NJ - (201) 891-3726

NJ

OH - (513) 654-6732

OH
Secure File Transfer

NJ - (201) 891-3726

OH - (513) 654-6732

  • Speaking Engagements

    Campanella Law Office is pleased to offer comprehensive educational events for its clients, colleagues and various societies, associations and groups in the community and nationwide. Our presentations are interactive and informative and can be tailored to your specific audience size, presentation preferences and group needs.

    REQUEST A PRESENTATION

  • Complimentary Consultation

    Our office will provide a dial-in line if you will have more than one individual in attendance for the consultation. Select a day and time for consultation. Thank you.

    Book A Consultation

HIPAA Audit Program Has Resumed: Are Your Cybersecurity Policies Ready for Review?

November 4th, 2024 by Administrator | Posted in At a Glance, Business, EHR, Health Care, HIPAA |

Tags: , , , , , ,

Recently, the Health and Human Services Office for Civil Rights (HHS OCR) announced that it would be resuming the Health Insurance Portability and Accountability Act (HIPAA) Audit program established by the Health Information Technology for Economic and Clinical Health Act of 2009 (the “Act”). The audits will focus on the HIPAA security rule which establishes a national standard for protecting individuals’ electronic personal health information (ePHI). As such, the rule mandates that appropriate administrative, physical, and technical safeguards be in place to ensure the confidentiality, integrity, and security of ePHI.

The audits intended to gauge compliance with HIPAA, identify best practices, discover risks and vulnerabilities, and implement preventative measures to address potential breaches. The first round of audits took place in 2009, and a second round was completed between 2016 and 2017. According to the HHS OCR, the current round of audits will focus on the security rule due to growing concerns surrounding increased cybersecurity incidents and breaches caused by hacking, malware, and ransomware.

As a prerequisite to the newest round of audits, the HHS OCR has begun to issue “HIPAA Audit Participant Surveys” to those covered entities and business associates that participated in the 2016-2017 HIPAA audits. Covered entities include most health care providers, health plans, health care clearinghouses, and their business associates. The information collected from the surveys will, among other things, help measure the effectiveness of previous audits and help improve the audit program, overall.

In anticipation of the audits that will certainly follow, covered entities should consider conducting their own internal review of ePHI security policies to identify weaknesses and to address compliance gaps which might exist. To assist small to medium-sized health care practices with this process, the HHS OCR maintains a public database of privacy and security resources and tools including a security risk assessment tool.

(This blog, prepared by Campanella Law Office, is for general informational purposes only and is not intended to convey specific legal advice, nor is it intended to create or constitute an attorney-client relationship.)

Comments are closed.

« Previous EntryNext Entry »

© 2024 Campanella Law Office LLC  All rights reserved.
Disclaimer Attorney Advertising. No part of this Advertising has been approved by the Supreme Court of New Jersey. Prior results do not guarantee a similar outcome. The materials on this website are for informational purposes only, do not imply that our firm’s attorneys are certified as specialists and do not constitute legal advice. Results may vary depending on the facts and legal circumstances facing an individual or business. The information contained on this web site is not intended to create, and does not create, an attorney-client relationship between this firm and any recipient of the information.

Recipients or readers of this site should not act upon any information contained on the site without first obtaining legal counsel.

Super Lawyers Magazine selects only 5 percent of all attorneys in the state to be on the Super Lawyers List based on peer recognition, professional achievement in legal practice, and other factors.

Please visit the Super Lawyers Selection Process for a detailed description of the Super Lawyers selection methodology.

NJBIZ Leaders in the law selection criteria can be found here.

Top 100 Magazine selection process can be found here.

NAWL Selection Process can be found here.

Bergen Magazine Top Lawyers list is generated by a hired Professional Research Services (“PRS”), a company in Troy, Michigan, to conduct a peer-review of hundreds of lawyer who it asked to select the peers they consider the best in their specialty areas. SJBIZ/SJ Magazine’s Top Attorney list is drawn from nominations by other attorneys in the region who must provide their New Jersey Attorney ID number to make nominations through the magazine’s website.  The professionals on the NJ Family Magazine list were nominated by readers who were surveyed by New Jersey Family.  The (201) Best of Bergen poll is part of the Official Community Choice Awards a one-of-a-kind contest is conducted through the USA Today Network, with publications in more than 100 regions nationwide. Readers nominate and vote for the best businesses in their locations.