As health records are increasingly maintained online and in the cloud, compliance with the Health Insurance Portability and Accountability Act (HIPAA Compliance) is more important than ever to keep information from becoming vulnerable. Your patients’ personally identifiable health information is some of the most sensitive and personal data imaginable. Working in this field often requires you to handle protected health information (PHI). As such, it is the responsibility of a medical practice to keep that information safe.
The Office for Civil Rights (OCR) recently announced its intention to begin its second round of HIPAA audits. Slated to begin in 2016, the initiative will include both on-site and desk audits and will focus on areas of poor compliance found in initial audits. Audits will cover hospitals, healthcare providers, health plans and businesses. This round of compliance audits will include 200-300 limited scope desk audits to create a sample base of covered entities to ensure HIPAA Privacy, Security & Breach Notification Rules compliance.