©bongkarn thanyakij via Canva.com
HIPAA 2 - What Needs to Change in Policies and Procedures
This Webinar is over| Date | Oct 30, 2013 |
| Time | 01:00 PM EDT |
| Cost | $225.00 |
|
Online
|
Course Description: New rules have finalized the Interim Final Rule on HIPAA Breach Notification, but there has been an important change in how to determine whether or not a breach is reportable. Old policies and processes must be replaced with an updated process meeting the new rule’s requirements no later than September 23, 2013. HIPAA entities will need to follow the new rules or risk substantial fines and penalties, including multi-year corrective action plans.
Course Objective: HIPAA Breach Notification rules require notification of individuals and HHS when information security is breached, and the rules for determining what to report have changed. The HIPAA Breach Notification Rule required by the HITECH Act within the American Recovery and Reinvestment Act of 2009 requires all HIPAA covered entities and business associates to follow a number of steps to be in compliance. If there is a breach of protected health information that does not meet one of the strictly defined exceptions or has greater than a “low risk of compromise,” the breach must be reported to the individual, and all such breaches must be reported to the Secretary of the US Department of Health and Human Services at least annually.
Course Outline: I.Breach Notification Laws
Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc.). The titles are -
Course Objective: HIPAA Breach Notification rules require notification of individuals and HHS when information security is breached, and the rules for determining what to report have changed. The HIPAA Breach Notification Rule required by the HITECH Act within the American Recovery and Reinvestment Act of 2009 requires all HIPAA covered entities and business associates to follow a number of steps to be in compliance. If there is a breach of protected health information that does not meet one of the strictly defined exceptions or has greater than a “low risk of compromise,” the breach must be reported to the individual, and all such breaches must be reported to the Secretary of the US Department of Health and Human Services at least annually.
Course Outline: I.Breach Notification Laws
- State Breach Notification Laws
- Changes to HIPAA
- Federal Breach Notification Law and Regulation
- The Who, What, and How of Breach Notification
- Using an Information Security Management Process
- Using Risk Analysis and Risk Assessment
- Most Common Types of Breaches
- Information Security, Incident, and Breach Notification Policies
- The Importance of Documentation
- New HIPAA Violation Categories and Penalties
- Preparing for HIPAA Audits
- Case Studies
- History vs. the Future
- Why Attack Trends Are Changing
- Implications of New Directions in Attacks and Targets
Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc.). The titles are -
- Compliance director
- CEO
- CFO
- Privacy Officer
- Security Officer
- Information Systems Manager
- HIPAA Officer
- Chief Information Officer
- Health Information Manager
- Healthcare Counsel/lawyer
- Office Manager
- Contracts Manager
Create your own event
Turn your passion into a business.
Turn your passion into a business.