of Civil Rights (OCR)
Who will Benefit
• Healthcare providers
• Health plan providers
• Healthcare clearinghouses
• Individual practitioners
• Privacy Officers
• Health Information Managers
• Legal Counsel
• Chief Compliance Officers
• Business Associates
• Covered Entities
• Medical Device Manufacturers
• Healthcare information exchanges
• Healthcare Information Technology Companies
Industries who can attend
The following is a more specific list of who needs to be HIPAA compliant:
• Covered healthcare providers (hospitals, clinics, regional health services, individual medical practitioners) that carry out transactions in electronic form
• Healthcare clearinghouses
• Health plans (including insurers, HMOs, Medicaid, Medicare prescription drug card sponsors, flexible spending accounts, public health authority, in addition to employers, schools or universities that collect, store or transmit EPHI, or electronic protected health information, to enroll employees or students in health plans)
• Their business associates (including private sector vendors and third-party administrators)