Small breaches could become a big problem
Briefings on HIPAA, November 1, 2016
This is an excerpt from a member only article. To read the article in its entirety, please login or subscribe to Briefings on HIPAA.
In a year of high-profile, multimillion dollar settlements for large HIPAA breaches, OCR raised the stakes in a big way?by taking a harder line on small breaches. OCR announced plans to crack down on smaller breaches?those affecting fewer than 500 individuals?in August. Although all breaches must be reported to OCR, generally only breaches affecting 500 or more individuals are regularly investigated, while small breaches are investigated only as resources permit. OCR instructed its regional offices to increase investigations of small breaches to discover the root causes. Identifying common root causes will help the agency better measure HIPAA compliance throughout the industry and address industrywide compliance gaps, OCR said. Regional offices may obtain corrective action if an investigation of a smaller breach reveals noncompliance.
This is an excerpt from a member only article. To read the article in its entirety, please login or subscribe to Briefings on HIPAA.
Related Products
-
Briefings on APCs
Worried about the complexities of the new rules under OPPS and APCs? Briefings on APCs helps you understand the new rules...
-
HIM Briefings
Guiding Health Information Management professionals through the continuously changing field of medical records and toward a...
-
Briefings on Coding Compliance Strategies
Submitting improper Medicare documentation can lead to denial of fees, payback, fines, and increased diligence from payers...
-
Briefings on HIPAA
How can you minimize the impact of HIPAA? Subscribe to Briefings on HIPAA, your health information management resource for...
-
APCs Insider
This HTML-based e-mail newsletter provides weekly tips and advice on the new ambulatory payment classifications regulations...
Most Popular
- Articles
-
- Don't forget the three checks in medication administration
- Practice the six rights of medication administration
- CMS seeks comment on quality measures
- Note similarities and differences between HCPCS, CPT® codes
- The consequences of an incomplete medical record
- ICD-10-CM coma, stroke codes require more specific documentation
- Nursing responsibilities for managing pain
- Q&A: Primary, principal, and secondary diagnoses
- Skills of effective case managers
- Neurological checks for head injuries
- E-mailed
-
- Know the JCAHO's ongoing records review requirements
- Establish an ongoing records review process with five easy steps
- Topic: Study the codes for new orthopedics procedures
- Know the JCAHO's ongoing records review requirements
- Hold a scavenger hunt to prepare for survey
- The pros and cons of geographic rounds
- Peer review vs. risk management review: What's the difference?
- Modifier -25: Is that E/M service really above and beyond the norm?
- Know the medical gas cylinder storage requirements
- Clear up confusion surrounding observation services
- Searched