Conference Description:

Overview:
In today's competitive business climate, health care organizations and their business associates should be able to focus on growing their businesses and not worrying about HIPAA Compliance. Staying up to date on the newest health care information and acquiring new patients takes time. HIPAA compliance takes time. But both goals can be accomplished - in fact, a good compliance program can make you even more competitive because compliance helps protect and grow your business and sets you apart from your competitors. For example, knowing how to use social media and electronic communications within HIPAA rules is key to staying competitive. Also, managing risks is critical to reducing exposure from breaches or cybercrime. HIPAA Risk Analysis - Risk Management is the basis of the HIPAA Compliance Program of every Covered Entity and Business Associate. But mandatory HIPAA Compliance Audits conducted by the Office for Civil Rights (OCR), the HIPAA enforcement arm of the U. S. Department of Health and Human Services (HHS), found 94% of Covered Entities failed the Risk Management Audit and 87% failed the Risk Analysis Audit. And every audited Covered Entity knew well in advance that it was on the short list to be audited, had completed pre-audit questionnaires and knew the exact questions it would be asked and documentation to be provided (audit protocols).
This seminar will demonstrate how Covered Entities and Business Associates can comply calmly, confidently and completely with the HIPAA Rules.
The secret is - HIPAA Rules are easy and routine to follow - when you know the steps.

Paul Hales will capture your attention with visual presentations and interactive learning exercises that take mystery and fear out of HIPAA Compliance.

Takeaways:
Thorough Understanding of HIPAA Rules
• What they are
• How they work together
• Why and How they were made
• How they are changing and what to expect next
HIPAA Risk Analysis - Risk Management for Your Organization
• A Practical Guided Exercise done in class on your computer to take home
Privacy and Security Rules - Permitted and Required Uses and Disclosures
• What information must be protected
• Administrative, Technical and Physical Safeguards
• Social Media, Texting and Emailing Patients
The inter-connected, inter-dependent relationship of Covered Entities and Business Associates
• Business Associate HIPAA compliance responsibilities
• The importance of Due Diligence and how to do it
• How to avoid making a Business Associate your Agent by mistake
• The chain of responsibility from Covered Entity to Business Associate to Subcontractor Business Associate, etc.
• Business Associate responsibilities for Subcontractor Business Associates
• Breach Notification discovery and reporting by Business Associates and Subcontractor Business Associates
What is - and what is not a Reportable Breach of Unsecured PHI
• Potential Breach Investigation - Breach Exceptions
• Ransomware
• Breach Risk Assessment
• Breach Prevention

Who will benefit:
• Health Care Provider - Business Associate
• Health Care Provider Practice Manager
• Risk Manager - Compliance Manager
• Information Systems Manager
• Compliance Director
• Practice Manager
• Privacy Officer
• Security Officer
• CEO
• CFO
• COO
• Chief Information Officer
• Health Information Manager
• Healthcare Legal Counsel
• Office Manager
• Contracts Manager
• Chief Clinical Officer

Agenda:

Day 1 Schedule

Lecture 1: Welcome
Discussion - Goals and Objectives of Seminar Participants
HIPAA Compliance Overview and discussion tailored to specific interests of Seminar Participants

Lecture 2: Focus on HIPAA Compliance
Description of HIPAA Rules and Fundamental in Plain Language continuing and building on discussion in Lecture 1
HIPAA Risk Analysis - Risk Management
The basis of your HIPAA Compliance Program explained step-by-step
• Learn by Doing Begin guided Step-by-Step HIPAA Risk Analysis - Risk Management of your organization on your tablet/laptop - for you to take with you

Lecture 3: HIPAA Risk Analysis - Risk Management
Continued
• Consider lessons learned
• Inter-relationship of Privacy, Security and Breach Notification Rules

Lecture 4: Privacy Rule in Depth
• Protected Health Information (PHI)
• Permitted Uses and Disclosures of PHI
• Individual Rights
• Administrative Requirements
Day 2 Schedule

Lecture 1: Welcome - Recap Day 1 - Questions - Discussion
Security Rule in Depth
• Electronic Protected Health Information (EPHI)
• Purpose and Function of Security Rule
• Security Official