Month: September 2023

This comprehensive, easy-to follow guide introduces and explains all essential concepts necessary for an understanding of what is required to bring an organization into compliance with the complex and often confusing regulatory framework governing medical records and information.

Covers all essential elements of the Privacy Rule, the Security Rule, the Enforcement Rule, the Omnibus Final Rule and the HITECH act. Includes detailed guidance regarding remote workers and employee-owned devices, business associates and business associate agreements and employee training requirements, along with a glossary of HIPAA-related terms and an initial assessment checklist to help you get started. Continue reading “HIPAA Compliance in the Digital Age: Safeguarding Patient Information”

Intended as a training tool for employees, this short but comprehensive manual introduces and explains all the core concepts involved in managing and handling health care information in compliance with HIPAA regulations. Also includes a glossary of HIPAA terms and phrases.

Training, in some form, is required under HIPAA regulations, but the rules are vague as to what form that training should take. Training should be provided “as necessary and appropriate for members of the workforce to carry out their functions” (HIPAA Privacy Rule) and covered entities and business associates should “implement a security awareness and training program for all members of the workforce” (HIPAA Security Rule). There is no requirement that calls for video sessions, exams or certificates. Continue reading “The Basics of HIPAA Compliance: A Training Manual for Employees”