(Journal of Healthcare Information Management – (JHIM) – Spring 2013 – Used by permission from HIMSS). We should all know by now that the Office for Civil Rights (OCR) has been mandated to audit all HIPAA Covered Entities (CEs) and Business Associates (BAs), and we now know the main ingredients of the audits, the protocols, which are subject to change over time based on audit results. All CEs and BAs should begin a process now to prepare for an OCR audit based on the most current protocols. Why? Because once the OCR notifies you that your organization will be audited, you only have a couple of weeks to prepare.
How to Prepare for a HIPAA – HITECH Audit
(Journal of Healthcare Information Management – (JHIM) – Spring 2012 – Used by permission from HIMSS). Covered entities (CEs) and business associates (BAs) can now clearly see the “HIPAA police” up ahead on the “side of the road”.
Preliminary responses from providers and business associates generally show optimism with respect to the state of compliance,although there are some gaps that are cause for concern.
The managers of the HIPAA 411 Linked In group would like to measure the industry’s general level of compliance and to identify systemic impediments that inhibit compliance with HIPAA and HITECH policy, procedure and documentation requirements.