Group items tagged

Overview: This lesson will be going into great detail regarding your practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk. Areas Covered in the Session: Updates for 2016 BYOD Portable devices B

Overview: The primary goal of this session is to demonstrate why the health care organization needs to perform a risk assessment and how to perform the risk assessment. This includes a description of the types of breaches of protected health information that have already occurred and the reasons those breaches happened. The presentation then provides that reasons that a risk assessment is required in a health care organization and who needs to perform the assessment. There are a number of approaches available both for purchase on the web and performed by professionals on site. This discussion helps the participant determine which approach is best for their health care organization and what portions of the assessment are most important to the organization. The topic addresses the key components of a risk assessment and how to perform the risk assessment. This includes how to define the specific risks, how to know, how to assess the likelihood and impact of the risk and the final determination on the level of severity of the risk for the organization. Finally, the session explains how to interpret the results of the risk assessment, how to use the results of the risk assessment for preparing the health care organization's policies and procedures and how to conduct the HIPAA training for its staff. Why should you attend: In addition to the negative publicity and potential fines, a breach of a patient's health information often leads to litigation which is also time consuming and costly. The way to avoid these situations is to perform a Risk Assessment to understand where the health care organization is risk of an unauthorized breach and provide a basis for becoming HIPAA compliant. There are three reasons why a Risk Assessment is necessary: First, both the HIPAA Privacy and Security Regulations require a Risk Assessment for the organization to be HIPAA compliant Second, as a result of the Risk Assessment the organization knows where it needs to address its effo

Overview: Being in compliance with HIPAA involves not only ensuring you provide the appropriate patient rights and controls on your uses and disclosures of protected health information, but you also have the proper policies and procedures in place. If audited or the subject of a compliance review you will be required to show the government you have all the necessary documentation in place for safeguarding patient Protected Health Information and indicate how you addressed all required security safeguards. This starts with the fundamentals of a HIPAA compliance program. If your organization needs to understand the role of the HIPAA Security Official, the requirements, and make sure the current compliance program is adequate and can withstand government scrutiny, please join us for this informative and interactive course. Why should you Attend: The role of the HIPAA Security Official is critically important in complying with the HIPAA Security Rule. Besides being responsible for many of the daily operations within an organization, the Security Official is tasked with managing the HIPAA compliance program. Knowing what is required is part of the Security Official's duties. Attendees will leave the course clearly understanding of all the requirements for a comprehensive HIPAA compliance program and to make sure on organization has the proper policies and procedures in place. After completing this course, a HIPAA Security Official will have a clear understanding for what needs to be place when it comes to all of the HIPAA regulations. Areas Covered in the Session: Why was HIPAA created? Who Must Comply with HIPAA Requirements? What are the HIPAA Security and Privacy Rules? The Role of the HIPAA Security Official What is a HIPAA Compliance Program? What is a HIPAA Risk Management Plan? What is meant by "Required" and "Addressable" Implementation Specifications? What are Administrative, Technical, and Physical Safeguards Requirements? What is a HIPAA Risk Asses

Overview: Being in compliance with HIPAA involves not only ensuring you provide the appropriate patient rights and controls on your uses and disclosures of protected health information, but you also have the proper policies and procedures in place. If audited or the subject of a compliance review you will be required to show the government you have all the necessary documentation in place for safeguarding patient Protected Health Information and indicate how you addressed all required security safeguards. This starts with the understanding the fundamentals of a HIPAA compliance. If your healthcare practice, business, or organization needs to understand what is required to protect health records or make sure your current safeguards are adequate and can withstand government scrutiny, please join us for this informative and interactive course. Why should you Attend: With a substantial increase HIPAA data breaches, organizations must understand the requirements to safeguard protected health information. Attendees will leave the course clearly understanding of all the requirements that must be in place for protecting the health records their organizations maintain, create, transmit, or store. After completing this course, a Covered Entity or Business Associate will have a clear understanding for what needs to be place when it comes to all of the HIPAA regulations. Areas Covered in the Session: Why was HIPAA created? Who Must Comply with HIPAA Requirements? What are the HIPAA Security and Privacy Rules? What is a HIPAA Risk Management Plan? What is meant by "Required" and "Addressable" Implementation Specifications? What are Administrative, Technical, and Physical Safeguards Requirements? What is a HIPAA Risk Assessment? What are HIPAA training requirements? What is a HIPAA data breach and what happens if it occurs? What are the penalties and fines for non-compliance and how to avoid them? Creating a Culture of Compliance Questions Who Will Benefit: Compliance Of

