by Donna Grindle | Mar 26, 2013 | HIPAA
In a recent discussion with a practice administrator, I discovered a pretty important misconception about what should really be included in a proper HIPAA Risk Analysis. Not that the administrator was doing anything wrong but the understanding of what is a Risk...
by Donna Grindle | Mar 19, 2013 | HIPAA
Changes to the Privacy Rule under the Omnibus Ruling require ALL CEs update and distribute their Notice of Privacy Practices (NPP). There is no option, it is stated specifically. A review of the changes makes it obvious why updates must be done, though. The original...
by Donna Grindle | Mar 14, 2013 | HIPAA
The definition of a Business Associates (BAs) changed under HIPAA 2.0 to broaden the scope of who is considered a BA as well as exactly what a BA is obligated to do for compliance. While the changes seem obvious and not too complicated to implement according to those...
by Donna Grindle | Mar 7, 2013 | HIPAA
Where do you get started with all these changes? It is important to understand that HIPAA 2.0 compliance means more than just having an annual training session and a book of policies on the shelf. HIPAA 2.0 means regular training in all areas of your business and...
by Donna Grindle | Mar 1, 2013 | HIPAA
There is a lot of information to cover in the details of the Final Rule. This article only contains a list of bullet points. All changes in the 2013 Omnibus Rule are not guaranteed to be included in this list. Each entity should make sure they review all aspects of...
Protected by WebARX