BEGIN:VCALENDAR
VERSION:2.0
PRODID:icalendar-ruby
CALSCALE:GREGORIAN
BEGIN:VEVENT
DTSTAMP:20240329T085053Z
UID:2e44a4f4-4b22-4695-87b3-7f9e38d5cf54
DTSTART:20210917T120000
DTEND:20210918T120000
CLASS:PRIVATE
DESCRIPTION:Session Highlights
\n&bull\; Fines and pe
nalties for violations of the HIPAA regulations have been updated to refle
ct the culpability of an organization and cost-of-living increases\, and n
ow include mandatory fines for willful neglect of the rules that begin at
$10\,000 minimum and can reach $50\,000 per day\, with maximums over $1.7
million.
\n&bull\; HIPAA enforcement actions resulting in settlements
or penalties of up to $16 million will be discussed\, explaining the type
of each violation and its impact.
\n&bull\; The key issues driving e
ach enforcement action will be explained\, including such topics as breach
es\, communications\, ransomware\, and privacy rule violations.
\n&bu
ll\; Find out what HHS OCR is likely to ask you if you are selected for an
audit or enforcement review\, and what you'\;ll have to have prepared
already when they do.
\n&bull\; The HIPAA Audit Protocol will be exam
ined along with the sets of questions asked at other HIPAA audits previous
ly.
\n&bull\; Find out what the rules are that you need to comply wit
h and what policies you can adopt that can help you come into compliance.<
br />\n&bull\; Learn how having a good compliance process can help you sta
y compliant more easily.
\n&bull\; Find out what you'\;ll need to
have documented to survive an audit or enforcement review and avoid fines.
\n&bull\; Learn how to use the contents of the HIPAA Audit Protocol
as the foundation of your compliance activities and documentation.\n
\n
\nWho Will Benefit\n\n\n - Compliance
director
\n - CEO
\n - CFO
\n - Privacy Officer
\n
- Security Officer
\n - Information Systems Manager
\n - HIP
AA Officer
\n - Chief Information Officer
\n - Health Informat
ion Manager
\n - Healthcare Counsel/lawyer
\n - Office Manager
\n - Contracts Manager\n
\n  \; \n
\nOverview
\nWhen considering what to focus on for complianc
e and internal audits\, there is no better source of information about iss
ues to avoid than the list of enforcement actions taken in HIPAA complianc
e that have resulted in penalties for the violators. The details of the en
forcement actions\, including the reasons\, penalties\, and corrective act
ion plans involved with each\, provide indicators of issues to be on the l
ookout for\, that can cause significant pain if left unaddressed.
\nI
n addition\, the maximum penalties for HIPAA violations have been revised\
, so that the maximums for each tier of a violation more closely reflect t
he maximums identified in the HITECH Act\, and are now related to the culp
ability of the organization. Organizations that try to meet requirements w
ill receive lower maximum fines than those that are negligent. And the max
imums have also been revised to reflect a cost-of-living increase.
\n
The random HIPAA Compliance Audit program had a year of trial audits in 20
12 and a second round of audits\, this time including HIPAA Business Assoc
iates\, concluded in 2020. The law calls for a permanent Audit program\, b
ut HHS has indicated that the HIPAA audit program will be on hold for at l
east the time being\, and that the next product will be a report on best p
ractices learned in the audits conducted so far. But that doesn&rsquo\;t m
ean there will be no enforcement of the HIPAA rules. In fact\, preparing f
or a HIPAA Audit is one of the best ways to be ready to respond to any enf
orcement action\, and going through an internal HIPAA Audit will help you
find issues before they become problems that can lead to penalties.
\
nIn this session we will review the enforcement actions taken by HHS and s
tate Attorneys General to illustrate the issues concerned and explain how
to avoid them\, and the penalties that can result when they are not avoide
d. Issues will be explored in depth in several areas in order to explain t
he regulatory requirements and the means for meeting them.
\nWe will
also discuss the HIPAA audit program and how it works\, and discuss the ar
eas that caused the most issues in the 2012 audits and the areas that were
targeted in the 2020 audits. We will explore what kind of issues were mos
t prevalent and what kind of entities had the most problems\, and show whe
re entities need to improve their compliance the
\nmost. We will also
explore the typical risk issues that lead to breaches of health informati
on and see how those issues may be targets for auditors and enforcement ac
tion in the future.
\nKnowing what questions are likely to be asked a
nd have been asked at prior HIPAA compliance audits can make preparing for
and surviving a HIPAA audit or enforcement review much easier. USDHHS has
published an updated\, July 2020 protocol for the HIPAA audits\, so it is
possible to know how to prepare for an audit or enforcement review. Nearl
y any health care covered entity may be subject to an audit or enforcement
investigation\; all entities need to know what kinds of questions they&rs
quo\;ll be asked\, what information they'\;ll need to provide and how t
o prevent issues that could lead to violations and fines.
\nWe will e
xamine the updated 2020 HIPAA Audit Protocol as well as other questionnair
es that have been used in the past and may be used to help prepare an orga
nization for a future review. We will present methods for using the conten
ts of the HIPAA Audit Protocol to build your own compliance plan by extrac
ting the contents and relating your compliance activities and documentatio
n directly to the questions that might be asked\, thereby creating a compl
iance management tool to ensure continued compliance improvement.
\nW
e will review the contents of the 2020 HIPAA Audit Protocol to show what d
ocumentation needs to be on hand should your organization be selected for
an audit or enforcement action. We will explain the enforcement regulation
s and the recent changes that increase fines and create new penalty levels
\, including new penalties for willful neglect of compliance that begin at
$10\,000. Documentation requirements for compliance will be explored.
\nThe results of prior HHS audits and enforcement actions (and their pen
alties) will be discussed\, including recent actions involving multi-milli
on-dollar fines and settlements. A plan for attaining compliance will be p
resented. The steps to follow to prepare for an audit and respond to an au
dit request will be outlined. In addition\, upcoming trends in information
security risks will be discussed so you can start to plan for the work yo
u'\;ll need to do to stay in compliance and keep patient information pr
ivate and secure.
\n \;
SUMMARY:3 Hrs Live Webinar HIPAA Audit and Enforcement Update
BEGIN:VALARM
ACTION:DISPLAY
TRIGGER:-PT1H
SUMMARY:3 Hrs Live Webinar HIPAA Audit and Enforcement Update
END:VALARM
END:VEVENT
END:VCALENDAR