Key Factors to Write HIPAA Compliance Policies

  • Check with publisher
  • Published date: July 26, 2017
    • Fremont, California, United States

Overview: The webinar will explain the process for covered entities and business associates to use to draft, adopt, and implement HIPAA compliance policies. The webinar will begin with a discussion of how to decide, using a gap analysis and a risk analysis, what policies the organization needs, including required, addressable, and other policies. Then, the webinar will cover writing a policy. Writing a policy is easier than one may think. It is a three-step process: researching, drafting, and revising.

This webinar will teach you to ask questions, solicit help, collect samples, keep the principles of substance, organization, coherence, style, and correctness in mind while you are drafting, send your draft out for review, incorporate comments, implement the policy, and repeat as necessary. The prospect of developing and writing perhaps as many as 70 policies to attain HIPAA compliance may still seem daunting, but this webinar will teach you how to make a checklist, take it step by step, and enlist the help of others when you need it.

Why should you Attend: The majority of the DHHS civil money penalties and settlements in lieu thereof involve, sometimes with other violations, failure to perform a written risk analysis, failure to develop required policies, and failure to conduct adequate HIPAA training. These penalties usually are in the seven-figure range.

Failure to conduct a written risk analysis, adopt required policies, or conduct required training qualifies as "willful neglect," which carries the highest civil money penalty ("CMP") and which penalty cannot be waived by DHHS as can violations due to a reasonable cause. DHHS entered into a settlement with Massachusetts General Hospital for $1 million for a breach involving leaving paper PHI records on a subway. The sanction was because Massachusetts General had not trained its workforce on proper security for PHI taken offsite and did not have a work-at-home policy. Significantly, HIPAA does not even mention working at home, much less specifically require such a policy.

Areas Covered in the Session:
Preliminaries
Learn how to decide which policies to write and adopt, using gap analysis and risk analysis
Learn which policies are required and which are addressable
Learn about other policies that your organization may need that are not mentioned in the HIPAA regulations but that organizations have nonetheless been fined for not having
Researching
Ask questions: Learn why you need to nail down the answers to at least 12 questions before you try to write a policy and how to do so
Solicit help: Learn whom to solicit help from both within and outside your organization and when and why and how
Collect samples: Learn what samples to collect and from whom
Drafting
Substance: Learn what substance means and how to achieve it
Organization: Learn how to draft a clear beginning, a clear middle, and a clear end
Coherence: Learn how to connect your ideas so that readers will not have to wonder where something came from or why
Style. Learn how to write for your target audience as simply and clearly as possible
Correctness: Learn how to get rid of the static in your writing
Revising
Review: Learn whom to contact to review your drafts
Incorporate: Learn how to resolve disputes and incorporate changes
Implement: Learn how to lay out a plan for implementation of the policy, including publishing, distribution, implementing (and perhaps even training the workforce on the policy), and schedule for annual review and revision, if necessary
Questions and answers

Who Will Benefit:
Compliance Director
CEO
CFO
Privacy Officer
Security Officer
Information Systems Manager
HIPAA Officer
Chief Information Officer
Health Information Manager
Healthcare Counsel/Lawyer
Office Manager
Contracts Manager
Speaker Profile
Alice M. McCart has been an editor for more than three decades and an attorney admitted to practice law in Illinois since 1993. She has master’s degrees in teaching and journalism and enjoys freelance editing, tutoring, and teaching effective writing to adults. She has held positions in the federal government, in professional associations, in the corporate world, in private law practice, and in HIPAA consulting.

Price - $139
Contact Info:
Netzealous LLC -MentorHealth
Phone No: 1-800-385-1607
Fax: 302-288-6884
Email: support@mentorhealth.com
Website: http://www.mentorhealth.com/
Webinar Sponsorship Opportunity: https://www.mentorhealth.com/control/webinar-sponsorship/?seo

Result 0 votes
Roger Steven
0 votes

Useful information

  • Avoid scams by acting locally or paying with PayPal
  • Never pay with Western Union, Moneygram or other anonymous payment services
  • Don't buy or sell outside of your country. Don't accept cashier cheques from outside your country
  • This site is never involved in any transaction, and does not handle payments, shipping, guarantee transactions, provide escrow services, or offer "buyer protection" or "seller certification"

Related listings

  • Privacy and Security Challenges in Integrated Care

    Privacy and Security Challenges in Integrated Care

    Medical - Health Fremont (California) September 5, 2019 Check with publisher

    Overview: This presentation will cover the challenges of maintaining information privacy and security presented by the shift to an integrated model of health care. Why should you Attend: A lack of familiarity with the differences in privacy and secur...

  • Lessons from OCR Audits - Risk Analysis Explained Step-by-Step

    Lessons from OCR Audits - Risk Analysis Explained Step-by-Step

    Medical - Health Fremont (California) May 13, 2019 Check with publisher

    Overview: The Phase 2 HIPAA Compliance Audit, increasing breaches of unsecured protected health information and rampant medical identity theft reveal a national crisis in HIPAA compliance. The Office for Civil Rights (OCR), the HIPAA enforcement arm ...

  • HC4031-01

    HC4031-01

    Medical - Health Shirley (New York) April 25, 2019 Check with publisher

    The Atlantic horseshoe crab, Limulus polyphemus, is a marine chelicerate arthropod. Despite its name, it is more closely related to spiders, ticks, and scorpions than to crabs. Horseshoe crabs are most commonly found in the Gulf of Mexico and along t...