HIPAA - Understanding Compliance Program Requirements 2017
Overview:
Being in compliance with HIPAA involves not only ensuring that you provide the appropriate patient rights and controls on your uses and disclosures of Protected Health Information; but that you also have the proper policies and procedures in place. If audited or the subject of a compliance review, you will be required to show the government you have all the necessary documentation in place for safeguarding patient Protected Health Information and indicate how you addressed all required security safeguards. This starts with the fundamentals of a HIPAA compliance program.
If your healthcare practice, business, or organization needs to understand how to put a HIPAA compliance program in place or make sure the current program is adequate and can withstand government scrutiny, please join us for this informative and interactive two-day training course.
Why you should attend:
With an increase in HIPAA enforcement and Phase 2 audits completed, many organizations need to fully understand the requirements of a compliance program.
Attendees will leave the course clearly understanding all of the requirements for a comprehensive HIPAA compliance program and what steps need to be taken to mitigate risk. The seminar will include practical exercise to assist in knowing how to develop, review, and amend HIPAA policy and procedure. After completing this course, a Covered Entity or Business Associate will have a clear roadmap for what needs to be place when it comes to all of the HIPAA regulations.
Areas Covered in the Session:
• Why was HIPAA created?
• What is HITECH and the Omnibus Rule?
• Who Must Comply with HIPAA Requirements?
• What are the HIPAA Security and Privacy Rules?
• What is a HIPAA Compliance Program?
• What is a HIPAA Risk Management Plan?
• What is meant by "Required" and "Addressable" Implementation Specifications?
• What are Administrative, Technical, and Physical Safeguards Requirements?
• HIPAA policy and procedure practical exercise
• What is a HIPAA Risk Assessment?
• Risk Assessment practical exercise
• What are HIPAA training requirements?
• What is a HIPAA data breach and what happens if it occurs?
• What are the penalties and fines for non-compliance and how to avoid them?
• Creating a Culture of Compliance
• Q&A
Who Will Benefit:
• Compliance Officer
• HIPAA Privacy Officer
• HIPAA Security Officer
• Medical/Dental Office Managers
• Practice Managers
• Information Systems Manager
• Chief Information Officer
• General Counsel/lawyer
• Practice Management Consultants
• Any Business Associates that accesses protected health information
• IT Companies that support Medical/Dental practices or other healthcare organizations
Agenda:
Day 1 Schedule
Lecture 1:
What are HIPAA, HITECH & the Omnibus Rule?
Learning from Corrective Action Plans
Lecture 2:
Privacy Rule Requirements
Authorized and Permitted Disclosures
Marketing in a HIPAA compliant world
Lecture 3:
Security Rule Requirements
Administrative, Technical, and Physical Safeguards
Implementation Specifications
How to Conduct a HIPAA Risk Assessment
Lecture 4:
Risk Assessment Practical Exercise
Day 2 Schedule
Lecture 1:
Review of Risk Assessment Practical Exercise
Remediation and Required Follow Up
Lecture 2:
What Policies and Procedures Must be Covered
HIPAA Risk Management Plans
Developing, Reviewing and Amending Policy and Procedure
Lecture 3:
Policy and Procedure - Practical Exercise
Lecture 4:
Review Policy and Procedure Practical Exercise
HIPAA and Social Media
HIPAA Enforcement Trends for 2017
Creating a Culture of Compliance
Summary & Closing Remarks Q&A
Speaker
Jay Hodes
President and Founder, Colington Security Consulting, LLC
Jay Hodes is a leading expert in HIPAA compliance and President of Colington Consulting. His company provides HIPAA consulting services for healthcare providers and business associates. Mr. Hodes has over 30 years of combined experience in risk assessments, site security evaluation, regulatory compliance, policy and procedures assessments, and Federal law enforcement management. He is the former Assistant Inspector General for Investigations at the U.S. Department of Health and Human Services.
Mr. Hodes has been the keynote speaker and provided presentations regarding HIPAA compliance to many professional healthcare organizations. He has published over 35 educational articles regarding HIPAA compliance, been featured in Part B News articles, the Report on Patient Privacy, provided a guest post in the Electronic Health Reporter, and provided advice on HIPAA compliance to Renal & Urology News and the Virtru.com blog.
