This training program will discuss the origin of the HIPAA Breach Notification Rule, how it works, including interactions with other HIPAA rules and penalties for violations. It will also explain how to create the right breach notification policy for your organization and best practices to follow through when an incident occurs.
Why You Should Attend
The HIPAA Breach Notification Rule has been in effect since 2010 and has been significantly modified in 2013. Whenever there may be a privacy issue involving Protected Health Information, there may be a reportable breach under the HIPAA regulations. Not all privacy violations are reportable breaches, though, so it is essential to have a good process for evaluating incidents to see if they have resulted in a reportable breach.
The instructor will cover the guidance from the US Department of Health and Human Services that shows how to encrypt so as to prevent the need for notification in the event of lost data. The webinar will also discuss how to create the right breach notification policy for your organization and how to follow through when an incident occurs. In addition, a policy framework to help establish good security practices is presented.
Areas Covered in the Webinar
- The definition of a Breach under HIPAA
- Evaluating the Privacy violation
- Reviewing the exceptions to the definition of a breach
- What is good enough encryption according to the rules
- Performing the risk analysis to determine the necessity to report
- Ransomware and breaches – When to report
- Avoiding Breaches
- The most common causes of breaches
- Reporting breaches to HHS and the individuals
- Reporting breaches to the press and other agencies
- Documenting your analysis and decisions
Who Will Benefit
- Compliance directors
- Security Officer
- Information Systems Managers
- HIPAA Officers
- Chief Information Officers
- Health Information Managers
- Healthcare Counsel
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. He is a frequent speaker regarding HIPAA issues. Sheldon-Dean has more than 16 years of experience specializing in HIPAA compliance, more than 34 years of experience in policy analysis and implementation, business process analysis, information systems and software development.