Corporate Compliance

Most providers not fully prepared for HIPAA audit

Compliance Monitor, December 7, 2011

Most healthcare organizations charged with HIPAA compliance are not fully prepared for a privacy and security audit by federal regulators, an HCPro survey conducted last month reveals.

Results indicate that only 17% of responding organizations are fully prepared for an OCR privacy and security compliance audit.

“It is very hard to get your staff to understand how important this is,” one compliance officer said. “Each breach we have is due to carelessness and not intentional, for example, not checking a patient name when you mail something out.”

Of the more than 400 respondents, which included HIM directors and compliance officers, 281 (70%) said they are “somewhat prepared” for a government HIPAA compliance audit.

This article is adapted from the HIPAA Update blog. Read the full post and more on the HIPAA Update Blog.

Most Popular