Overview: FDA 7348.811 section 1 states, "Regardless of the type of system used by the clinical site, the regulatory requirements for clinical data do not change whether clinical data are captured on paper, electronically, or using a hybrid system." What type of system is best for your program and investigator capabilities? The wrong choice yields inspectional non compliance. The right choice of electronic data capture, direct data entry, and data management depends on a sponsor assessment of the systems and procedures at the investigator site as compliant with FDA inspectional requirements. Additional source documentation procedures (origination, authorization, and signature) are required at the investigator site to address the electronic data capture process. It is these three FDA mandated inspectional criteria, applicable to every electronic data element, that generate most of the significant inspectional noncompliant findings. Some data elements are more likely to be associated with the findings of noncompliance than others. It is in fact difficult to determine which data requires or does not require original source documentation and what defines "original source documentation". Why should you attend: Investigators commonly assume that the new guidance and regulations reduce the need for source documentation in clinical trials. In fact, there are new procedural documents relevant to the electronic source documents and direct data entry that are required to comply with the current inspectional standards and the final guidance. Sponsor due diligence in choosing, training, and monitoring investigator sites to enable the use of compliant electronic data capture is required. Basic knowledge of part 11 and GCP requirements will be helpful in attending this advanced webinar. The focus will be on the additional FDA inspectional requirements for electronic data capture, and the impact of using electronic data capture on the seven FDA inspectional priority objectives

Overview: This webinar will provide up to date information about what constitutes blood borne pathogens from infectious materials, as well as other potentially infectious materials. The webinar will provide answers about how to prevent exposures, deal with spills or exposures should they occur, and the how to recognize the hazards of blood borne pathogens. A thorough description of the types of infections of concern for blood borne pathogens, how one might be exposed, the differences between blood born infections and other potentially infectious materials, methods for dealing with potential exposures or spills, and the requirements from OSHA to protect workers from exposure or to track exposures if they occur. Areas Covered in the Session: Infectious materials Other potentially infectious materials Prophylactic techniques that might be available Use of personal protective equipment Policies and procedures required by OSHA to protect workers Who Will Benefit: Safety Professionals Administrators Lab Workers Those who might be exposed to blood borne pathogens Speaker Profile Kenneth S. Weinberg is an independent consultant in environmental health and safety. Dr. Weinberg has consulted for several companies in the areas of OSHA Injury and Illness reporting, as well as auditing for OSHA inspections. He has worked as the Director of Safety at Mass. General Hospital in Boston for almost twelve years, and has written several books on the topics of health care safety, OSHA, and Indoor Air Quality. He has also written several articles for prominent national safety publications, and serves on the editorial advisory boards for safety publications. He Also has been Administrator of the Health Care Divisio0n of the American Society of Safety Engineers, and is a member of several panels that advice on safety related matters. Price : $139.00 Contact Info: MentorHealth Phone No: 1-800-385-1607 FaX: 302-288-6884 support@mentorhealth.com Event Link: http://bit.ly/Blood-B

Overview: As defined by the Health Information Portability and Accountability Act (HIPAA), a Business Associate can be any organization or person working in association with or providing services to a Covered Entity who handles or discloses Protected Health Information (PHI) or Personal Health Records (PHR). With certain exceptions, a person or entity that creates, receives, maintains, or transmits PHI for a function or activity regulated by the HIPAA Privacy Rule for a Covered Entity is a Business Associate. The HITECH Act, a recent update made to overall HIPAA regulations require Business Associates to comply with HIPAA mandates regarding the handling and use of health information. As a Business Associate you must comply with a wide-range of regulatory obligations, including certain privacy obligations, security standards, and breach notification requirements. If your business needs to understand what it means to be a Business Associate and know what required safeguards, policies and procedures must be in place or make sure your current compliance program is adequate and can withstand government scrutiny, please join us for this informative and interactive session. Why should you Attend: There is a lot of confusion about the role and requirements of being a Business Associate. Organizations must be prepared prior to entering into these contracts for services as a vendor and subcontractor. Attendees will leave the course clearly understanding of all the requirements that must be in place for the Business Associate - Covered Entity arrangement. After completing this course, a Business Associate will have a clear understanding as to what needs to be place when it comes to all of the HIPAA regulations. Areas Covered in the Session: Why was HIPAA created? Who Must Comply with HIPAA Requirements? What are the HIPAA Security and Privacy Rules? What are the Consequences of being a Business Associate What is a HIPAA Compliance Program? What is a HIPAA Risk Mana

