Over the next few months, the Office for Civil Rights (OCR) will begin the second phase of its HIPAA audit program, as part of its continued efforts to assess compliance with the HIPAA Privacy, Security and Breach Notification Rules.
Phase II of the HIPAA Audit Program has begun, with many covered entities and business associates receiving a “Audit Entity Contact Verification” message from the Department of Health and Human Services (HHS) and the Office of Civil Rights (OCR).
Deeper Dive: Integrating Physician Practices into a Health System’s HIPAA Privacy and Security Program
The healthcare industry shift to a value-based business model is resulting in greater alignment between hospitals and physicians to provide quality, outcomes driven care in order to receive payment for health care services.
Covered Entities need to continue to check their inboxes for emails from the HHS Office for Civil Rights (“OCR”) requesting verification of contact information in connection with Phase 2 of the HIPAA Audit Program.
The United States Equal Employment Opportunity Commission (“EEOC”) issued final rules yesterday establishing how employer-sponsored wellness programs can comply with the Americans with Disabilities Act (“ADA”) and the Genetic Information Nondiscrimination Act (“GINA”), without discriminating against employees or running afoul of the Health Insurance Portability and Accountability Act (“HIPAA”).
Daily struggles to protect personal data from hacking, phishing, theft and loss make it easy to forget that HIPAA is not just about privacy and security.
The US Department of Health and Human Services Office for Civil Rights (OCR) will soon begin a second phase of audits for compliance with HIPAA privacy, security and breach notification standards as required by the HITECH Act.
On April 14, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), entered into a $750,000 settlement with a North Carolina orthopaedic clinic arising from the clinic’s disclosure of x-ray films and related protected health information of 17,300 patients to an entity that was engaged by the clinic to transfer x-ray images to electronic media.
The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services has been busy. In addition to its recent efforts to begin audits of covered entities and business associates, OCR has announced a slew of enforcement actions against covered entities for alleged HIPAA violations.
OCR has announced several recent settlement agreements to resolve violations of the Health Insurance Portability and Accountability Act (“HIPAA”).