Purchase any WEBINAR and get
10% Off
CODE: SAVE10
T&C applicable, please referFAQ
Validity : 11th Apr'24 to 21st Apr'24
HIPAA Planning for 2020 and Beyond - Protecting Patient Information Privacy and Security
- Understand what might be expected for HIPAA in 2020
- Find out about the most frequent compliance issues
- Anticipated changes to Accounting of Disclosures
- Examine new guidance on obligations of Business Associates
- Look at Individual Access rights, and an entity’s obligations
- Protection from Hackers and Ransomware
- Issues of portable devices and patient communications
- Proposed changes to synchronize 42 CFR Part 2 with HIPAA
- Learn about being prepared for enforcement and auditing
Overview of the webinar
This session will provide the attendee a review of the current enforcement actions, audit focus, privacy, security, and breach issues, and expected regulatory changes in HIPAA, and help the compliance specialist prepare for a year of HIPAA work including responding to issues and planning for regular compliance activities.
The most significant issues facing HIPAA professionals will be presented as well as the regular processes that should be in place to help avoid issues in the first place. We will discuss how to consider risk analysis as a means to planning your mitigation activities, and how to plan out dealing with the issues discovered in the analysis, describing how to use simple tools to manage your compliance over time. The importance of using all the safeguards in the regulations will be illustrated by one result of not monitoring access of health information: a $5.5 million penalty for not monitoring access and allowing inappropriate access to continue for years unchecked.
The HHS focus on providing patients access to their PHI will be explored by examining the recent audit questions on the topic and the guidance released by HHS on the topic. Patient access of data continues to be an important topic at the US DHHS, and has been a recent focal point of HIPAA enforcement activity. The proposed Information Blocking rules intersect with HIPAA, and HIPAA is being enforced to support access and the initiative to ease access of information.
Several other changes to be explored include:
- There may be a change to requirement to Obtain an Acknowledgement of the Receipt of a Notice of Privacy Practices
- There may be a change to rules under TCPA (regarding calling or messaging cell phones)
- Changes to ACA may impact the use of HIPAA rights to limit disclosures
- Guidance has recently been provided on the HIPAA compliance liability of Business Associates
- 42 CFR Part 2 (regarding Substance Use Disorder information) may become better aligned with HIPAA
- There is inadequate coverage under HIPAA for new technologies and new kinds of patient information technologies
The HHS and FBI guidance on Ransomware will be explored, so that you can have an idea of how to best protect your office from the latest tool of the hackers, and how to respond if you are targeted. We’ll also cover how to provide the best training and education to prevent these issues.
We will use a number of resources, such as guidance from HHS and the National Institute of Standards and Technology (NIST) to examine the role of portable devices, e-mail, and texting in health care, and how to be more productive with these tools while maintaining compliance and protecting patient information.
New rules expected for Accounting of Disclosures will be explored and their expected futures and impacts will be discussed, and impacts of changes to 42 CFR Part 2 and controls on information relating to substance use disorders will be explained.
Who should attend?
- Compliance Manager
- HIPAA Privacy Officer
- HIPAA Security Officer
- CEO
- Office Manager
- HR Director
- Privacy Officer
- CIO
- Records Release Manager
- HIM Manager
- Counsel
Why should you attend?
The Health Insurance Portability and Accountability Act of 1996 has now been around for nearly a quarter century, and the regulations have evolved since the Privacy Rule first became enforceable in 2003. There have been numerous enforcement settlements, there are new threats to the privacy and security of patient information, and still more changes in the rules are expected based on the HITECH Act and goals for greater patient access rights and integration of care services.
This session will look at the current state of HIPAA compliance and identify expected changes in the rules in the coming year, as well as examine the focus and results of various HIPAA enforcement actions to identify areas that deserve your attention in the coming year to ensure HIPAA compliance.
Faculty - Mr.Jim Sheldon-Dean
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities. He is a frequent speaker regarding HIPAA, including speaking engagements at numerous regional and national healthcare association conferences and conventions and the annual NIST/OCR HIPAA Security Conference. Sheldon-Dean has more than 16 years of experience specializing in HIPAA compliance, more than 34 years of experience in policy analysis and implementation, business process analysis, information systems and software development, and 8 years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.