To comply with the HIPAA omnibus final rule, healthcare organizations need to revise their risk assessment process to determine whether they must notify affected individuals of a breach.
There is some common ground in the corrective action plans (CAP) that OCR has imposed on healthcare organizations it has investigated for HIPAA privacy and security deficiencies.
HIM directors are responsible for the integrity of patients' records-even when a hospital shuts down certain wings of the facility or closes its doors entirely.
Quality of care is a top priority for HHS, CMS, OIG, and DOJ. It also has always been an issue for state surveyors, state attorneys general, and Medicaid Fraud Control Units as they examine skilled nursing facilities. In fact, quality of care is now part of the OIG's annual Work Plan.
One task that almost every healthcare organization is going to have to tackle to comply with the HIPAA omnibus final rule is amending its Notice of Privacy Practices (NPP).
