Group items tagged

Overview: In this session we will discuss the HIPAA audit and enforcement programs and how they work, and discuss the areas that caused the most issues in prior audits. We will explore what kind of issues and what kind of entities had the most problems, and show where entities need to improve their compliance the most. We will also explore the typical risk issues that lead to breaches of health information and see how those issues may be a target for auditors in the new 2016 audits. We will review the contents of the HIPAA Audit Protocol used in 2012 to show what documentation needs to be on hand should your organization be selected for an audit in the new round. We will present methods for using the contents of the HIPAA Audit Protocol to build your own compliance plan by extracting and updating the contents and relating your compliance activities directly to the questions that might be asked. In this session we will discuss the HIPAA audit and enforcement regulations and processes, and how they apply to HIPAA covered entities and business associates. We will explain the enforcement regulations and the new, increased fines and new penalty levels, including new penalties for willful neglect of compliance that begin at $10,000. We will discuss what information and documentation must be prepared in advance so that you can be ready for an audit at any time, including sample information request forms and questions asked at prior audits. The session will also cover how to know if you may become the subject of an audit or enforcement action, and what you can do to help limit your exposure. We will discuss how most enforcement actions come about and what can be done to prevent incidents that lead to enforcement activity. The HIPAA Privacy, Security, and Breach Notification regulations (and the recent changes to them) and how they will be audited will be explained. Documentation requirements for compliance will be explored and a framework of security policies necessary

Overview: One of the major requirements of the health care organization to be HIPAA compliant is to develop and implement a set of HIPAA privacy and security policies and procedures. This can be a daunting task for those not knowing where to start and what a set of HIPAA privacy and security policies and procedures should look like. For the cost conscious health care organization, the HIPAA policies and procedures can have multiple uses: first, they can become a basis for training the health care organization workforce; second, they can be used as a basis for conducting a HIPAA self-assessment; and third, they can be used to demonstrate due diligence should there be a breach or an externalHIPAA compliance audit. In today's world it is not necessary that the health care organization spend significant funds to develop a set of HIPAA privacy and security policies and procedures from scratch. The health care organization can likely find templates on the internet that can be used as a starting point to customize HIPAA policies and procedures to be unique for the health care organization. The preparation of a well-documented set of HIPAA policies and procedures needs to be addressed through the development of Privacy and Security policies and procedures that address each of the requirements shown in the HIPAA regulations as amended by the HITECH law and the final Omnibus Regulations. The process of developing the HIPAA privacy and security policies and procedures also provides a reference for the health care organization how to consider the security addressable and required regulation requirements. Why should you attend: There are three situations where having a set of HIPAA policies and procedures are needed: First, the policies and procedures become a good reference to ensure that all areas are addressed for becoming HIPAA compliant. Second, the HIPAA regulations REQUIRE covered entities and business associates to have a set of policies and procedures directing t

Clinical information: Clinical informatics is the new exciting kid on the block. With the right mix of aptitude and attitude, professionals can look forward to many opportunities and challenges in the field. An understanding of the coining of the term "clinical informatics" gives an idea of what it is. Clinical informatics is a combination of two words, "clinical" and "informatics". Together, these relate to the knowledge of how information technology works in the healthcare sector. It is very important for clinicians to understand the functioning of IT into its domain, because with the advent of IT; there has been a major need to integrate clinical practices with it. A clinician who understands the way IT impacts the workings on in her industry is a better equipped professional when it comes to handling IT-related issues in the clinical setting. A clinical informatics professional should have a clear idea of the following approaches to IT: Analysis Design Implementation Assessment of information and communication that enhance the quality of clinical informatics Single approach to multiple health areas: One important element that needs to be understood about clinical informatics is that given the scope and breadth of the area of clinical informatics; professionals from any discipline of health -be it pathology, pharmacy, dentistry, radiology, dermatology, etc. -apply the same principles of clinical informatics to optimize the use of IT in healthcare. This requires constant coordination and cooperation with professionals and practitioners of all these areas. Clinical informatics is thus an area which is interspersed with all these other specializations and can be used and applied in any of these areas. What should a clinical informatics professional ensure? The aim of clinical informatics is to use this discipline to coordinate with nearly all the areas of medicine to provide optimal outcomes in patient care that delivers and ens

