HIPAA Planning for 2017 - Protecting Patient Information Privacy and Security

Instructor: Jim Sheldon-Dean
Product ID: 704975
  • Duration: 90 Min

recorded version

1x Person - Unlimited viewing for 6 Months
(For multiple locations contact Customer Care)
Recorded Link and Ref. material will be available in My CO Section
Last Recorded Date: Nov-2016

Training CD / USB Drive

One CD/USB is for usage in one location only.
(For multiple locations contact Customer Care)
CD/USB and Ref. material will be shipped within 15 business days

Customer Care

Fax: +1-650-362-2367


Read Frequently Asked Questions

This HIPPA compliance webinar will discuss the issues in patient information privacy and security that healthcare organizations will face in 2017 and how to ensure compliance with HIPAA that will withstand incidents, audits, and investigations by HHS.

Why Should You Attend:

The Health Insurance Portability and Accountability Act of 1996 has now been around for 20 years, and the regulations have evolved since the Privacy Rule first became enforceable in 2003. 2016 has seen a dramatic increase in enforcement settlements, there are new threats to the privacy and security of patient information, and still more changes in the rules are expected based on the HITECH Act. Out of all the areas that HIPAA touches, what are the issues to watch out for and the steps you need to be sure to take to stay out of trouble and protect patient information?

This session will look at the current state of HIPAA compliance and identify areas that have had issues or have been identified in enforcement and audit actions, as well as what new rules are expected in the coming year. We will examine the focus and results of various HIPAA enforcement actions and the 2016 HIPAA Audits to identify areas that deserve your attention in the coming year to ensure HIPAA compliance. Areas to be sure to include in your consideration and planning include the following.

  • As recent enforcement actions show, not performing an adequate Risk Analysis and not planning the mitigation of the risks discovered can lead to multi-million dollar fines, so we will review what goes into a Risk Analysis and how to plan out dealing with the issues you discover in the analysis. Risk analysis and mitigation has received particular attention in the 2016 HIPAA Audits by HHS and can be expected to be a focus going forward.
  • Now that HHS has issued extensive guidance on patient access of PHI and now that patient access was one of the headlining Privacy topics in the 2016 HIPAA Audits, it is clear that handling of patient requests for their information is a key issue that has to be done right and a lot of organizations are out of step with the rules. Making sure you handle patient access of their Protected Health Information is clearly a topic for 2017.
  • There is no question that the issue of Ransomware and being prepared for various systems and technology disasters is on everyone’s mind. What can you do to be prepared for hackers and how can you survive an assault? Having solid prevention, backup, and recovery processes, including understanding how to do business with only paper are essential topics for 2017.
  • As for texting, e-mail, and portable devices like laptops and smart phones, the problems have only become worse with uncontrolled adoption and use of new technologies without due consideration for privacy, security, and patient care. Communication issues are complex because they involve so many kinds of communications: personal, patient, business with no PHI, business with PHI, and professional with PHI. Getting your communications right and compliant will be a major issue in 2017.
  • Finally, the HITECH Act calls for changes in Accounting of Disclosures rules that have not been implemented yet, and changes have been proposed to 42 CFR Part 2, pertaining to the release of records concerning substance abuse. The state of these and other expected changes will be discussed.

Areas Covered in the Webinar:

  • Recent focus of Audits and Enforcement activity
  • How to be prepared for enforcement actions
  • Risk Analysis and Risk Mitigation planning and execution
  • Handling Patient Access of PHI properly
  • Being ready for Ransomware and responding properly if you’re hit
  • How to manage portable devices, e-mail, texting, and encryption in a variety of circumstances
  • New rules on the horizon: expected changes to Accounting of Disclosures and 42 CFR Part 2

Who Will Benefit:

  • Information Security Officers
  • Risk Managers
  • Compliance Officers
  • Privacy Officer
  • Health Information Managers
  • Information Technology Managers
  • Medical Office Managers
  • Chief Financial Officers
  • Systems Managers
  • Legal Counsel
  • Operations Directors
  • Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc.)
Instructor Profile:
Jim Sheldon-Dean

Jim Sheldon-Dean
Principal and Director of Compliance Services, Lewis Creek Systems, LLC

Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities. He is a frequent speaker regarding HIPAA, including speaking engagements at numerous regional and national healthcare association conferences and conventions and the annual NIST/OCR HIPAA Security Conference. Sheldon-Dean has more than 16 years of experience specializing in HIPAA compliance, more than 34 years of experience in policy analysis and implementation, business process analysis, information systems and software development, and eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.

Topic Background:

This session will provide the attendee a review of the current enforcement actions, audit focus, privacy, security, and breach issues, and expected regulatory changes in HIPAA, and help the compliance specialist prepare for a year of HIPAA work including responding to issues and planning for regular compliance activities.

The most significant issues facing HIPAA professionals will be presented as well as the regular processes that should be in place to help avoid issues in the first place. We will discuss how to consider risk analysis as a means to planning your mitigation activities, and how to plan out dealing with the issues discovered in the analysis, describing how to use simple tools to manage your compliance over time.

The HHS focus on providing patients’ access to their PHI will be explored by examining the recent audit questions on the topic and the guidance released by HHS on the topic in 2016, twice expanded and updated since the original release.

The HHS and FBI guidance on Ransomware will be explored, so that you can have an idea of how to best protect your office from the latest tool of the hackers, and how to respond if you are targeted. We’ll also cover how to provide the best training and education to prevent these issues.

We will use a number of resources, such as guidance from HHS and the National Institute of Standards and Technology (NIST) to examine the role of portable devices, e-mail, and texting in health care, and how to be more productive with these tools while maintaining compliance and protecting patient information.

New rules on Accounting of Disclosures and harmonization of 42 CFR Part 2 with HIPAA will be explored and their expected futures and impacts will be discussed.

Attend this 90-minute Webinar to learn about what you need to plan for in 2017 to ensure protection of patient information and compliance with HIPAA. Learn what processes need to be in place, what documentation is required, and what follow-through needs to be done to satisfy patients, regulators, and your own staff.

Follow us :
Case Management Boot Camp: Best Practice Strategies For Success

Refund Policy

Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange.

Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time.

If you have any concern about the content of the webinar and not satisfied please contact us at below email or by call mentioning your feedback for resolution of the matter.

We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email call +1-888-717-2436 (Toll Free).

Product Reviews

This product hasn't received any reviews yet. Be the first to review this product! Write review

Best Sellers
You Recently Viewed