Tuesday, February 12, 2013

OCR: Expect More Monetary Fines

The OCR is evaluating audit pilot findings and the audit process itself to determine the permanent program. Audits are expected to continue in late 2013.
"Healthcare organizations should expect more and larger monetary penalties for HIPAA non-compliance...there is plenty of non compliance out there and room for improvement." - Leon Rodriguez, OCR
OCR has an "inventory" of ongoing investigations that are expected to conclude with monetary settlements. Common compliance weaknesses include a lack of a timely and thorough risk analysis, insufficient or outdated processes and procedures to prevent and resolve breaches and insufficient HIPAA training for staff.
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) HIPAA Enforcer Reveals Audit Timeline - HealthcareInfoSecurity, 12/14/2012

No comments:

Popular Posts

Copyright © 2010-2011 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.