A hearing protection device, more commonly known as an HPD, is an ear protective device worn on or behind the ears to help avoid noise-induced hearing impairment, especially noise caused by construction, aircraft, machinery, and some home appliances. An HPD works by reducing background noise and blocking out high-frequency noise that's typically emitted from machinery, or other loud noises. An HPD usually blocks out more than 90 percent of the noise in a room, and often can't be bought by most people because they are typically a bit bulky, which makes them more expensive than traditional earplugs. One of the most common reasons why an HPD is recommended for workers exposed to noise above 200 hertz is because they protect the worker's ears by reducing the amount of time that they're exposed to damaging radiation. Most workers who wear hearing protection devices are not exposed to as much noise as they would be with no protection, so they tend to retain more of their hearing after extended exposure to loud sounds. This keeps them healthier overall and prevents the onset of hearing loss that normally occurs after long-term exposure to high levels of noise. The main factor driving the growth of the hearing protection devices market is stringent rules made by governmental bodies all over the world for workers' safety. Increased hours of working in factories with heavy machinery emitting sounds can result in temporary or permanent deafness. Keeping in mind this issue, rules have been made for factory workers across the world to wear safety devices such as hearing protection devices to work. Read more @ https://coherentmarketinsights-blog.blogspot.com/2021/01/the-global-hearing-protection-devices.html

Overview: This lesson will be going into great detail regarding you practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices and personally owned devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures.  Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required.  Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years?  It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk.  Areas Covered in the Session: Update

Overview: Today's health care delivery occurs in a diverse, fast-changing, multidisciplinary health care environment. This often presents challenges to the health care professional that are not easy to navigate. Medical records and their confidentiality have long been the exclusive province of state law, but has now been recognized for some time in the federal HIPAA statutes and federal regulations. Differing and even conflicting sources of requirements at the state level still exist for the retention and disposition of medical records. These sources may vary based upon the specific health care practitioner - whether physicians, dentists, psychologists, or other health care providers, including mental health practitioners. As to the specific, individual health care practitioner, state laws mandate their confidentiality, retention, and even their specific content with regards to patient, clinical records. In addition to these clinical requirements, additional state laws set forth the content and retention of other types of records kept by the professional, such as supervisory agreements with other professionals subordinate to them as well as their own unique record content requirements. With the majority of medical records moving to an electronic format, special rules now exist with regard to the confidentiality, security, retention, and disposition of electronic medical records. This is particularly important as state laws continue to allow for and regulate the provision of telemedicine by various health care practitioners. For example, while psychotherapy and mental health services are ideal treatments to offer over the internet, that is, by simultaneous audio-visual transmission between the doctor and the patient, the risks of breaches of confidentiality also vastly increase. And when the successful doctor-patient relationship is over, how does the health care practitioner providing a mental health service dispose of these electronic records? In addition to

Overview: I will be talking to specifics of HIPAA and the emergency room setting, do's and don'ts as well as dispelling myth vs reality. This lesson will be addressing how compliance officers need to get their HIPAA house in order as HIPAA is now fully enforced and the government is not using kid gloves any more. It will also address major changes under the Omnibus Rule and any other applicable updates for 2016 and beyond. There are an enormous amount of issues and risks for hospitals these days especially with the new legislation involving patient cash remedies for wrongful disclosure. I will speak on specific experiences from over 17 years of experience in working as an outsourced compliance auditor, expert witness on HIPAA cases within the ER, and thoroughly explain how patients are now able to get cash remedies for wrongful disclosures of private health information. More importantly I will show you how to limit those risks by simply taking proactive steps and utilizing best practices. Why should you Attend: What can and can't we do in the hectic emergency room with patient information? What are the new liabilities involved? How can we ensure security but also ensure patient care? This once rarely enforced law has changed and you need to know what's going on! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years? State laws are now also more strict increasing liability for patient remedies! We will be discussing some of the changes taking place in Washington with the Health and Human Services in regards to the enforcement of the HIPAA laws already on the books. I will go over some of the new changes specifically affecting the emergency room setting I will also be discussing factors might cause an unwanted visit or letter from the Office of Civil Rights and how to prepare for a potential audit Areas Covered in the Session: Updates for Omnibus Emergency Room Do's and Don'ts in the ER Ambulato

