An estimated 40 million to 45 million patient records have been compromised in HIPAA data breaches since 2012. Since 2009, theft or loss of unencrypted devices or computers accounted for 35 percent of all breaches.
Where do HIPAA-covered entities, such a physician practices and their business associates, most often make their biggest misstep? It's in performing an inadequate risk analysis. The "failure to perform a comprehensive, thorough risk analysis and then to apply the results of that analysis," leaves organizations vulnerable, says U.S. Department of Health and Human Services Office for Civil Rights Director Leon Rodriguez.
Many breaches, officials say, easily can be avoided through regular risk analyses and up-to-date company policies. Under the new HIPAA Final Omnibus Rule, covered entities and business associates responsible for violating HIPAA Privacy and Security rules by failing to safeguard patient protected health information could face up to $1.5 million in annual fines.
HIPAA Security: The Keys to Compliance is a new TMA seminar that will give you an overview of the HIPAA Security Rule and then explore techniques you can use to identify and address any HIPAA deficiencies in your practice. This is a perfect opportunity for you and your staff to jump ahead of the curve on HIPAA security readiness.
Seminars begin in Houston on Sept. 9 and continue throughout the month in cities across the state. Can't attend in person? Register for the live webcast, and participate online on Sept. 25 from your home or office.
Action, Sept. 2, 2014