HIPAA - The Requirements for a Compliance Program
With an increase in HIPAA enforcement and Phase 2 audits underway, many organizations need to fully understand the requirements of a compliance program.
Being in compliance with HIPAA involves not only ensuring you provide the appropriate patient rights and controls on your uses and disclosures of protected health information, but you also have the proper policies and procedures in place. If audited or the subject of a compliance review you will be required to show the government you have all the necessary documentation in place for safeguarding patient Protected Health Information and indicate how you addressed all required security safeguards. This starts with the fundamentals of a HIPAA compliance program
If your healthcare practice, business, or organization needs to understand how to put HIPAA compliance program in place or make sure the current program is adequate and can withstand government scrutiny, please join us for this informative and interactive 2 day training course.
Attendees will leave the course clearly understanding of all the requirements for a comprehensive HIPAA compliance program and what steps need to be taken to mitigate risk. The seminar will include practical exercise to assist in knowing how to develop, review, and amend HIPAA policy and procedure. After completing this course, a Covered Entity or Business Associate will have a clear roadmap for what needs to be place when it comes to all of the HIPAA regulations.
Understand the requirements of the HIPAA Security and Privacy Rules
Learn what requirements must be in place for a HIPAA Compliance Program
Understand what HIPAA Implementation Specifications are
Learn how to conduct a HIPAA Risk Assessment
Learn how to create and revise HIPAA policies and procedures
Learn what HIPAA training requirements must be in place
Look at case examples of HIPAA breaches and learn how to avoid them
Learn how to create a culture of compliance within your organization
Why was HIPAA created?
What is HITECH and the Omnibus Rule?
Who Must Comply with HIPAA Requirements?
What are the HIPAA Security and Privacy Rules?
What is a HIPAA Compliance Program?
What is a HIPAA Risk Management Plan?
What is meant by "Required" and "Addressable" Implementation Specifications?
What are Administrative, Technical, and Physical Safeguards Requirements?
HIPAA policy and procedure practical exercise
What is a HIPAA Risk Assessment?
Risk Assessment practical exercise
What are HIPAA training requirements?
What is a HIPAA data breach and what happens if it occurs?
What are the penalties and fines for non-compliance and how to avoid them?
Creating a Culture of Compliance
Day One (8:30 AM – 4:30 PM)
Registration Process: 8:30 AM – 9:00 AM
Session Start Time: 9:00 AM
Session 1 (90 Mins):
What is HIPAA, HITECH & the Omnibus Rule
Session 2 (90 Mins):
HIPAA Privacy Rule Requirements
Authorized and Permitted Disclosures
Marketing in a HIPAA compliant world
Session 3 (90 Mins):
HIPAA Security Rule Requirements
Administrative, Technical, and Physical Safeguards
How to Conduct a HIPAA Risk Assessment
Session 4 (90 Mins):
Risk Assessment Practical Exercise
Day Two (8:30 AM – 4:30 PM)
Session 5 (90 Mins):
Review of Risk Assessment Practical Exercise
Remediation and Required Follow Up
HIPAA Data Breaches
Session 6 (90 Mins):
What Policies and Procedures Must be Covered
HIPAA Risk Management Plans
Developing, Reviewing and Amending Policy and Procedure
Session 7 (90 Mins):
Policy and Procedure - Practical Exercise
Session 8 (90 Mins):
Review Policy and Procedure Practical Exercise
HIPAA & Social Media; Patient Testimonials
Selecting a HIPAA Consultant
Creating a Culture of Compliance
Summary & Closing Remarks