Group items tagged

Overview: The webinar will concentrate on topics that HHS has announced will be the focus of the first round of "desk audits". They reflect significant areas of non-compliance revealed in the 2012 pilot audits and HHS HIPAA violation investigations concluded by Resolution Agreements and Corrective Action Plans. They include: HIPAA Risk Analysis Risk Management based on Risk Analysis Breach Notification Notice of Privacy Practices (for Covered Entities) Minimum Necessary Standard Access of Individuals to their PHI Authorizations Workforce Training This webinar is vital because, in focusing on preparation for a HIPAA Compliance Audit, Covered Entities and Business Associates may review, prioritize and structure their HIPAA Compliance programs. If you have HIPAA Compliance documentation ready to submit on two weeks notice to HHS you are implementing an effective HIPAA Compliance program. In addition, every Covered Entity or Business Associate may face an HHS HIPAA Compliance investigation at any time due to a complaint or a Breach. If you are "audit ready" you will be ready for an investigation - and better able to avoid complaints and prevent breaches. Why should you attend: Every Covered Entity and Business Associate is liable - without prior notice - to be audited for HIPAA Compliance by HHS You will have only 2 weeks after receiving your HIPAA Compliance Audit notification and data request to upload all requested documents to an HHS HIPAA Compliance Audit Portal The HIPAA Compliance Audit data request you receive will specify content and file organization, file names and any other document submission requirements Auditors will not contact an audited entity for clarifications or ask for additional information - it is essential that submitted documents are current, accurately reflect the entity's HIPAA Compliance program and demonstrate HIPAA Compliance Only data submitted on time will be assessed Failure to respond on time may be referred to the HHS regional

Course "Texting and E-mail with Patients: Patient Requests and Complying with HIPAA " has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: With the recent advances in portable technology, more and more organizations and their users are taking advantage of mobile devices to save time and get work done more efficiently. Texting, portable e-mail, and Apps are revolutionizing the ways health care providers interact with their patients and get their work done. But the use of these devices comes with hidden costs of compliance, especially if they lead to a reportable breach under HIPAA or state laws. HIPAA Privacy and Security Officers have been struggling to keep up with the use of the devices to protect patient privacy and avoid compliance issues. Even if these devices aren't in formal use in your organization, you need to act now to anticipate their use and make sure they are used properly. This session is designed to provide intensive, two-day training in HIPAA compliance as it relates to the use of mobile devices, including how to use them with Protected Health Information, the policies and procedures you need to have in place to use them securely, and how to manage issues of the "BYOD" phenomenon. The session provides the background and details for any manager of health information privacy and security to know what issues to look for with mobile devices, what needs to be done for HIPAA compliance, and what can happen when compliance is not adequate. Audits and enforcement will be explained, as well as privacy and security breaches and how to prevent them. Numerous references and sample documents will be provided. The session will be valuable for both newcomers to HIPAA compliance as well as seasoned veterans. HIPAA compliance will be explained and discussed in detail, from the basics through the latest changes and new technology issues, so that the attendee will have a coherent u

Overview: Essentially, covering in 90 minutes the basics of E everything that applies to your clinical work. We will give you the questions to ask your IT people, because you should not implicitly trust them, because the law will hold you accountable more than them. We will first cover the general principles of electronic compliances as laid forth in HIPAA. We will then discuss how this applies to your desktop/laptop/iPads and smart devices, other electronic equipment such as routers and modems. We also cover the use of email, secure mail and your EHR/EMR. We will discuss the pros and cons of using the cloud for your data storage and EHR/EMR, i.e. knowing what a HIPAA compliant data center looks like. Principles in the use of encryption and passwords and other security principles will also be covered. Why should you Attend: Unless you are 100% sure you've thought through every angle of your patient's electronic PHI and you sleep like a baby never concerned about this then you need to attend. If you have any questions about the details of what electronic compliance looks like and how it's applied in day-to-day clinical and business activities, interactions with vendors, EHR/EMR, your relationship with your ISP and IT providers, use of all electronic devices, then this workshop is for you. It also gives you principles to apply in new situations which are likely to arise frequently. If you wrote the book on this it would be out of date in 24 hours, so what's important is to learn how to think about these things and use your resources to stay ahead of the game. If you are confident you have the basics covered on every item listed below then this seminar is not for you. Areas Covered in the Session: HIPAA electronic compliance Secure use of EHR/EMR Email and secure mail use Encryption and password security principles Interfacing with the public Interfacing with vendors such as ISPs and other telecommunication companies Backups Cloud use How to know your data center

