New Finalized Amendments To Hipaa Many Changes The Rules Needed For Compliance Webinar By Mentorheal - USAprice: contact company for price
understand what they have to do, and when, and what to keep in mind as
they move forward, in order to be prepared for compliance with the new
regulations. It will provide a comprehensive look at the changes in the
law and prepare attendees for the process of incorporating the changes
into how they do business in their facilities.
New changes modifying the HIPAA Privacy and Security Regulations are going into place to meet the privacy and security mandates within the HITECH Act in the American Recovery and Reinvestment Act of 2009. New requirements for business associates of HIPAA covered entities and requirements to notify individuals in the event of a breach are only two of the many areas affected in the new law, including new requirements for restriction and accounting of disclosures and increased enforcement activity.
Covered entities that use electronic health records (EHRs) will need to meet new access and disclosure rules and all kinds of business associates and their subcontractors will need to establish compliance programs. A whole range of new regulations around the release and accounting of electronic records have created new burdens that your EHR and your medical records department must deal with. And if you are required to have a HIPAA Notice of Privacy Practices, you will need to update that to show all the new rights that patients will have, such as electronic copies, new rights to restrict disclosures, and much more.
Business associates are now directly covered by the HIPAA privacy and security regulations and are liable for fines and penalties if they do not comply. In addition, there are new kinds of businesses that are considered to be business associates, such as Health Information Exchanges and e-Prescribing Gateways, but also patient safety organizations and any subcontractors of business associates, putting thousands of businesses under regulation that were not regulated by HHS before now. We will explain what a Business Associate needs to do differently under the new regulations.
Electronic records have new demands placed on them, in both providing access and in accounting for all disclosures of health information – the electronic age in health care brings new obligations to serve individuals as well as manage health information for healthcare professionals. We will discuss how disclosures must be tracked in an EHR and review the various ways patient records can be supplied electronically.
The new regulations will be reviewed and their effects on usual practices will be discussed, as will what policies need to be changed and how. We will show what policies and evidence you need to produce if you are audited by the HHS Office of Civil Rights. Now that there is a legislative mandate to audit compliance, and a random audit plan well under way, you need to be prepared to respond to audit requests.
Not only are the compliance rules changed, but the enforcement rules have changed, with a new four-tier violation schedule with increased minimum and maximum fines, and mandatory fines for willful neglect of compliance that start at $10, 000 even if the problem is corrected within 30 days of discovery. Violations that are not promptly corrected carry mandatory minimum fines starting at $50, 000 and can reach $1.5 million for any particular violation. And any reports of willful neglect are required to be investigated under the law. Even violations for a reasonable cause or with reasonable diligence taken are subject to penalty.
Whereas the former practice of USDHHS has been to audit compliance only in instances where a violation was reported, the law now requires USDHHS to conduct a regular HIPAA compliance audit program. The new audit program is already under way. With the far-reaching changes in the rules and the new enforcement and penalty levels, it’s never been more important to review your HIPAA compliance and meet the new requirements.
Why should you attend:
The HIPAA privacy and security regulations are changing in ways that affect every health care-related entity, from providers to insurers to business associates, and more. The HIPAA Privacy and Security Regulations have been modified in regulations previously issued as interim final rules (IFRs) and notices of proposed rulemaking (NPRMs) by the US Department of Health and Human Services (USDHHS), and many of these new regulations are expected to be finalized in the summer of 2012 and go into effect just 60 days later.
All kinds of covered entities, and now, business associates of covered entities and their subcontractors as well, need to review their HIPAA compliance, policies, and procedures to see if they are prepared to meet the changes in the rules. Some subcontractors of business associates may not even be aware that they handle protected health information and now fall under the regulations.
Changes in marketing regulations are creating new obligations and limiting behaviours that may already be in place.
New regulations around the release and accounting of electronic records are creating new burdens that your EHR and your medical records department must deal with. You will even have to update your HIPAA Notice of Privacy Practices to show how you support the new patient rights under HIPAA as amended by HITECH.
The enforcement rules have changed, with a new four-tier violation schedule with increased minimum and maximum fines, and mandatory fines for willful neglect of compliance that start at $10, 000 even if the problem is corrected within 30 days of discovery. Violations that are not promptly corrected carry mandatory minimum fines starting at $50, 000 and can reach $1.5 million for any particular violation. And any reports of willful neglect are required to be investigated under the law. Even violations for a reasonable cause or with reasonable diligence taken are subject to penalty.