Overview: This webinar is designed for medical practice leaders to gain a working knowledge of the Value-Based Modifier program and how your cost and quality metrics will be used to determine your Medicare payments in future years. Why should you Attend: Your future Medicare payments are at risk. 2018 payment rates may be cut up to 6% if you fail to report quality measures to CMS for the 2016 calendar year. Your practice can also see cuts of 1-4% if you are an outlier on costs or quality. On the other hand, practices that show they are significantly better than average on costs and/or quality can receive an increase over the standard Medicare payment rates. You'll want to understand how this program works, what the potential impact for your practice is, and what steps you need to take now to ensure success in 2018. Areas Covered in the Session: What types of medical practices are impacted by the VBM program and how much is at risk for practices of different sizes. What cost and quality metrics are used and how are they combined to yield your practice's future payments What are the timelines for submitting data and reviewing your status What actions you can take now to ensure the highest possible Medicare payments in future years Who Will Benefit: Practice Administrators Physicians, Podiatrists, Physician Assistants, Nurse Practitioners, CRNAs Quality Officers Nurse leaders Finance Directors Speaker Profile Jeanne J. Chamberlin Jeanne Chamberlin is currently a Practice Management Consultant with MSOC Health. During her 30 years in the healthcare industry, Jeanne has worked in independent medical practices, health systems, state government, and software development. She holds a Masters Degree in Public Policy from Duke University and is a fellow in the American College of Medical Practice Executives. She has been a leader in both state and local MGMA chapters. As practice administrator of a 10-physician multi-specialty practice, Jeanne first began

Overview: Safe hospital care in neither a science nor an art. It is a practice just like the practice by a doctor who combines hindsight of experience and foresight of imagination to come up with an outsight of the best interventions and best protocols. Over time the doctor standardizes the process but is vigilant to any unique requirements of each patient. Such an approach in patient safety is called hazard analysis and mitigation process. This webinar goes a big step farther. It covers innovation strategies to assure that the safety improvements result in a high return on investment and high value to the hospital, and protects the patients. Why should you Attend: About 400,000 patients die each year from hospital mistakes according to a senate hearing. Evidence based methods to reduce adverse, sentinel, and never events are available and successful in aerospace, nuclear, and chemical industries. Why not use them? We need a paradigm shift. We need it in a hurry! You cannot cross the sea merely by standing and staring at the water. Do not be afraid to take a big step if one is indicated. No noble thing can be done without risks Areas Covered in the Session: The Etiologies of Unsafe Care Sufficient Understanding is a Pre-requisite to Safe Care Preventing "Indifferencity" to Enhance Patient Safety Continuous innovation is better than Continuous Improvement Innovations Should Start with Incidence Reports Hazard Analysis Fault Tree Analysis-the Best Tool for Harm Prevention Doing More with Less is Innovation Re-Invent Quality Management Human Errors may be Unpreventable, Preventing Harm is an Innovation Managing Safety: Lessons from Aerospace Protect Patients from Dangers in Medical Devices The Paradigm Pioneers Aequanimitas,The Best Known Strategy for Safe Care Who Will Benefit: Hospital senior management Hospital administrators Doctors Nursing staff Clinical engineers Radiology staff Infection control staff Patient advocates Speaker Profile Dev Raheja