Overview: This lesson is going to get back to the basics using multiple real life scenarios and "what if's". My goal is to make this very confusing and not well explained law easy to understand for the typical staff member. I will uncover myths versus reality as it relates to this enigmatic law based on over 1000 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also point out multiple court cases I have been affiliated with where a staff member of a hospital or clinic has been sued or even imprisoned! I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: Are you confused about HIPAA? Do you just want the basics and in plain English? Do you know there are civil and criminal penalties even for the rank and file staff member! Do you know what you can and can't do with protected health information? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging fruit in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence

Overview: This lesson will be going into great detail regarding your practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk. Areas Covered in the Session: Updates for 2016 BYOD Portable devices B

Workplace Safety Regulations : Workplace safety is a matter of grave importance to any organization. Ensuring the safety of workers is a primary goal of most countries, no matter which kind of political system or setup they have. This is because almost no workplace is free from some or another kind of hazard. These workplaces could be as varied as hospitals, construction sites, engineering plants or agriculture and many more. Governments the world over consider it their duty to provide a safe workplace. Workplace safety can concern any hazard that can happen to either the physical or emotional wellbeing of a worker. National and global workplace safety regulations : Workplace safety regulations are legally stipulated measures that governments require organizations in both the private and public sector to implement in order to ensure safety at the workplace. Almost all countries have their own set of workplace safety regulations. These regulations work in tandem with a few global management systems with the aim of enhancing safety standards at the workplace. A notable global organization that is at the forefront of legislating workplace safety regulations is the International Labor Organization (ILO). These ILO-mandated legislations are meant to supplement the national workplace safety regulations that most countries have. This is done in the belief that many a time, these individual legislations may not be sufficient in themselves. Workplace safety regulations in the US : Like most other countries, the US too has its own set of Occupational Safety and Health (OSH) standards. Owing their origins to the Richard Nixon era in late 1970; workplace safety regulations in the US concretized under what is collectively called the Occupational Safety and Health Administration (OSHA). The major feature of OSHA is that apart from promulgating workplace safety regulations across nearly all conceivable sectors and types of industries; OSHA also has a provision for whistleblow

The emerging discipline of Hospitals Management Performance Assessments Over the past few years, Hospitals Management Performance Assessments have begun to gain acceptability and credence in healthcare circles. Hospitals Management Performance Assessments came into being as a result of a conscious effort by advanced countries, mainly European, with sufficient backing from the World Health Organization (WHO) to arrive at some sort of metrics to evaluate the critical functioning levels of hospitals. The topic of Hospitals Management Performance Assessments came to acquire proper shape and structure following the heavy reference the WHO made to this discipline at the WHO European Ministerial Conference on Health Systems of June 2008. The following year, it found resonance again, when it was the theme of the World Health Day. The evaluation of Hospitals Management Performance Assessments Hospitals Management Performance Assessments started to evolve primarily to provide healthcare professionals with a tool to diagnose the quality of performance of the hospitals and other healthcare settings they work in. It was felt, over time and experience, that when strict appraisals were being made in many areas of healthcare, a set of parameters to assess the level of efficiency of hospitals would go a long way in ensuring the implementation of enhanced processes, leading to better patient outcomes. Areas of concentration for Hospitals Management Performance Assessments The core disciplines in which Hospitals Management Performance Assessments sought to bring about measurable and verifiable improvements were: The PATH approach As a result of discussions and deliberations the WHO held with many countries, primarily European, a path for charting out the course of Hospitals Management Performance Assessments was concretized in the form of what the WHO called the PATH - the Performance Assessment Tool for Quality Improvement in Hospitals. A brief understanding of PATH PATH