ePharmacy as we know it today, provides pharmacy services to its customers through the use of the Internet. This technology has been around for quite some time but it wasn't until sometime ago that it started to gain popularity and slowly started replacing the traditional pharmacy. One of the advantages of using e-pharmacy over the traditional type of pharmacy is that there is no face to face interaction required between the customer and the pharmacists. Increasing adoption of smartphones is expected to propel growth of the ePharmacy market. For instance, according to Pew Research Center, 76% of adults in the U.K. owned a smartphone in 2018. Increasing geriatric population is expected to offer lucrative growth opportunities for players in the ePharmacy market. For instance, according to United Nations Population Fund, geriatric population in Asia Pacific is expected to triple between 2010 and 2050 to reach 1.3 billion people by 2050. Moreover, increasing investment in e-pharmacy is also expected to aid in growth of the market. For instance, in November 2020, Alodokter, an Indonesian telemedicine app, raised an undisclosed amount of funding from MDI Ventures, the corporate VC arm of Telkom Indonesia, in order to launch e-pharmacy. Read more @ https://coherentmarketinsights-blog.blogspot.com/2021/01/increasing-adoption-of-smartphones-and.html

Overview: With the recent advances in portable technology, more and more organizations and their users are taking advantage of mobile devices to save time and get work done more efficiently. Texting, portable e-mail, and Apps are revolutionizing the ways health care providers interact with their patients and get their work done. But the use of these devices comes with hidden costs of compliance, especially if they lead to a reportable breach under HIPAA or state laws. HIPAA Privacy and Security Officers have been struggling to keep up with the use of the devices to protect patient privacy and avoid compliance issues. Even if these devices aren't in formal use in your organization, you need to act now to anticipate their use and make sure they are used properly. This session is designed to provide intensive, two-day training in HIPAA compliance as it relates to the use of mobile devices, including how to use them with Protected Health Information, the policies and procedures you need to have in place to use them securely, and how to manage issues of the "BYOD" phenomenon. The session provides the background and details for any manager of health information privacy and security to know what issues to look for with mobile devices, what needs to be done for HIPAA compliance, and what can happen when compliance is not adequate. Audits and enforcement will be explained, as well as privacy and security breaches and how to prevent them. Numerous references and sample documents will be provided. The session will be valuable for both newcomers to HIPAA compliance as well as seasoned veterans. HIPAA compliance will be explained and discussed in detail, from the basics through the latest changes and new technology issues, so that the attendee will have a coherent understanding of not only the rules, but also how to think about compliance and make sound compliance decisions on a day-to-day basis in the context of mobile devices. Agenda Day One Day one sets the stage with an ov

Course "Verification vs. Validation - Product Process Software and QMS" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: This course will review the company Master Validation Plan for major key inputs and CGMP deficiencies. It will address the FDA's newer and tougher regulatory stance. This course's aim is to prove "Product Risk Based V&V" by sufficient, targeted and documented risk-based V&V test case elements/scripts. It will teach participants to evaluate its elements against ISO 14971 and ICH Q9 for hazard analysis and product risk management. This course will evaluate different field-tested, U.S. FDA-reviewed V&V protocols; how to employ equipment/process Requirements Specs / DQs, IQs, OQs, and PQs, or their equivalents per ASTM E2500, all against a background of limited company resources. It will review a matrix that simplifies "as-product", in-product", process and equipment, et al, software VT&V, to assure key FDA requirements are not overlooked. While considering the QMS and 21 CFR Part 11; this course will make practical application of these same in two hands-on sessions. Why you should attend: This session helps participants: * Understand Verification and Validation, differences and how they work together; * Discuss recent regulatory expectations; * Know how to document a "risk-based" rationale, and use it in a resource-constrained environment; * Determine key "milestones" and "tasks" in a project; * Locate and document key subject "inputs"; * Compile "generic" Master and Individual Validation Plans; * Learn the key element of a Product V&V File/Protocol; * Understand how to develop Process and/or Production/Test Equipment V&V Files/Protocols; * Get a grasp of basic Test Case construction; * Understand sample sizes and their justification; * Learn the key elements of Software V&V expected by the FDA and how to document; * Deal with hardwa

