The Federal government is not being shy or covert about the increase in HIPAA enforcement that is about to occur. Covered Entities (Physician Practices and Hospitals) as well as Business Associates (Contractors and Subcontractors of Covered Entities) should have no doubt that compliance with HIPAA is no longer an optional activity.
There is no way you can read the below statement from HHS Office for Civil Rights Director Leon Rodriguez and say to yourself, “I don’t have to worry about HIPAA enforcement”.
This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented,” said HHS Office for Civil Rights Director Leon Rodriguez. “These changes not only greatly enhance a patient’s privacy rights and protections, but also strengthen the ability of my office to vigorously enforce the HIPAA privacy and security protections, regardless of whether the information is being held by a health plan, a health care provider, or one of their business associates.
The writing is on the wall. HIPAA enforcement is increasing.
With the HIPAA Omnibus Rule, Covered Entities and Business Associates are required to:
- Perform a Security Risk Assessment
- Implement Security Policies and Procedures
- Implement Security Training for all Employees
- Have a Security Breach Response Plan in place
Organizations need to perform a Risk Assessment to determine the likelihood of risks and what additional security measures should be put in place to protect patient information. Download our free guide to better understand the HIPAA Risk Assessment process.
The HIPAA Omnibus Rule greatly expands which organizations are responsible for complying with HIPAA. Many of these organizations have not put in place the required security measures to ensure compliance. We have developed our HIPAA Business Associate Program to address the needs of Business Associates. Take our 4 question quiz to help determine if your organization is now a Business Associate. If you determine that your organization is a Business Associate, we can help with our quick, easy and inexpensive path to HIPAA compliance!