HIPAA Privacy and Security Rule Compliance

Program Description:

The long-awaited Final Privacy Rule—released January 17, 2013, by the US Department of Health and Human Services (HHS)—expanded the liability of business associates of hospitals, physicians, and other Health Insurance Portability and Accountability Act (HIPAA) covered entities if data is released in ways that violate patient privacy. Called the “Omnibus” privacy and security rule because of its unexpectedly broad reach (and 560+ pages), the Final Rule updates earlier HIPAA rules with more stringent privacy and security measures passed under the American Recovery and Reinvestment Act of 2009. Most notably, HIPAA reach now extends to “business associates” of business associates. Many business associates use independent contractors and subcontractors to perform work for covered entities. These “extenders” will also have to comply with both the privacy and security rules, greatly expanding the number and type of businesses impacted. Companies that want to do business with covered entities and business associates will have to demonstrate their compliance with these very complex rules. And these rules are no laughing matter; the civil penalties for non-compliance are substantial and include corporate and individual fines and even jail time for criminal violations. HIPAA Privacy and Security Rule Compliance is a three-part training program that provides C-level executives with a complete understanding of what is required of their workforce members (Part 1) and then brings line managers and workforce members the tools to comply with both the HIPAA Privacy and Security Rules (Parts 2 and 3). Additional modules can be added as necessary, including: Bring Your Own Device (B.Y.O.D.) and Other Potential Social Media Disasters in the Workplace; How to Handle a Breach of Protected Health Information; Conducting a Risk Analysis for Meaningful Use Attestation; and Dealing With Federal and State Regulators Conducting an Investigation of Your Company. The faculty instructor for HIPAA Privacy and Security Compliance is an expert in HIPAA, healthcare law, and physician liability with nearly 25 years of experience serving as General Counsel of the Oregon Medical Association. He played a critical role assembling the State of Oregon’s healthcare privacy legislation as the vice-chair of the Task Force on Medical Privacy. He also is an adjunct professor of Health Law at the University of Oregon School of Law in Eugene, Oregon. This customized TNI seminar will simplify the complex, new HIPAA Privacy and Security Rules to encourage compliance for anyone covered by the law. Participants will return to the workplace with the knowledge and skills to avoid non-compliance with this new healthcare measure.