Course "Key Factors to Write an Effective Standard Operating Procedure (SOP) and Work Instructions (WIs)" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: Writing SOPs or procedural documents can be challenging at times. However, writing SOPs is overall a straightforward process. However, enforcing what you already created and implemented in the pipeline is another story. The term SOP is very obvious. We have seen "clearly written description of how specific tasks are to be done." Another satisfactory definition would be "detailed written instructions that achieve the uniformity of the performance of a specific function." Is the firm doing what the regulations specify? Is the firm doing what their procedures specify? If you are medical device or a pharmaceutical manufacturer, these definitions come as no surprise because when it comes to FDA regulations and guidance documents "establish" means to define, to document (in writing or electronically) and to implement. The goal and emphasis with FDA is simple. Proof of "Establish" is the foundation. Is the firm doing what the regulations specify? Is the firm doing what their procedures specify? Are the procedures being followed and enforced by company personnel? SOPs are needed in regulated industries to give step-by-step instructions for performing a particular job or task. This session will provide a step-by-step overview and a snapshot of the procedure description, the process and format. The subject matter of a SOP may range from how to operate a piece of machinery to how to log into a particular software program. SOPs ensure consistency and reliability because they require training of all affected parties. This session will address recent enforcement actions for SOP related violations but no surprise. Most of our enforcement actions are documentation related, i.e., SOP or other procedural documents. We will review examples from

2-day In-person Seminar Applied Statistics, with Emphasis on Risk Management in R&D, QA/QC, and Manufacturing Overview: The 2-day seminar explains how to apply statistics to manage risk in R&D, QA/QC, and Manufacturing, with examples derived mainly from the medical device design/manufacturing industry. The flow of topics over the 2 days is as follows: ISO standards and FDA/MDD regulations regarding the use of statistics. Basic vocabulary and concepts. Statistical Process Control Statistical methods for Design Verification Statistical methods for Product/Process Qualification Metrology: the statistical analysis of measurement uncertainty, and how it is used to establish QC specifications How to craft "statistically valid conclusion statements" (e.g., for reports) Summary, from a risk management perspective Agenda Day One Lecture 1: Regulatory Requirements Lecture 2: Vocabulary and Concepts Lecture 3: Confidence Intervals (attribute and variables data) Lecture 4: Normality Tests and Normality Transformations Lecture 5: Statistical Process Control (with focus on XbarR charts) Lecture 6: Confidence/Reliability calculations for Proportions Lecture 7: Confidence/Reliability calculations for Normally distributed data (K-tables) Lecture 8: Process Capability Indices calculations(Cp, Cpk, Pp, Ppk) Day Two Lecture 1: Confidence/Reliability calculations using Reliability Plotting (e.g., for non-normal data and/or censored studies) Lecture 2: Confidence/Reliability calculations for MTTF and MTBF (this typically applies only to electronic equipment) Lecture 3: Statistical Significance: t-Tests and related "power" estimations Lecture 4: Statistical Significance: ANOVA calculations Lecture 5: Metrology (Gage R&R, Correlation, Linearity, Bias , and Uncertainty Budgets) Lecture 6: QC Sampling Plans (C=0 and Z1.4 attribute AQL plans, and alternatives to such plans) Lecture 7: Statistically valid statements for use in reports Lecture 8: Summary and Impleme