Overview: I will be talking to specifics of HIPAA in the hospital setting, , do's and don'ts as well as dispelling myth vs reality. This lesson will be addressing how compliance officers need to get their HIPAA house in order as HIPAA is now fully enforced and the government is not using kid gloves any more. It will also address major changes under the Omnibus Rule and any other applicable updates for 2016 and beyond. There are an enormous amount of issues and risks for hospitals these days especially with the new legislation involving patient cash remedies for wrongful disclosure. I will speak on specific experiences from over 17 years of experience in working as an outsourced compliance auditor, expert witness on HIPAA cases within the hospital setting, ER setting, and thoroughly explain how patients are now able to get cash remedies for wrongful disclosures of private health information. More importantly I will show you how to limit those risks by simply taking proactive steps and utilizing best practices. Why should you Attend: What can and can't we do in the hospital setting with patient information? What are the new liabilities involved? How can we ensure security but also ensure patient care? This once rarely enforced law has changed and you need to know what's going on! - there are new liabilities! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds strictly enforcing after all these years? State laws are now much tougher increasing liability for patient remedies! We will be discussing some of the changes taking place in Washington with the Health and Human Services in regards to the enforcement of the HIPAA laws already on the books. I will go over some of the new changes specifically affecting the hospital as well as the emergency room setting I will also be discussing factors might cause an unwanted visit or letter from the Office of Civil Rights and how to prepare for a potential audit Areas Covered in the Sessi

Course "The A to Z's of HIPAA Privacy, Security, and Breach Notification Rules" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: This session is designed to provide intensive, two-day training in HIPAA compliance, including what's new in the regulations, what's changed recently, and what needs to be addressed for compliance by covered entities and business associates. The session provides the background and details for any manager of healthcare information privacy and security to know what are the most important privacy and security issues, what needs to be done for HIPAA compliance, and what can happen when compliance is not adequate. Audits and enforcement will be explained, as well as privacy and security breaches and how to prevent them. Numerous references and sample documents will be provided. Who Will Benefit: * Information Security Officers * Risk Managers * Compliance Officers * Privacy Officers * Health Information Managers * Information Technology Managers * Medical Office Managers * Chief Financial Officers * Systems Managers * Legal Counsel * Operations Directors Agenda: Day One Day one sets the stage with an overview of the HIPAA regulations and then continues with presentation of the specifics of the Privacy Rule, recent changes to the rules, and the basics of the Security Rule Lecture 1: Overview of HIPAA Regulations * The Origins and Purposes of HIPAA * Privacy Rule History and Objectives * Security Rule History and Objectives * Breach Notification Requirements, Benefits, and Results Lecture 2: HIPAA Privacy Rule Principles, Policies and Procedures * Patient Rights under HIPAA * Limitations on Uses and Disclosures * Required Policies and Procedures * Training and Documentation Requirements Lecture 3: Recent and Proposed Changes to the HIPAA Rules * New Penalty Structure * New HIPAA Audit Program * New Patient Rights

Course "Supplier Management for Medical Device Manufacturers" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: Supplier selection and management is one of the critical issues for medical device manufacturers. Suppliers provide materials and services to the device manufacturer, which means that they can be critical to performance and delivery of your device. Neither the FDA nor your notified body regulates your suppliers (with a few exceptions). They expect you to have an effective process to ensure your suppliers perform in the regulatory environment. How well do you understand the requirements for supplier management? Could you pass a regulatory audit or inspection without any issues? This course delivers the tools, templates, and methods to help participants implement an effective and efficient supplier management program. This two-day hands-on course provides a clear understanding of the underlying principles of supplier management. The course uses exercises to solidify understanding. In addition, the course uses FDA Warning Letters to illustrate the points and help you learn from others. As part of the practical implementation, the course includes receiving acceptance activities, outsourced processes, process validation at the suppliers' location, supplier auditing techniques, and supplier issues in management review. The course uses the Global Harmonization Task Force (GHTF) framework, but expands it to cover other issues and techniques important in effective implementation. Why should you attend: Since FDA regulations do not allow them to audit your suppliers unless they make finished medical devices, they require that you have sufficient control over them. But from time to time the FDA makes a reinterpretation of what this means. This happened within the last f 5 years, so if you supplier management program is older than that, you need to make major changes in you supp

