F COMPLIANCE - NueMD · Housekeeping LEGAL NOTICE This program is educational and does not...
Transcript of F COMPLIANCE - NueMD · Housekeeping LEGAL NOTICE This program is educational and does not...
COMPLIANCEACHIEVING
How to Prepare for a HIPAA Audita webinar series presented by NueMD
TODAY'S
PRESENTERSJason Karn
Chief Compliance OfficerTotal HIPAA Compliance
Daniel B. Brown, Esq.Attorney at Law
Taylor English
HousekeepingLEGAL NOTICE
This program is educational and does notconstitute, and may not be construed as,legal advice to, or creating an attorney-clientrelationship with, any person or entity.
The materials referenced here are subject tochange so frequently reviewing the sourcematerial is suggested.
3
HIPAA AUDITS
AUDITS will cover hospitals, healthcareproviders, health plans, and businessassociates.
AUDITORS will be looking for a currentcompliance plan and history ofcompliance.
4
NueMD 2016Industry Survey
5
60%STILL UNAWARE OF PENDING AUDITS
6
30%HAVE NOT CREATED A PLAN
7
54%HAVE NOT APPOINTED
PRIVACY OR SECURITY OFFICERS
8
58%PROVIDE ANNUAL TRAINING
Only
9
Tips to Preparefor an Audit
10
Prepare andreview your HIPAA
Compliance Plan.
TIP # 1
11
Train your staffannually.
TIP # 2
12
What's in aPrivacy Plan?
13
PRIVACY PLANCHECKLIST
Assign Privacy Officer
Conduct Risk Assessment
Establish Privacy Policies and Procedures
Create/Update Business Associate Agreements
Provide Notice of Privacy Practices
Record Training Activities14
What's in aSecurity Plan?
15
SECURITY PLANCHECKLIST
Assign Security Officer
Conduct Risk Assessment
Establish Security Policies and Procedures
Design Backup Plan
Create Disaster Recovery Plan
Determine Access Levels16
What's in aBreach Plan?
17
BREACH PLANCHECKLIST
Establish Procedures for Identifying a Breach
Outline Steps for Reporting a Breach
Understand Notification Requirements
18
Respondingto an Audit
19
You will have 10-14business days to
respond.
TIP # 1
20
Only supply therequesteddocumentation.
TIP # 2
21
Risk AssessmentPolicies & ProceduresBusiness Associate AgreementsHistory of HIPAA Compliance
An auditor will ask for...
22
Penalties forNoncompliance
23
Lincare was fined$239,800 for
noncompliance inFebruary 2016.
24
PT Pool & LandPhysical Therapywas fined $25k forposting patientinformation online.
25
How long does ittake to achievecompliance?
26
It takes roughly40-50 hours.
27
Special Thanks
Taylor English is a full-service law firm built from the ground up toprovide highest-quality legal services for optimal value. The firm wasfounded in 2005 and represents all types of clients—from Fortune500 companies to start-ups to individuals.
Established in 2003, Total HIPAA provides HIPAA compliancedocumentation and training to insurance agencies, employer groups,medical providers, dental providers and their business associates.
Receive a 10% discount on products/services with code: Plan10