Starting in 2017, the Office for Civil Rights (“OCR”) will be conducting on-site audits of hospitals.
We can help your practice stay on top of the latest healthcare news, rules, regulations and trends. Subscribe to stay current and up to date on important matters that will impact your practice. (To subscribe to our blog click here).
While the OCR is currently focusing its audits on healthcare providers and business associates, the agency indicated it will also conduct a small number of on-site audits for hospitals in 2017.
Covered entities only have 10 days to respond to a desk audit.
It is essential to prepare your practice for an audit, but even more essential that you do your required HIPAA risk assessment to protect your practice against breaches.
The OCR could show up at your practice at any time.
What is the OCR looking for when auditing?
- Updated policies and procedures;
- Implementation of policies and procedures;
- Breach notification rule controls;
- Privacy rule controls; and
- Security rule controls.
We help our clients ensure that their risk assessment is up to date and that their employees are adequately trained.
Make sure that your policies are up to date to prepare for breaches and audits. It is essential that your employees are trained on policies and know the procedures to follow.
Employees should know who the appointed HIPAA privacy and security officers are and what the protocols are in the event of a breach.
In our next blog post, we will keep you informed of related issues. To get this important information delivered directly to your mail box, click here to Subscribe.
Do you need help staying current and compliant with the latest laws, rules and regulations? We can help. To contact us about your new government rules and regulations, your practice’s risk assessment, or about your other legal needs: CLICK HERE.
P.S. If you or your patients are interested in consumer healthcare issues, check out myhealthspin.com.