Course "Verification vs. Validation - Product Process Software and QMS" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: This course will review the company Master Validation Plan for major key inputs and CGMP deficiencies. It will address the FDA's newer and tougher regulatory stance. This course's aim is to prove "Product Risk Based V&V" by sufficient, targeted and documented risk-based V&V test case elements/scripts. It will teach participants to evaluate its elements against ISO 14971 and ICH Q9 for hazard analysis and product risk management. This course will evaluate different field-tested, U.S. FDA-reviewed V&V protocols; how to employ equipment/process Requirements Specs / DQs, IQs, OQs, and PQs, or their equivalents per ASTM E2500, all against a background of limited company resources. It will review a matrix that simplifies "as-product", in-product", process and equipment, et al, software VT&V, to assure key FDA requirements are not overlooked. While considering the QMS and 21 CFR Part 11; this course will make practical application of these same in two hands-on sessions. Why you should attend: This session helps participants: * Understand Verification and Validation, differences and how they work together; * Discuss recent regulatory expectations; * Know how to document a "risk-based" rationale, and use it in a resource-constrained environment; * Determine key "milestones" and "tasks" in a project; * Locate and document key subject "inputs"; * Compile "generic" Master and Individual Validation Plans; * Learn the key element of a Product V&V File/Protocol; * Understand how to develop Process and/or Production/Test Equipment V&V Files/Protocols; * Get a grasp of basic Test Case construction; * Understand sample sizes and their justification; * Learn the key elements of Software V&V expected by the FDA and how to document; * Deal with hardwa

Overview: This webinar provides an overview of the MACRA legislation and developing regulations and guidelines. We'll help you understand how medical practices will be paid in the future for services to Medicare patients. You'll be asked to choose between two paths. If you choose to participate with other providers in an Advanced Payment Model, the larger organization will be paid for services provided and determine how to share those payments as well as any cost savings among the participants. If you choose the Merit-Based Incentive Payment System (MIPS), your payment rate will vary based on how you perform on a variety of Medicare Quality Programs - PQRS, VBM, Meaningful Use and a 4th new component focused on Quality Improvement. You'll want to know as much as possible about the pros and cons of each option and how to make the right choice for your practice. Why should you Attend: Under the MACRA legislation, your providers will need to choose between participating in an Advanced Payment Model (APM) or participating in the new Merit-Based Incentive Payment System. Making the wrong choice can result in significant reductions in your future Medicare payments. You'll want to understand the options and have a plan in place by January 1, 2017 - that's only 6 months away. Areas Covered in the Session: Learn the requirements of the new MACRA legislation and how it will impact your Medicare payments in 2019 and beyond Find out what you need to be doing now to ensure you don't lose Medicare revenue in future years Understand the options - APM vs MIPS - and how your Medicare payments can increase or decrease under each model Identify what aspects of the new payment methodology are written into the legislation, what has been released through proposed regulations and when final rules are expected. Who Will Benefit: Practice Administrators, CEOs, COOs Physicians and all providers who bill to Medicare Quality Officers Nurse leaders Finance Directors Speaker Pro

Overview: This lesson will be going into great detail regarding your practice or business information technology and how it relates to the HIPAA Security Rule, in particular portable devices. Areas covered will be texting, email, encryption, medical messaging, voice data and risk factors as they relate to IT. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. I will also speak to real life audits conducted by the Federal government (I've been on both sides of these audits) what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. Don't always believe what you read online about HIPAA, especially as it relates to encryption and IT, there are a lot of groups selling more than is necessarily required. Why should you Attend: HIPAA NOW HAS TEETH! Be prepared for what's new in 2016! Protect your practice or business! What factors might spurn a HIPAA audit? …are you doing these things? Why are the Feds enforcing after all these years? It is important to understand the new changes going on at Health and Human Services as it relates to enforcement of HIPAA for both covered entities and business associates as it relates to portable devices, texting, and emailing of PHI. You need to know how to avoid being low hanging in terms of audit risk as well as being sued by individuals who have had their PHI wrongfully discloses due to bad IT practices. I have also been expert witness on multiple court cases where a business or medical practice is being sued for not doing their due diligence to minimize risk. Areas Covered in the Session: Updates for 2016 BYOD Portable devices B

