HIPAA Breach Notification Rule - What you must do to Comply

On-Demand Schedule Sat, April 10, 2021 - Sat, April 17, 2021
Duration 90 Mins
Level Basic & Intermediate & Advanced
Webinar ID IQW20D0463

  • The HIPAA definition of a security incident
        1. Your internal definition
        2. HIPAA's definition
  • The HIPAA definition of a breach
  • The HIPAA definition of a reportable breach
  • The HIPAA test for whether a breach is reportable using the National Institute for Standards and Technology (NIST) test
  • Example of a NIST analysis
  • How do you report a breach

        1. To affected individuals
        2. To DHHS
        3. To others
  • How do you mitigate the harm of a breach

        1. To the subjects of the breach
        2. To your organization
  • How do you respond if DHHS investigates the breach

Overview of the webinar

HIPAA, the HITECH Act and now changes under the Omnibus Rule require covered entities and business associates to report certain breaches. Not all security incidents are breaches, and not all breaches are reportable breaches. This webinar will explain the law in easy-to-understand terms to help covered entities and business associates comply as quickly, easily, and effectively as possible in case they experience a reportable breach so that they can stand a better chance of avoiding as much as a seven-figure fine for violation of the HIPAA Breach Notification Rule. This webinar will also help you learn how not to report something that you don't need to report that might get you on the DHHS radar screen unnecessarily. This webinar will teach you how to frame what happened if you do need to report it, so as to minimize your potential liability. Objectives of the Presentation are:

  • What is a security incident
  • How do you investigate a security incident to determine whether it is a breach
  • What is a security breach
  • What is a reportable security breach
  • How do you report a security breach to minimize liability
  • How do you minimize harm to the subjects of the breach to minimize liability
  • How do you respond to investigations by DHHS

Who should attend?

  • HIPAA compliance officers
  • HIPAA security officers
  • HIPAA privacy officers
  • CFOs
  • CEOs
  • COOs
  • CIOs
  • Human Resources Directors
  • Business Office Managers
  • Administrators
  • Medical Records Personnel
  • Health Information Management Professionals
  • Healthcare Attorneys
  • Patient Accounts Managers
  • Billing Services
  • Physicians
  • Dentists
  • Pharmacists
  • Physical and Occupational Therapists
  • Mental and Behavioral Health Professionals
  • Speech and Language Pathologists and Audiologists
  • Nurses
  • Chiropractors and Business Associates

Why should you attend?

Privacy officers, security officers, compliance officers and healthcare attorneys who may have to decide whether a breach of health information is reportable absolutely need to know the rules so that they don't expose their covered entities, such as healthcare providers and health plans and now business associates of covered entities to seven-figure liability for failure to properly handle such a breach.

Faculty - Mr.Jonathan P. Tomes

Jonathan P. Tomes is a national HIPAA compliance consultant and attorney admitted in Illinois, Missouri, Kansas, and Oklahoma who practices in Kansas City, Kansas, and the greater Kansas City area. After he had retired from the U.S. Army as a JAGC officer, having been a military judge (which taught him how to read and interpret government regulations) and having spent several years as a military intelligence officer (which taught him about gathering and using information), he taught law at IIT Chicago-Kent College of Law before he opened his own private law practice. Mr. Tomes is President of EMR Legal, a national HIPAA compliance consulting firm. EMR Legal has consulted and trained over 1,000 HIPAA clients since 1998, ranging from Federal, State and County governments to large hospitals to small practices. Jon is currently working on an online HIPAA training video and an online HIPAA risk assessment.

04-28-2020 - HIPAA Breach Notification Rule-converted.pdf
For group or any booking support, contact: