HIPAA 2017 Under Trump 2017
Overview:
The secret is - HIPAA Rules are easy and routine to follow - when they are explained step-by-step in plain language. In this seminar Paul Hales will capture your attention with visual presentations, discussion and learning exercises, and show how to find the right rule with the step-by-step procedures you need when you need them.
Seminar Takeaways
Thorough Understanding of HIPAA Rules
• What they are
• How they work together
• Why and how they were made
• How they are changing and what to expect next
HIPAA Risk Analysis - Risk Management for Your Organization
• A Practical Guided Exercise done in class on your computer to take home
Privacy and Security Rules - Permitted and Required Uses and Disclosures
• What information must be protected
• Administrative, Technical and Physical Safeguards
• Social Media, Texting and Emailing Patients
The inter-connected, inter-dependent relationship of Covered Entities and Business Associates
• Business Associate HIPAA compliance responsibilities
• The importance of Due Diligence and how to do it
• How to avoid making a Business Associate your Agent by mistake
• The chain of responsibility from Covered Entity to Business Associate to Subcontractor Business Associate, etc.
• Business Associate responsibilities for Subcontractor Business Associates
• Breach Notification discovery and reporting by Business Associates and Subcontractor Business Associates
What is - and what is not a Reportable Breach of Unsecured PHI
• Potential Breach Investigation - Breach Exceptions
• Ransomware
• Breach Risk Assessment
• Breach Prevention
Why you should attend:
More than 160 Million Americans have been affected by Breaches of their unsecured Protected Health Information since 2009 when the U. S. Department of Health and Human Services began to keep track. The FBI warned that Medical identity is much more valuable than any other personally identifiable information to identity thieves and the healthcare industry is not prepared to combat this serious, growing threat. Congress passed the HITECH Act in 2009 requiring increased HIPAA enforcement and HIPAA compliance audits. Federal Inspectors General, patient, privacy and consumer advocates demand HIPAA compliance and enforcement.
New strains of ransomware that steal protected health information in addition to locking it up are attacking the health care industry. Threats to health information privacy grow daily. Whether or not the Trump administration eases up on HIPAA Enforcement the healthcare industry must step up, increase its vigilance and HIPAA compliance to prevent breaches, protect patients, protect their own organizations and fight health information thieves.
Who Will Benefit:
Health Care Providers and Business Associates
• HIPAA Compliance Officials
• Risk Manager - Compliance Manager
• Information Systems Manager
• Contract Managers
• Legal Counsel
• Privacy & Security Officials
• Auditors
Agenda:
Day 1 Schedule
Lecture 1:
• President Trump and Secretary Price - How may they affect HIPAA Enforcement?
• HIPAA Overview - HIPAA Compliance Fundamentals
• HIPAA explained in plain language
• 6 Basic HIPAA Compliance Policies
Lecture 2:
• HIPAA Risk Analysis - Risk Management - The basis of your HIPAA Protection and Compliance Program
• Learn by Doing You will do a guided step-by-step HIPAA Risk Analysis - Risk Management of your organization on your tablet/laptop - for you to take with you
Lecture 3:
• Finish HIPAA Risk Analysis - Risk Management
• Consider lessons learned
• How might you improve your HIPAA Compliance Program?
Lecture 4:
• Privacy Rule
• Protected Health Information (PHI)
• Permitted uses and disclosures of PHI
• Social Media
Day 2 Schedule
Lecture 1:
• Security Rule
• Electronic Protected Health Information (EPHI)
• Permitted Uses and Disclosures of EPH
• Security official duties
Lecture 2:
• Business Associates
• Inter-connected HIPAA Compliance for Covered Entities and Business Associates - Agency
• Due Diligence
• Subcontractor Business Associates
• Business Associate Agreement
• Non-BA Confidentiality Agreement
Lecture 3:
• Breach Notification
• Learn by Doing Investigate a Potential Breach
• Do a Breach Risk Assessment
• When you must notify - and when you do not need to notify
• Notifications and Documentation
Lecture 4:
• Install or update your HIPAA Compliance Program
• Workforce training
• How to prepare for HHS Audits or investigations
• Final Questions - Answers - Discussion
Speaker
Paul R. Hales, J.D.
Paul R. Hales, Attorney at Law, LLC
Paul R. Hales received his Juris Doctor degree from Columbia University Law School and is licensed to practice law before the Supreme Court of the United States. He is an expert on HIPAA Privacy, Security, Breach Noti?cation and Enforcement
The secret is - HIPAA Rules are easy and routine to follow - when they are explained step-by-step in plain language. In this seminar Paul Hales will capture your attention with visual presentations, discussion and learning exercises, and show how to find the right rule with the step-by-step procedures you need when you need them.
Seminar Takeaways
Thorough Understanding of HIPAA Rules
• What they are
• How they work together
• Why and how they were made
• How they are changing and what to expect next
HIPAA Risk Analysis - Risk Management for Your Organization
• A Practical Guided Exercise done in class on your computer to take home
Privacy and Security Rules - Permitted and Required Uses and Disclosures
• What information must be protected
• Administrative, Technical and Physical Safeguards
• Social Media, Texting and Emailing Patients
The inter-connected, inter-dependent relationship of Covered Entities and Business Associates
• Business Associate HIPAA compliance responsibilities
• The importance of Due Diligence and how to do it
• How to avoid making a Business Associate your Agent by mistake
• The chain of responsibility from Covered Entity to Business Associate to Subcontractor Business Associate, etc.
• Business Associate responsibilities for Subcontractor Business Associates
• Breach Notification discovery and reporting by Business Associates and Subcontractor Business Associates
What is - and what is not a Reportable Breach of Unsecured PHI
• Potential Breach Investigation - Breach Exceptions
• Ransomware
• Breach Risk Assessment
• Breach Prevention
Why you should attend:
More than 160 Million Americans have been affected by Breaches of their unsecured Protected Health Information since 2009 when the U. S. Department of Health and Human Services began to keep track. The FBI warned that Medical identity is much more valuable than any other personally identifiable information to identity thieves and the healthcare industry is not prepared to combat this serious, growing threat. Congress passed the HITECH Act in 2009 requiring increased HIPAA enforcement and HIPAA compliance audits. Federal Inspectors General, patient, privacy and consumer advocates demand HIPAA compliance and enforcement.
New strains of ransomware that steal protected health information in addition to locking it up are attacking the health care industry. Threats to health information privacy grow daily. Whether or not the Trump administration eases up on HIPAA Enforcement the healthcare industry must step up, increase its vigilance and HIPAA compliance to prevent breaches, protect patients, protect their own organizations and fight health information thieves.
Who Will Benefit:
Health Care Providers and Business Associates
• HIPAA Compliance Officials
• Risk Manager - Compliance Manager
• Information Systems Manager
• Contract Managers
• Legal Counsel
• Privacy & Security Officials
• Auditors
Agenda:
Day 1 Schedule
Lecture 1:
• President Trump and Secretary Price - How may they affect HIPAA Enforcement?
• HIPAA Overview - HIPAA Compliance Fundamentals
• HIPAA explained in plain language
• 6 Basic HIPAA Compliance Policies
Lecture 2:
• HIPAA Risk Analysis - Risk Management - The basis of your HIPAA Protection and Compliance Program
• Learn by Doing You will do a guided step-by-step HIPAA Risk Analysis - Risk Management of your organization on your tablet/laptop - for you to take with you
Lecture 3:
• Finish HIPAA Risk Analysis - Risk Management
• Consider lessons learned
• How might you improve your HIPAA Compliance Program?
Lecture 4:
• Privacy Rule
• Protected Health Information (PHI)
• Permitted uses and disclosures of PHI
• Social Media
Day 2 Schedule
Lecture 1:
• Security Rule
• Electronic Protected Health Information (EPHI)
• Permitted Uses and Disclosures of EPH
• Security official duties
Lecture 2:
• Business Associates
• Inter-connected HIPAA Compliance for Covered Entities and Business Associates - Agency
• Due Diligence
• Subcontractor Business Associates
• Business Associate Agreement
• Non-BA Confidentiality Agreement
Lecture 3:
• Breach Notification
• Learn by Doing Investigate a Potential Breach
• Do a Breach Risk Assessment
• When you must notify - and when you do not need to notify
• Notifications and Documentation
Lecture 4:
• Install or update your HIPAA Compliance Program
• Workforce training
• How to prepare for HHS Audits or investigations
• Final Questions - Answers - Discussion
Speaker
Paul R. Hales, J.D.
Paul R. Hales, Attorney at Law, LLC
Paul R. Hales received his Juris Doctor degree from Columbia University Law School and is licensed to practice law before the Supreme Court of the United States. He is an expert on HIPAA Privacy, Security, Breach Noti?cation and Enforcement
Sponsored Conferences
