The HHS’ Office for Civil Rights’ audit program was too narrow in scope to effectively assess data protections and reduce cyber risks in the healthcare sector, according to the report. The report, ...

In examining how the Office of Civil Rights administered its periodic Health Insurance Portability and Accountability Act audit program from January 2016 through December 2020, the U.S. Department of ...

Those shortcomings found in remote “desk audits” of 166 covered entities and 41 business associates are still often cited by the Department of Health and Human Services in its Office for Civil Rights’ ...

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is required by law to perform periodic audits of covered entities and business associates to ensure their compliance ...

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) must take significant steps to enhance its HIPAA audit program to ensure stronger protection of electronic ...

Despite years of federal warnings, many HIPAA regulated organizations neglect to expand their security risk analysis very far beyond electronic health records, said ...

There has been a notable emphasis on proactive enforcement of the privacy and security of protected health information in recent weeks as evidenced by multiple developments regarding compliance with ...

It is necessary for healthcare providers to achieve and maintain HIPAA compliance not only to protect patient privacy, but also to prevent fines and negative public exposure. 1. Perform a “true” risk ...