Wednesday, June 13, 2012

HHS Audit Finding - User Activity Monitoring "In Need of Improvement"

The HHS Office of Civil Rights made some significant points in presentions at the Safeguarding Health Information: Building Assurance through HIPAA Security Conference in Washington, D.C. (co-hosted by OCR and the National Institute of Standards and Technology),

Director of the HHS Office of Civil Rights Leon Rodriguez emphasised that OCR has significantly raised their expectations of compliance by covered entities and their business associates.
HIPAA enforcement agencies’ tolerance for noncompliance with HIPAA is “much, much lower” than in years past. - Leon Rodriguez, Director of the HHS Office of Civil Rights
Senior OCR advisor Linda Sanches gave an initial report on the first 20 OCR audits. User activity monitoring was highlighted areas much in need of improvement, as was contingency planning. Overall, largest number of problems were discovered in in security protections.
Download a white paper on user activity monitoring . Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) OCR Director Leon Rodriguez Says Tolerance for HIPAA Non-Compliance Is Low - Privacy and Information security Law Blog, June 7, 2012

No comments:

Popular Posts

Copyright © 2010-2011 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.