Overview: Discussions, presentation, and webinars regarding HIPAA regulations are usually addressed from the perspective of what the regulations entail, the necessity of compliance with the regulations, and the consequences of willful neglect or non-compliance. This presentation addresses HIPAA regulations from a different perspective - from a personal perspective - from the perspective of the person in charge of moving an organization or facility toward full compliance with HIPAA. The by-product of this presentation will be both an understanding of, and a detailed job description for, a position mandated in the regulations - the HIPAA Security/Privacy Officer. Why should you attend: The HIPAA regulations are numerous, complicated, often vague, and affect every person working in a healthcare facility. Compliance with HIPAA will require a unique individual to lead the charge - an individual whose education, background, experience, and demonstrated skill sets offer the opportunity for that person to succeed in achieving the goals of that position. This is a new position to most healthcare facilities. So understanding who this person should be, what is required of the person with this job title, and with whom this person will interface is vital to every healthcare organization with the goal of achieving full compliance with HIPAA. Areas Covered in the Session: Position goals Position requirements (education, experience, skill sets, etc.) Position responsibilities Stay abreast of regulations Initiate compliance with HIPAA (according to regulations) Ensure continuous progress toward full compliance Develop appropriate security/privacy policies & procedures Oversee and deliver appropriate training programs to all employees Track compliance with HIPAA regulations at the facility & individual levels Track access to PHI Investigate and resolve HIPAA violations Apply sanctions to HIPAA violators Manage any information security personnel Prepare a department budget Hold Bu

Overview:   We will review the various elements of the physician employment agreement, focusing on the pitfalls and the problems that can develop when the agreement does not clearly define the relationship, and/or when the parties do not fully understand what is being agreed to. Such items as term and termination, termination for cause, duties of the physician, call, non-compete, and compensation are all items that should be clearly set out in the agreement and fully understood by the parties. Why should you attend: Formal written contracts establish the legal relationship between the parties; they state the terms and conditions of that relationship and the rights and obligations of each party. They confirm the intentions and relationships of the parties as they enter into this relationship, and they eliminate uncertainties regarding mutual rights, obligations, and relationships. If everything remained as it is at the time the agreement is signed, there would be little need for formal documents. However, the agreement serves to protect against future disputes. Therefore, it should include as precise language as possible. Ambiguous terms in agreements are of little effect when disputes occur over the meaning of a party's rights or obligations. You should attend to gain an understanding of what should and what should not be in a physician employment agreement. Areas Covered in the Session: Corporate practice of medicine Term and termination Termination for Cause Severance pay Provision allowing physician to terminate for cause Severance pay Duties of the physician Standards for the provision of professional services Referral to hospital Continuing medical education Who Will Benefit: Physicians Healthcare executives Physician practice managers Speaker Profile William Mack Copeland MS, JD, PhD, LFACHE, practices health care law in Cincinnati at the firm of Copeland Law, LLC. He is also president of Executive & Managerial Development Group, a consu

Overview: This lesson will be going into great detail regarding you practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices and personally owned devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures.  Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required.  Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years?  It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk.  Areas Covered in the Session: Update

Overview: In 2013, The US Department of Health and Human Services made major changes to rules implementing The Health Insurance and Portability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act of 2003 (HITECH). Among the many areas impacted by these rules (billing, marketing, research, IT security, etc.) is fund raising. The amendments significantly modify the methods and practice that hospitals, their institutionally related foundations, and other healthcare charities may or must employ when using ANY patient or client information for fund raising. The webinar will cover how to effectively implement the fund raising regulations in a manner that increases both opportunities for philanthropic support and compliant implementation of the new mandates. The rules include specific operational requirements, some of which prohibit protocols that were required under the original HIPAA regulations. The "magic words" mandated by HIPPA-related regulations changed in multiple areas. The webinar will cover all of these areas to ensure your organization is both legally compliant and operationally effective. The types of information that may be used for fund raising changed significantly. This presents numerous substantial fund raising opportunities, as well as challenges on the use and storage of such information. Among other areas to be presented are The required method for individuals to opt-out of receiving fund raising communication The methods of informing patients and clients of their right to opt-out from receiving fund raising communication The broadly expanded types of fund raising communication subject to opt-out rights How providers, hospital, and related fund raising foundation apply an opt-out election by an individual The type of patient and client information that health charities may use for fund raising The contents of provider's Notice of Privacy Practice How clinicians can assist both their patients/clients and the

Are you proactively managing patient collections? Learn how to solve your largest reimbursement pain points by attending our "Patient Collections" Webinar. Our industry experts will enlighten the attendees on addressing the collection delays problem to achieve a healthy revenue cycle.