Corporate Compliance

OIG starts HIPAA security audits

Compliance Monitor, March 21, 2007

The OIG confirmed that it has begun auditing covered entities for HIPAA compliance.

The OIG's 2007 Work Plan mentions the audits briefly in connection with health information technology. "The wider use of electronic medical records and personal health records raises concerns over privacy and security of patient data," the OIG notes in the document, thus raising the need for the audits.

A source at Piedmont Hospital in Atlanta confirmed that the OIG is performing an audit of the technical aspects of the security rule. The audit is apparently not the result of any complaint.

Most Popular