Cross-linked polyethylene, also known as PEX, XLPE or XPE, is a special type of polyethylene made from cross-linking polymer that can be bonded or pressed together at low temperatures, using heat to make it more malleable. It's most common use is in building materials, plumbing, gas and oil piping, insulation for heavy-gauge electrical cables and water heating systems. The polymers that make up PEX are called "Polypropylene""Polyisoprene". The cross-linking of the polymer molecules helps them form a strong bond when they're put together at high temperatures. PEX has many different uses, but the most popular among builders is in piping for plumbing systems, including plumbing fixtures like faucets, drains and showers. It can also be used in making water heater valves and lines, faucet pipes and joints, and drainage pipes for stormwater drains. Cross-linked polyethylene also has many other uses as well, including making pipe insulation, seals and adhesives for air conditioners, refrigerators and water heaters, and roofing materials. It's used to make the pipes that connect heating and air conditioning units to the rest of the house, as well as the ductwork between them. PEX pipes can also be used as a liner in place of Plexiglass to make an insulating layer on windows and doors, to block out cold air and warm sun-drenched air. The liner can also be used to cover vent pipes and to prevent moisture from building up on the interior of the house. This way, it acts as a "double layer" insulation, keeping the temperature and moisture level of the home in check. Read more @ https://coherentmarketinsights-cmi.blogspot.com/2020/12/vitamin-e-infused-highly-cross-linked.html

Color cosmetics are cosmetic products that aid in improving the overall look of your body. Color cosmetics include the main colorants used for facial, lip care, skin care and oral care, plus the chemicals used for fragrance and other oral care. The color cosmetics market is a multi-billion dollar business and there are a large number of products available that contain colorants or fragrances. Some of the most popular color cosmetics include lipstick, eye shadow, blush, eye glosses, and blushes. Color cosmetics usually include, two types of compounds: the natural colorants used to make the product and the synthetic colorant compounds used to make the product. Natural colorant compounds include, natural pigments from plants, mica from mined ore and titanium dioxide. Significant growth in the e-commerce sector is expected to offer lucrative growth opportunities for players in the global color cosmetics market over the forecast period. For instance, according to India Brand Equity Foundation, the e-commerce sector in India is expected to reach US$ 200 billion by 2026 from US$ 38.5 billion as of 2017. Read More @ https://coherentmarketinsights-blog.blogspot.com/2020/11/increasing-expenditure-on-personal-care.html

Increasing adoption of smartphones is expected to propel growth of the global online retail market. For instance, according to Pew Research Center, as of February 2019, 81% of U.S. adults used smartphones compared to 77% in October 2018. Moreover, increasing penetration of internet is also expected to aid in growth of the market. For instance, according to China government-backed Market Intelligence & Consulting Institute and reported by China Internet Watch, internet penetration in China reached 61.2 percent in the first half of 2019, with 854 million internet users at the end of June 2019. Emergence of Covid-19 is expected to offer lucrative growth opportunities for players in the global online retail market. For instance, in July 2020, Columbia Sportswear Company reported a 40% decline in overall net revenues in its July 2020 quarterly earnings report, due in part to pandemic-related store closures. However, the company's e-commerce sales increased 72% compared with the year-ago period. Moreover, increasing expenditure on personal care products is also expected to aid in growth of the market. For instance, according to the U.S. Bureau of Labor Statistics, average annual expenditure on personal care products in the U.S. increased from US$ 707 in 2016 to US$ 768 in 2018. Among regions, Asia Pacific is expected to witness significant growth in the online retail market. For instance, according to India Brand Equity Foundation, the e-commerce sector in India is expected to reach US$ 200 billion by 2026 from US$ 38.5 billion as of 2017. The market is also driven by significant growth in the FMCG sector. For instance, according to India Brand Equity Foundation, FMCG market in India is expected to grow at a CAGR of 27.86 per cent and is expected to reach US$ 103.70 billion by 2020 from US$ 52.75 billion in FY18. Read More @ https://coherentmarketinsights-blog.blogspot.com/2020/11/emergence-of-covid-19-to-augment-growth.html

Quando falamos em saúde e bem-estar é impossível dissociar os conceitos de alimentação equilibrada e actividade física regular. As refeições antes do exercício são muito importantes e devem ser consideradas como parte integrante do plano de preparação do atleta para a obtenção da performance ideal.

