To fully understand where your organization's risks lie, you not only need to have a firm grasp on risk analysis and assessment processes, you need to define these processes as well.
You hear it over and over again. Covered Entity (CE) A failed to produce an ongoing risk assessment for HIPAA security compliance. CE B had an incomplete risk analysis, leading to a failure to recognize security weaknesses and vulnerabilities. And in come the fines.
When Shallie J. Bryant, CHC, CHPC, went to work at CaroMont Health in North Carolina more than two years ago, her biggest challenge was creating a culture of patient privacy.
We are four months into the new fiscal year and the Office of Inspector General (OIG) has finally released its highly anticipated Work Plan. Click the link above for more information and an in-depth analysis.
Hospitals can make better use of their electronic health record (EHR) system’s audit functions not only to guard patient privacy but also to help prevent healthcare fraud, according to a new HHS Office of Inspector General (OIG) report.
