The majority of Recovery Auditor (RA) takebacks in the past year involved hospitals (88%) and physicians (5%), which isn’t surprising because of the volume of services they provide, says De
UK HealthCare's Chief Compliance Officer R. Brett Short knew he was in for a rough day as soon as he saw the email from his organization's privacy officer.
Every healthcare organization should develop and implement a policy and a well-defined process that provides guidance for managing incident and breach response.
Although it hasn't released many details yet, OCR plans to resume its audits to assess compliance with HIPAA privacy, security, and breach notification requirements in 2014. The government agency also plans to expand the audit focus to include business associates (BA).
To comply with the HIPAA omnibus final rule, healthcare organizations need to revise their risk assessment process to determine whether they must notify affected individuals of a breach.
Every healthcare organization should develop and implement a policy and a well-defined process that provides guidance for managing incident and breach response.