HIPAA and the HITECH Act: Understand the New Privacy and Security Requirements
Product Description:
Audio Conference on CD or Audio On-Demand
Sponsored by Guide to HIPAA Auditing, Second Edition
presented on October 21, 2009
New HITECH Act privacy and security requirements (that build on HIPAA) bring with them new and significantly higher penalties for non-compliance. Breach notification requirements to both patients and the government, heightened organizational provisions, and new patient rights all leave opportunity for something to go wrong-unless you update policies, refine your incident response plans, implement new procedures, and expand your training content to protect your organization from non-compliance risk.
This 90-minute audio conference features analysis from experts in HIPAA security and privacy and a case study about how one organization built a successful model for training and compliance success. Listen to this important discussion and learn what you need to know to strengthen your HIPAA privacy and security programs.
NOTE: This is an intermediate level program. Participants should have a background in the HIPAA privacy and security regulations and be familiar with HIPAA terms such as covered entity, business associate, and protected health information (PHI).
LEARNING OBJECTIVES
At the conclusion of this audio conference, you will be able to:- Describe the most significant privacy and security changes
- Explain how HITECH Act affects business associates, and a covered entities' relationship with their BAs
- Describe enforcement of HIPAA and HITECH Act
- List new penalties for non-compliance
- Implement strategies for working toward compliance
- Describe strategies to enhance your current workforce training
TAKE A LOOK AT THE AGENDA:
- HITECH Act privacy changes
- New patient rights including:
- Restrictions on certain PHI disclosures
- Accounting of disclosure of ePHI for treatment, payment, and operations
- More stringent controls on covered entities' use and disclosure of PHI
- New limitations with tighter definition of "marketing"
- Fundraising opt-out
- New patient rights including:
- HITECH Act security changes
- Business Associates directly subject to security - and some privacy - requirements
- Changes to BA contracts and relationships
- Breach notification when breach of unsecure PHI
- What is "secure" PHI vs. unsecure?
- Breach definition
- Concept of "harm threshold" in rule on breach notification
- Breach response: notification and mitigation requirements
- Enforcement and penalties
- Stepped up government enforcement strategies
- New severe penalties for non-compliance
- Implementation strategies and tips
- Case Study: Tripler Army Medical Center
- Successful training model
- Informing patients of new HITECH Act privacy rights
- New breach notification process, per the HITECH Act
- Working with business associates, then and now
- Privacy and security training for new HITECH Act requirements
A question and answer session follows the presentation.
MATERIALS
In addition to the expertise and advice presented during this audio conference, you'll also receive a slide presentation of the program materials and:- Penalties table
- Samples from The HIPAA and HITECH Toolkit from HCPro
- Case study: Create a culture of compliance
- HIPAA and the HITECH white paper
- Business Associates and HITECH white paper
These materials are provided with PDF links.
MEET THE SPEAKERS
Kate Borten, CISSP, CISM, is president of The Marblehead Group of Marblehead, MA, and provides privacy and security assessments, regulatory compliance audits, and program development guidance to clients across the healthcare industry. She is a nationally-recognized expert on HIPAA and health information privacy and security, and a frequent speaker on these topics. She is the author of HIPAA Security Made Simple, The HIPAA and HITECH Toolkit, the 2009 HIPAA Training Handbook series, all from HCPro, Inc., and is a member of HCPro's Briefings on HIPAA editorial advisory board.Brandon Ho, CIPP, is the HIPAA compliance specialist for the Pacific Regional Medical Command based at Tripler Army Medical Center in Honolulu, HI, where he ensures compliance with security and privacy rules.
WHO SHOULD LISTEN?
Privacy, compliance, and security officers, and HIM directors at covered entities, business associates, and others involved with privacy and security compliance.AUDIO ON-DEMAND
In addition to the regular purchase options for HCPro audio conferences, we are pleased to offer another option, audio on-demand. Audio on-demand allows you to download the program and play it back at your convenience through your computer or MP3 player. Purchase a CD or audio on-demand of the program and listen when you can. It's also a perfect training tool for new staff or as a refresher for veteran staff.Product Types : Departments :
