2016 brought an unprecedented ramp-up in OCR resolution agreements. In less than a year’s time, two large healthcare systems agreed to pay fines totaling over $11 million to the U.S. Department of Health and Human Services. The fines were in settlement of HIPAA violations for transgressions such as a lack of audit controls, insufficient safeguards for ePHI, and failure to provide timely notification of data breaches.
On this webinar, Speakers Chad P. Brouillard, trial and appellate lawyer practicing medical liability defense and healthcare law, and Nicholas Heester JD, CIPP, Health and Information Privacy & Security Specialist, U.S. Department of Health and Human Services, Office for Civil Rights, discussed vulnerabilities care providers can face as it relates to HIPAA requirements set forth by the Office for Civil Rights.
Watch this on-demand webinar for topic including:
- What the recent OCR Resolution Agreement on audit controls means for you
- How audit trails are used for litigation purposes
- What the systematic review of ALL applications holding PHI means under the HIPAA Security Rule
- What the OCR expects in your Risk Analysis of information systems holding PHI
- How your risk analysis results should assist in implementing reasonable and appropriate audit controls