Overview: The objectives of this course will be to go over the specific risks associated with business associates as it relates to HIPAA compliance. I will uncover myths versus reality as it relates to this very enigmatic law based on over 600 risk assessments performed as well as years of experience in dealing directly with the Office of Civil Rights HIPAA auditors. Times have changed and unfortunately many businesses are losing clients or unable to get new clients due to problems with their compliance program or lack of a compliance program. I will demonstrate from real life audits conducted by the Federal government what your highest risks are for being fined (some of the risk factors may surprise you). In addition this course will cover the highest risk factors for being sued for wrongful disclosures of PHI and the manner in which patients are now using state laws to sue for wrongful disclosures. States are being encouraged by the Federal government to implement new laws to remedy their citizens. Why should you Attend: Protect your business! Business associates are now required to comply directly with the HIPAA legislation! Many businesses are losing clients or unable to get clients because of compliance issues. We will be discussing the changes taking place in Washington DC with the Health and Human Services in relating to new risks business associates face under HIPAA. I will also be discussing factors might cause an unwanted visit or letter from the Office of Civil Rights and how to prepare for the audit and deal with the Feds Areas Covered in the Session: Updates for 2016 What to do if a client requires more than just a signed business associate agreement Fines Policy and Procedure Who Will Benefit: Any business associates who work with medical practices or hospitals (i.e. billing companies, transcription companies, IT companies, answering services, home health, coders, attorneys, etc) Speaker Profile Brian Tuttle is a Certified Professional in H

Basics of the Anti-Kickback Statute : The Anti-Kickback Statute is aimed at curbing abuse and fraud in the Medicare and Medicaid systems by professionals who offer services and benefit in direct or indirect ways. In order to protect Medicare and Medicaid patients, as well as federal health care programs from abuse and fraud; the Anti-Kickback Statute was enacted. The core act that the Anti-Kickback Statute considered as fraud and abuse is the unlawful acceptance or diversion of money into influencing medical decision-making. The Anti-Kickback Statute is very clear on this. It states that anyone in the healthcare industry, who consciously and deliberately accepts a fee or remuneration of any kind or offers the same with the intention of manipulating the course of a medical decision-making, is liable to punishment. What acts attract penalties? Acts of various kinds attract penalties under the Anti-Kickback Statute. Some of these include: Carrying out advertising or marketing activities for promoting the brand of health care providers Participating in affiliate programs or pay per click commissions Working out promotion agreements with multiple companies Taking part in sponsorships Working out strategic alliances with healthcare providers Licensing content or technology Selling a healthcare provider's brands of products or services Taking a cut in the advertising revenue The nature of penalties under the Anti-Kickback Statute The Anti-Kickback Statute states major penalties for acts it prohibits. The Anti-Kickback Statute prescribes these major penalties: Up to five years in prison This has the potential to attract additional monetary fines of up to $25,000 Administrative civil money penalties that can go up to $50,000 In addition, the Office of Inspector General (OIG) could initiate administrative proceedings and take steps aimed at prohibiting anyone convicted of an Anti-Kickback violation from participating in State and federal programs. The OIG could also impose

Course "Internal Auditing for the Medical Device Industry" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion. Overview: This course provides an overview of internal auditing requirements and techniques for medical device companies as a method for risk management and quality improvement. The course will cover auditing requirements, audit planning, preparation, knowledge, auditor skills, interviews, documents and records review, objective evidence, audit report writing and corrective action. Why should you attend: Attendees should attend this seminar for risk management and improvement purposes to identify weaknesses, problems, compliance risks, and improvement opportunities. Who Will Benefit: * Quality Manager * Quality Associate * Quality Engineer * Quality Technician * Regulatory Associate Agenda: Day One Lecture 1: Overview of an auditing program, principles of quality management systems and how they related to auditing, benefits of auditing, and what is auditing. Lecture 2: Types of audits, auditor qualifications, ethics, responsibilities, audit phases, audit planning, and scheduling. Lecture 3: Conducting audits, interview techniques, objective evidence, data collection, tracing, use of checklists, and reviewing documents and records. Lecture 4: Conducting process audits, running closing meetings, audit report writing, corrective actions, and improvement Day Two Lecture 1: Overview to auditing to ISO 13485 and FDA QSR. Global differences which affect auditing approaches, auditing document control and record keeping, management responsibility, and resource management. Lecture 2: Auditing order handling, design control, purchasing, and supplier controls. Lecture 3: Auditing production, validation, and preservation. inspection and testing, control of test equipment, customer property, and sterilization Lecture 4: Auditing customer feedback, internal auditing programs, complaint