HIPAA audit

HIPAA Audit: OCR Is On The Move

Last week, the HHS Office for Civil Rights (OCR) announced the launch of phase 2 of the HIPAA Audit Program. OCR’s goal is to proactively uncover and address risks and vulnerabilities to protected health information (PHI). Effective immediately, OCR will ensure Covered Entities (CEs), their Business Associates (BAs) and vendors have comprehensive risk management frameworks…

Breast Health Specialists of Oklahoma

Leading specialty care provider assures HIPAA compliance for three years and counting with Aegify Compliance Manager Dr. John Frame, highly respected surgeon and founder of Breast Health Specialists of Oklahoma (BHS of OK), has operated on thousands of breast cancer patients over his nearly three decades of surgical experience. However, he also runs a vibrant,…

Finding ‘Meaningful Use’ in a simple HIPAA Solution

Background & Challenges Barbara is the office manager for a Grand Rapids, Michigan family practice with four staffers and 1800 patients. The practitioner has been providing healthcare services to patients for 24 years. While attending her monthly association meeting of regional physician office managers, Barbara met local services provider Joe Dylewski, president of ATMP Solutions,…

Prepare for “Phase 2” HIPAA Audits

The Department of Health and Human Services’ Office for Civil Rights (HHS and OCR) has announced its Phase 2 audit program.  HHS auditors will concentrate on high-risk areas, eliminating on-site visits and potentially integrating the audits into OCR’s formal enforcement program. Phase 2 audits will be conducted by OCR staff and will likely involve a…

Meaningful Use Incentive Payments – OIG Audits Begin

The OIG (Office of Inspector General, US HHS Department) 2015 audits will focus on: Extent to which hospitals comply with the contingency planning requirements of HIPAA in terms of establishing policies and procedures for responding to any emergency or events that could compromise protected health information. How truly were the providers entitled to meaningful use…

Don’t let ePHI make your business another Connecticut case of HIPAA Negligence

Technological growth has empowered today’s healthcare industry with a number of software applications and IT infrastructure which enables them to communicate, store and process patient health information the digital way. However, with cyber threat lurking above the IT enabled environment, the Office for Civil Rights had enforced the HIPAA Privacy Rule, as a sequel to…