The Health and Human Services (HHS) Office of Civil Rights (OCR), which over the summer sent pre-audit surveys to as many as 800 entities, will probably audit about 400 of them. For the firs time, business associates will be included.
"OCR will select about 400 entities for HIPAA audits. Those audits will begin this fall - which is quickly approaching>."These Phase 2 audits will differ from Phase 1 in several ways. They will target HIPAA standards, which yeilded high non-compliance during Phase 1. Also the audits will be broken down by type, such as compliance with the privacy/security rules and risk analysis/management.
- The National Law Review
Healthcare organizations seeking to be ready for these audits regarding privacy and security rules and risk assessment, can utilize low-cost on-demand SaaS analytics services.
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) Are You Ready for Round Two (of HIPAA Compliance Audits)? - www.NationalLawReview.com, 08/12/2014