An article over at Physicians Practice gives some useful tips to avoid HIPAA fines.
1) Conduct or update your security risk assessment required by the security rules – A security risk assessment is the core of the HIPAA security rule
2) Implement the administrative, technical, and physical safeguards required by the HIPAA security rule – make sure you have HIPAA Security Policies and Procedures
Most physician practices have polices required by the privacy rule, but comparatively few have properly addressed the safeguards required by the security rule.
3) Execute business associate agreements (BAAs) with business associates – Have BAAs with all your Business Associates and make sure you ask them for proof of compliance.
4) Train your employees and monitor their performance – Train employees at least once and year and make sure new employees are trained before accessing patient information.
Free HIPAA Security Training!
All Covered Entities and Business Associates need to train their employees on HIPAA security. We now offer free online HIPAA security training for Covered Entities and Business Associates. Find out more about our free training and send the information to ALL your colleagues and Business Associates.
Now it is easy to train your employees on protecting patient information!