HIPAA Compliance with the New Omnibus Rule: How to Pass an Audit to Avoid Penalties and Criminal Convictions

Jonathan P. Tomes , J.D., is Keynote Speaker at Compliance key Inc. He is a health care attorney practicing in the greater Kansas City. He is a nationally recognized authority and expert witness on the legal requirements for health information. Jon has written more than 60 books, including the following: How to Handle HIPAA and HITECH Act Breaches, Complaints, and Investigations: Everything You Need to Know; The Compliance Guide to HIPAA and the DHHS Regulations, now in its sixth edition, along with its accompanying HIPAA Documents Resource Center CD, ; Electronic Health Records: A Practical C........


Before the HITECH Act, DHHS could audit covered entities for HIPAA compliance, but did not have to. With that Act, now the must audit those entities and business associates as well. In the first audits, the Phase I audits, DHHS came on site. The subsequent Phase II audits, however, were paper audits in which those audited had to provide documentation of their compliance. As yet, we do not know what form Phase III will take, but the necessary actions to prepare will be largely the same whether the audit is purely a paper one or includes an on-site component.

Why should you attend this webinar?

If you are audited and found to be non-compliant, you could face civil money penalties, supervised Corrective Action Plans, bad publicity with concomitant loss of patients, and significant remediation costs.
Civil money penalties to date range from $50,000 to two in the $4 million range. Some of these penalties resulted from improper access by a workforce member, improper use, or improper disclosure. Such improper actions can also result in criminal liability. A physician went to federal prison for improper chart access. A nurse was convicted of improperly using PHI to threaten a lawsuit.
Nor are these penalties reserved for large practices. Fines have been assessed against two-physician practices and a small hospice in North Dakota. Being not-for-profit provides no immunity, nor does being a government entity. Alaska Medicaid was fined $1.5 million; and a county government (Skagit County in Washington State), $215,000.

Areas Covered in the Session:

Who can Benefit:

Health Professionals and their staffs, Privacy and Security Officers, Medical Records Professionals, IT Professionals, Office Managers, Risk Managers, Business Associates of Covered Entities (those that provide a service for the Covered Entity involving the use of individually identifiable health information (transcription services, billing services, cloud storage companies, and the like), Healthcare Attorneys, Compliance Officers, HIPAA consultants

Webinar Id: HIPHJPT001

Training Options:

Duration: 60 mins

 View Anytime

 Recorded: [Six month unlimited access]

 $237 (Single Attendee)  $599 (Unlimited Attendee)

Refund Policy
Upcoming Webinar :Life Sciences and Healthcare
Understanding Medical Device Design Controls
By: Charles Paul
When: 01/22/2018 | 12:30 PM PT |03.30 PM ET
Price: $179
IDMP data collection from documents - Strategies towards IDMP compliance.
By: Joel Finkle
When: 01/23/2018 | 12.30 PM PT |03.30 PM ET
Price: $179

More Webinar

Copyright © 2018 Compliance Key . All Rights Reserved. Back to Top