Various healthcare industry studies have shown that an alarming number of medical practices are not prepared to be HIPAA compliant. For example, certain surveys indicated roughly 1/3 of respondents had not conducted a HIPAA-required risk analysis.
HIPAA ruling 164.308(a)(1)(ii)(A) requires a medical practice (covered entity) to periodically perform a thorough risk analysis.
Meanwhile, The U.S. Department of Health and Human Services Office for Civil Rights is required to perform periodic HIPAA compliance audits. More importantly, not being compliant exposes a medical practice to data breaches and other compromises to Protected Health Information (PHI). Being non-compliant can cause a healthcare practice to be at risk for financial losses, business disruptions, degradation of patient care, reputation damages, legal, and breach remediation costs.
Does your practice periodically complete a HIPAA-required risk analysis?
Complying with HIPAA regulations can be particularly challenging for small practices with limited resources to research and develop methods of addressing regulatory requirements.
How to Get Help with HIPAA Compliance
powersolution, as an IT managed services provider, refers its clients to PCIHIPAA, a third-party compliance firm specializing in HIPAA, OSHA, and Payment Card Industry Compliance Solutions nationwide for over 10 years.
Through a special powersolution and PCIHIPAA arrangement, a 2022 HIPAA Risk Assessment & Consultation is being offered on a complimentary basis (normally a $1200 value).
As a starting point, below is a link where you can perform, in approximately 10 minutes online, a required HIPAA risk assessment, based on a questionnaire with 42 questions about your HIPAA-related policies and procedures. Completing this questionnaire will satisfy the requirement of HIPAA ruling 164.308(a)(1)(ii)(A) for periodic risk analysis.
HIPPA Risk Assessment: https://ra.officesafe.com/#/123/rapowersolution
PCIHIPAA will be available to schedule a one-on-one 30-minute consultation to review your Risk Assessment results with you and provide a corrective action plan. You’ll receive step-by-step recommendations as to what practices may be put in place to effectively protect your practice.
If you would like to have an introductory conversation first, please contact Shelly Glassen, PCIHIPAA Senior Compliance Consultant, at Tel: 760-470-9854 or email [email protected]. PCIHIPAA, 2601 Ocean Park Blvd, Suite 303, Santa Monica, CA 90405.
As always, powersolution is available to discuss IT-specific questions related to HIPAA compliance and/or other IT security or operational concerns. Please call (201) 493-1414 x 321.