Mr. Hodes is a member of member of the American Institute of Healthcare Compliance, Healthcare Information and Management Systems Society, American Society for Industrial Security, Metro Collaborative, the Practice Management Association of No
Being in compliance with HIPAA involves not only ensuring that you provide the appropriate patient rights and controls on your uses and disclosures of Protected Health Information; but that you also have the proper policies and procedures in place. If audited or the subject of a compliance review, you will be required to show the government you have all the necessary documentation in place for safeguarding patient Protected Health Information and indicate how you addressed all required security safeguards. This starts with the fundamentals of a HIPAA compliance program.
If your healthcare practice, business, or organization needs to understand how to put a HIPAA compliance program in place or make sure the current program is adequate and can withstand government scrutiny, please join us for this informative and interactive two-day training course.
Why you should attend:
With an increase in HIPAA enforcement and Phase 2 audits completed, many organizations need to fully understand the requirements of a compliance program.
Attendees will leave the course clearly understanding all of the requirements for a comprehensive HIPAA compliance program and what steps need to be taken to mitigate risk. The seminar will include practical exercise to assist in knowing how to develop, review, and amend HIPAA policy and procedure. After completing this course, a Covered Entity or Business Associate will have a clear roadmap for what needs to be place when it comes to all of the HIPAA regulations.
Areas Covered in the Session:
• Why was HIPAA created?
• What is HITECH and the Omnibus Rule?
• Who Must Comply with HIPAA Requirements?
• What are the HIPAA Security and Privacy Rules?
• What is a HIPAA Compliance Program?
• What is a HIPAA Risk Management Plan?
• What is meant by "Required" and "Addressable" Implementation Specifications?
• What are Administrative, Technical, and Physical Safeguards Requirements?
• HIPAA policy and procedure practical exercise
• What is a HIPAA Risk Assessment?
• Risk Assessment practical exercise
• What are HIPAA training requirements?
• What is a HIPAA data breach and what happens if it occurs?
• What are the penalties and fines for non-compliance and how to avoid them?
• Creating a Culture of Compliance
• Q&A
Who Will Benefit:
• Compliance Officer
• HIPAA Privacy Officer
• HIPAA Security Officer
• Medical/Dental Office Managers
• Practice Managers
• Information Systems Manager
• Chief Information Officer
• General Counsel/lawyer
• Practice Management Consultants
• Any Business Associates that accesses protected health information
• IT Companies that support Medical/Dental practices or other healthcare organizations
Agenda:
Day 1 Schedule
Lecture 1:
What are HIPAA, HITECH & the Omnibus Rule?
Learning from Corrective Action Plans
Lecture 2:
Privacy Rule Requirements
Authorized and Permitted Disclosures
Marketing in a HIPAA compliant world
Lecture 3:
Security Rule Requirements
Administrative, Technical, and Physical Safeguards
Implementation Specifications
How to Conduct a HIPAA Risk Assessment
Lecture 4:
Risk Assessment Practical Exercise
Day 2 Schedule
Lecture 1:
Review of Risk Assessment Practical Exercise
Remediation and Required Follow Up
Lecture 2:
What Policies and Procedures Must be Covered
HIPAA Risk Management Plans
Developing, Reviewing and Amending Policy and Procedure
Lecture 3:
Policy and Procedure - Practical Exercise
Lecture 4:
Review Policy and Procedure Practical Exercise
HIPAA and Social Media
HIPAA Enforcement Trends for 2017
Creating a Culture of Compliance
Summary & Closing Remarks Q&A
Speaker
Jay Hodes
President and Founder, Colington Security Consulting, LLC
Jay Hodes is a leading expert in HIPAA compliance and President of Colington Consulting. His company provides HIPAA consulting services for healthcare providers and business associates. Mr. Hodes has over 30 years of combined experience in risk assessments, site security evaluation, regulatory compliance, policy and procedures assessments, and Federal law enforcement management. He is the former Assistant Inspector General for Investigations at the U.S. Department of Health and Human Services.
Mr. Hodes has been the keynote speaker and provided presentations regarding HIPAA compliance to many professional healthcare organizations. He has published over 35 educational articles regarding HIPAA compliance, been featured in Part B News articles, the Report on Patient Privacy, provided a guest post in the Electronic Health Reporter, and provided advice on HIPAA compliance to Renal & Urology News and the Virtru.com blog.
Mr. Hodes is a member of member of the American Institute of Healthcare Compliance, Healthcare Information and Management Systems Society, American Society for Industrial Security, Metro Collaborative, the Practice Management Association of No
Sponsored Conferences
