12 Things Every Medical Office
Practice Administrator Ought To Know About HIPAA
Our competition hands you a report and leaves, we hand you a report and are just starting.
Data Breach Prevention
- Data Breach Prevention, by securing your network and business, will lead to HIPAA and Meaningful Use compliance.
- Data Breach prevention is also a smart business since the average cost of a data breach in 2013 was $ 201 per patient record. Multiply your number of patient records times $ 201 to estimate the cost of a data breach to your practice.
- A HIPAA breach was the basis for a successful malpractice suit.
- You were required to complete your first HIPAA Risk Analysis in 2005. A Security Risk Analysis (SRA) is NOT optional – it is required.
- If you attested to Meaningful Use, you were required to complete a HIPAA Risk Analysis prior to attestation, and to remediate your risks during your reporting period.
- Like a diagnosis without a blood test or x-ray, an accurate risk analysis cannot be complete without understanding what is going on “under the skin” of your computer network.
- A Risk Analysis must be updated whenever there are major changes in your organization, such as implementing a new EHR, loss of a Partner, or moving the business to a new location.
HHS Requires Documented Evidence of Compliance
- Policies and Procedures are not enough for compliance – Health and Human Services (HHS) wants documented evidence of compliance.
- Every organization except one subjected to an Office of Civil Rights (OCR) investigation that resulted in a Resolution Agreement (RA) and Corrective Action Plan (CAP) was cited for failure to perform a proper Security Risk Analysis. The one that had done a risk analysis was penalized for documenting risks but not mitigating them.
- 68% of the organizations audited in 2012 had adverse findings regarding the Risk Analysis.
- You had to sign new Business Associate Agreements (BAA) with all of your Vendors by September 22, 2014 that comply with the Omnibus Rule changes from January of 2013.
- A Data Breach generally opens the door for an audit from OCR, and the first thing they are going to ask for is…a copy your current Risk Analysis.
Computer Networks Inc. has partnered with Semel Consulting (www.semelconsulting.com), leading experts in Risk Analysis and HIPAA compliance, to offer you:
Security Officer Services for the entire year
A thorough and professional Security Risk Analysis
Policies, Procedure and Documentation
Guidance and a roadmap to achieve and maintain HIPAA compliance
Every day you refer your Patients to board certified specialists.
Shouldn’t you consider a specialist for helping you with your Risk Analysis?
As a Practice Administrator, do you often hear this from your doctor(s): “Why do I have to spend all this money on security and HIPAA Compliance when I never had to before?” If so, click here for the answers.
The federal government says “doing a thorough and professional risk analysis that will stand up to a compliance review will require expert knowledge that could be obtained through services of an experienced outside professional.” http://www.healthit.gov/providers-professionals/top-10-myths-security-risk-analysis
HIPAA Security Rule
§ 164.312
“Implement technical security measures to guard against unauthorized access to electronic protected health information that is being transmitted over an electronic communications network.”
Remote IT Services
When something is not working on your computer network, you need help now. Not a few hours from now. Instead of calling a technician out and waiting for the tech to drive to your office, you can use our remote IT services to have the problem fixed in no time. We can plug-in to your network and machines from afar, making it easier for Computer Networks to fix your issue quickly and easily.
When you bring Computer Networks’ IT services on board your company’s team, you receive the following, too:
Extensive Knowledge
We can help you with every computer related issue, including working directly with your 3rd party vendors to solve your problems.
Affordable Fees
We have a monthly plan that will suit your budget.
Worry Free IT
We fix all of your issues: answer questions, hardware, software and network.
With Computer Networks, you can grow your medical practice with ease knowing we are on the job 24/7/365. Virginia Beach, Norfolk, Chesapeake, Portsmouth, or Suffolk, Virginia – call us today at 757-333-3299 for more information on how we can help you.