Since the Health Insurance Portability and Accountability Act (HIPAA) was first released in 1996, there has been much confusion on its requirements. Between the Privacy Rule, Security Rule, Omnibus Rule, and all the updates and efforts at clarification in between, organizations still struggle to manage their compliance. Since penalties for noncompliance can be steep—including massive fines and even potential jail time—organizations need to ensure they understand the latest requirements from the Office of Civil Rights (OCR) – the agency charged with HIPAA enforcement.
In the Summer of 2016, the OCR released Phase 2 of its HIPAA audit program audit guidance. In this publication, SecureState will detail the highlights of the audit guide, heightened expectations for HIPAA compliance, and what to expect from the audit process.
What The Guide Covers:
- Results of Noncompliance
- Audit Programs
- 7 HIPAA Controls You Should Know