More Than 12 Million Healthcare Information Breaches in 2015 Alone!
Why is the ONC increasing HIPAA Audits?
It’s simple really, in 2015, more than 12 million healthcare related breaches occurred! How many will be compromised in 2016? Everyday we hear about another healthcare company getting hacked. HIPAA requires that patient data be secure, left alone most companies will not be in compliance.
Is your medical practice in compliance? If not, could your practice survive the fines levied after an audit?
Consider this one fine.
The practice agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules with the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR). The practice paid $750,000 and will adopt a robust corrective action plan to correct deficiencies in its HIPAA compliance program. (Click here for the complete story!)
Fines have have been levied into the $100 million range!
A simple Risk Analysis would have prevented this severe fine.
Could this be your medical practice?
To improve the efficiency and effectiveness of the health care system, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), Public Law 104-191, included Administrative Simplification provisions that required HHS to adopt national standards for electronic health care transactions and code sets, unique health identifiers, and security. At the same time, Congress recognized that advances in electronic technology could erode the privacy of health information. Consequently, Congress incorporated into HIPAA provisions that mandated the adoption of Federal privacy protections for individually identifiable health information.
With audits expected to increase this year, healthcare organizations increasingly invest in risk assessment software or services to ensure compliance. — Ailson Diana Information Week
Does your practice have the expertise needed to avoid the devastating penalties that can accompany an ONC Compliance Audit?
This is a summary of key elements of the Security Rule including who is covered, what information is protected, and what safeguards must be in place to ensure appropriate protection of electronic protected health information. Because it is an overview of the Security Rule, it does not address every detail of each provision.