And fines aren’t the only things that are being stepped up. The OCR is promising increased audits, with more than 1,200 companies slated to be scrutinized. “Entities subject to HIPAA’s requirements need to be conscious of not only the planned aggressive punishment related to privacy breaches and security lapses, but also the OCR’s extensive audit strategy,” warns Jason Gavejian, a Jackson and Lewis attorney.
"Knowing what's in the pipeline, I suspect that [$4.8 million] will be low compared to what's coming up ."Healthcare organizations seeking to avoid HIPAA fines are implementing and reviewing not only policy and procedures but are utilizing technology to proactively detect privacy data breaches. This technology is available as a low-cost on-demand SaaS analytics service.
- Jerome B. Meites, OCR chief regional counsel
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) OCR attorney predicts spike in HIPAA fines - www.FierceHealthIT.com, 06/16/2014