Areas Covered in the Session:
The new regulations will be reviewed and their effects on usual practices will be discussed, as well as what policies need to be changed and how.
We will show what policies and evidence you need to produce if you are audited by the HHS Office of Civil Rights. Now that there is a legislative mandate to audit compliance, and a random audit plan under way, you need to be prepared to respond to audit requests.
The features that must be available in EHR systems and the questions to ask system vendors will be described. The processes for responding to requests for copies of electronic records and accountings of disclosures will be related to the regulations that require them.
The role of business associates will be discussed, and the extension of the accounting out to them by way of their use of Designated Record Set data will be explored, including potential necessary changes to business associate agreements.
Learn how the new regulations change the way individuals have access to their records, and how much they can find out about who has accessed their records.
Find out about how Individuals can now request certain restrictions on disclosures that you must honor.
Learn about the new requirements for disclosers of health information to apply “minimum necessary” standards.
Understand the new requirements for Business Associates to comply with HIPAA privacy protections and security safeguards and how BAs are subject to enforcement and penalties directly by HHS.
Learn how Health Information Exchanges, Regional Health Information Exchanges, and e-Prescribing gateways are now considered to be Business Associates.
Find out about how new limitations on marketing and fund-raising may change how entities can reach out to individuals.
Learn all about how new audit and penalty requirements increase the need to make sure you are in compliance before HHS OCR knocks on the door.
Who Will Benefit:
Information Systems Manager
Chief Information Officer
Health Information Manager
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a variety of health care providers, businesses, universities, small and large hospitals, urban and rural mental health and social service agencies, health insurance plans, and health care business associates.
Sheldon-Dean serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Workgroup for Electronic Data Interchange Privacy and Security Workgroup, serves on the WEDI Breach Notification sub-workgroup, and is a recipient of the WEDI 2011 Award of Merit. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at numerous regional and national healthcare association conferences and conventions.
Sheldon-Dean has more than 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related Web sites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. In addition, he has eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.
New Finalized Amendments To Hipaa Many Changes The Rules Needed For Compliance Webinar By Mentorheal
Thank you in advance for your consideration
- Posted By: MentorHealth
- Phone: 8004479407
- Address: NetZealous LLC-161 Mission Falls Lane, Suite 216, Fremont, CA, USA
- Website: http://www.mentorhealth.com
Published date: October 5, 2012 -
- Business Description: MentorHealth is a comprehensive training source for healthcare
professionals. Our trainings are high on value, but not on cost.
MentorHealth is the right training solution for healthcare
professionals. With MentorHealth, healthcare professionals can make use
of the best benefits relating to their professional training.
Webinar On Benchmark Your Kpis To Best Practices From MentorhealthBusiness Training - MentorHealth - USA - October 5, 2012 - contact company for price
Summary: MentorHealth, a leading provider of online training for the healthcare industry, is organizing a webinar on the topic, “Benchmark Your KPIs to Best Practices”, on November 28. Rosemarie Nelson, a well- known medical practice management consu...
Webinar On Rcm Track Your Revenue Cycle And Maximize Performance From MentorhealthBusiness Training - MentorHealth - USA - October 5, 2012 - contact company for price
Summary: Rosemarie Nelson, a well-known medical practice management consultant, will be the speaker of a webinar that MentorHealth, a leading provider of online training for the healthcare industry, is organizing a webinar on October 17. The topic of...
Webinar On Us Office Of Inspector General Corporate Integrity Agreements Offer A Second Chance For MBusiness Training - MentorHealth - USA - October 5, 2012 - contact company for price
Summary: Joseph Batte, President of Kristall Associates, will be the speaker at a webinar that MentorHealth, a leading provider of online training for the healthcare industry, is organizing on November 27. The topic of the webinar is “US Office of In...
Safe Trade Tips
- Ask for business references and check them
- Use a payment method that offers better protection for all such as Letters of credit and verified professional escrow services. Avoid payments in advance such as money transfers
- Verify their business via their local Chamber of Commerce
- Search the internet using their website address, their business name, their phone and fax numbers, and their email addresses to see if you can find any feedback about them.
- Get to know more about scams to avoid: Internet Crime Complaint Center - International Financial Scams
- This site is never involved in any transaction, and does not handle payments, shipping, guarantee transactions, provide escrow services, or offer "buyer protection" or "seller certification"