OSHA's Standards on Fire Protection in the Workplace : When it comes to Fire Protection in the Workplace; there are several guidelines to be followed. One could go by common sense, but it is not usually sufficient, which is why OSHA has standards relating to Fire Protection in the Workplace. Like it does for all its safety requirements; OSHA requires the employer to take obligatory steps for the protection of employees from fire. These are covered in Title 29 of the Code of Federal Regulations Part 1910 Subparts E and L; and Part 1926 Subparts C and F. Employer obligations are the core of Fire Protection in the Workplace Requiring employers to carry out roles during a fire emergency and training employees towards the same are the foundation of OSHA standards on Fire Protection in the Workplace. Training employees on OSHA's standards on Fire Protection in the Workplace entails training them on all the core areas of handling a fire: The ways of using fire exits The ways of using fire extinguishing equipment The ways by which to organize an emergency exit plan The ways of using fire exits: Fire Protection in the Workplace on fire exits involves having to put in place a well-designed exit route for employees, so that they escape during a fire easily. These should be done keeping in mind the structure of the building. Keeping the exit route free of obstacles is another important requirement of OSHA's standards on Fire Protection in the Workplace. The ways of using fire extinguishing equipment: Having portable fire extinguishing equipment is not mandatory for OSHA, but employees must be properly trained on their use, should an employer have one. These equipment have to be placed at a convenient location for everyone to access easily. The ways by which to organize an emergency exit plan: An emergency exit plan is required as part of Fire Protection in the Workplace for some kinds of employers. It is for those whose activity involves the heavy use of hazardous chemica

Course "HIPAA for the Compliance Officer" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: I will be going into great detail regarding you practice or business and how it relates to the HIPAA Security/Privacy Rule, Areas covered will be history of HIPAA, privacy vs security, business associates, changes for 2016, audit process, paper based PHI, HIPAA and suing, texting, email, encryption, medical messaging, voice data and much, much, more I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition, this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why you should attend: This lesson will be addressing how practice/business managers (or compliance offers) need to get their HIPAA house in order before the imminent audits occur. It will also address major changes under the Omnibus Rule and any other applicable updates for 2016. There are an enormous amount of issues and risks for covered entities and business associates these days. I will speak on specific experiences from over 17 years of experience in working as an outsourced compliance auditor, expert witness on HIPAA cases, and thoroughly explain how patients are now able to get cash remedies for wrongful disclosures of private health information. More im

Course "New HIPAA Audit and Enforcement Activities: Being Prepared to Show your Compliance " has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: We will be discussing the history and evolution of HIPAA Privacy/Security and the major points you need to understand to proactively protect your practice or business from the imminent federal auditing process: * History of HIPAA * HITECH * HIPAA Omnibus Rule * How to perform a HIPAA Security Risk Assessment * What is involved in a Federal audit and how is it conducted * Risk factors for a federal audit * How to avoid a Federal audit * Business Associates and HIPAA audits * EHR and HIPAA * Business Continuity/Disaster Recovery Planning * Assessing your contractors and sub-contractors * In depth discussions on IT down to the nuts and bolts * Risk factors that can cause an audit (low hanging fruit) * New rules which grant states ability to sue citing HIPAA on behalf of a patient * New funding measures Why should you attend : The evolutions of this enigmatic law and how what was once relative benign in terms of enforcement is now fully funded and aggressive. Learn what you can do to be prepared for an audit and how to lower risks of ever being audited. It is absolutely imperative that you are proactive and not reactive with your compliance program, this is a necessary evil and you need to protect your practice or your business and limit risks from the imminent Federal audits. Join me in keeping up with this very confusing law and take advantage of all the templates and information provided as part of the seminar. Areas Covered in the Session: * HIPAA -Brief History * HIPAA Privacy Rule vs HIPAA Security Rule * HITECH Act * Breach Notification Rule * Omnibus Rule and audits * Business Associates and audits * Current Court Cases (precedence) * Paper Based PHI Concerns and how to lower risk

