UK HealthCare's Chief Compliance Officer R. Brett Short knew he was in for a rough day as soon as he saw the email from his organization's privacy officer.
Every healthcare organization should develop and implement a policy and a well-defined process that provides guidance for managing incident and breach response.
Although it hasn't released many details yet, OCR plans to resume its audits to assess compliance with HIPAA privacy, security, and breach notification requirements in 2014. The government agency also plans to expand the audit focus to include business associates (BA).
To comply with the HIPAA omnibus final rule, healthcare organizations need to revise their risk assessment process to determine whether they must notify affected individuals of a breach.
Every healthcare organization should develop and implement a policy and a well-defined process that provides guidance for managing incident and breach response.
This year's Recovery Auditor Benchmarking Report surveyed 325 respondents, representing both small and large hospitals, from all four Recovery Auditor regions. It may not come as a huge surprise to many that the main theme of this year's survey is the expanding state of the Recovery Auditors (RA), and the fact that they continue to gain speed and extend their reach.