Overview: Discussions, presentation, and webinars regarding HIPAA regulations are usually addressed from the perspective of what the regulations entail, the necessity of compliance with the regulations, and the consequences of willful neglect or non-compliance. This presentation addresses HIPAA regulations from a different perspective - from a personal perspective - from the perspective of the person in charge of moving an organization or facility toward full compliance with HIPAA. The by-product of this presentation will be both an understanding of, and a detailed job description for, a position mandated in the regulations - the HIPAA Security/Privacy Officer. Why should you attend: The HIPAA regulations are numerous, complicated, often vague, and affect every person working in a healthcare facility. Compliance with HIPAA will require a unique individual to lead the charge - an individual whose education, background, experience, and demonstrated skill sets offer the opportunity for that person to succeed in achieving the goals of that position. This is a new position to most healthcare facilities. So understanding who this person should be, what is required of the person with this job title, and with whom this person will interface is vital to every healthcare organization with the goal of achieving full compliance with HIPAA. Areas Covered in the Session: Position goals Position requirements (education, experience, skill sets, etc.) Position responsibilities Stay abreast of regulations Initiate compliance with HIPAA (according to regulations) Ensure continuous progress toward full compliance Develop appropriate security/privacy policies & procedures Oversee and deliver appropriate training programs to all employees Track compliance with HIPAA regulations at the facility & individual levels Track access to PHI Investigate and resolve HIPAA violations Apply sanctions to HIPAA violators Manage any information security personnel Prepare a department

Food Safety and Security are two faces of the coin : Food safety and security are two different, but closely related concepts. Although part of the same aspect, they vary in their application and meaning. Both are equally important in ensuring that populations of the world get food that is sufficient and nutritious. Food safety and security are complete without each other. Food safety complements food security, and vice versa. Food safety : Food safety is essentially about the safety of the ingredients that go into food. If food is being sourced from a farm, the food makers have to ensure that the farm has ensured safety standards in producing this food. Food safety is concerned about the amount of chemicals and fertilizers used in production of food. It is also concerned with how much residual pesticide, which could cause harm to humans when the food that is grown using it, is left in the final product, and so on. Food safety is related to and is dependent on factors such as demographics, inputs that go into the cultivation and production of food, availability of water for production of safe food, the use of energy sources in the safe production of food, climate change, etc. Now, food security : Food security, on the other hand, is about more about the food supply chain. When food arrives from the producer to the consumer, it goes through a complex chain that can many times span entire continents. Food may also be sourced and consumed locally. In either case, there is a need to ensure that the points that food travels in and reaches are secure. Ensuring quality throughout : The aim of food security is to ensure that food which travels through many chains and stages should be clean at all these stages. This means that security has to be ensured from rodents and other forms of disturbances at the agricultural fields in which food is produced, then at the granaries in which it is stored, at the routes that it travels, then at the location at which food is pr

Overview: This lesson is going to get back to the basics using multiple real life scenarios and "what if's". My goal is to make this very confusing and not well explained law easy to understand for the typical staff member. I will uncover myths versus reality as it relates to this enigmatic law based on over 1000 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also point out multiple court cases I have been affiliated with where a staff member of a hospital or clinic has been sued or even imprisoned! I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: Are you confused about HIPAA? Do you just want the basics and in plain English? Do you know there are civil and criminal penalties even for the rank and file staff member! Do you know what you can and can't do with protected health information? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging fruit in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence

Overview: This lesson will be going into great detail regarding your practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk. Areas Covered in the Session: Updates for 2016 BYOD Portable devices B