Day one sets the stage with an overview of the HIPAA regulations including HIPAA Breach Notification and the process that must be used to determine whether or not a breach is reportable, and then continues with presentation of the specifics of the Privacy Rule, recent changes to the rules, and the basics of the Security Rule.
Rules about Patient Rights and the limitations on uses and disclosures by covered entities will be explained, including recent guidance on access of PHI by individuals and sharing information with family and friends of a patient, and the latest rule changes for substance abuse information under 42 CFR Part 2. Discussion will include the impacts of the 21st Century Cures Act as well as the repeal of the Affordable Care Act, and potential impacts of privacy concerns combined with immigration crackdowns on the accuracy and completeness of records on individuals who may fear deportation.
Day two begins with a detailed examination of HIPAA Security Rule requirements and what must be done to survive audits by the US Department of Health and Human Services, including an examination of how risk analysis can be used to drive compliance by the systematic examination of information flows and mitigation of risks discovered, and an exploration of the official HHS HIPAA Audit Protocol, including how to use the protocol to help manage your compliance work and its documentation.
The day continues with an exploration of typical risks, including modern technologies like texting, e-mail, and portable devices, and issues of planning risk mitigation and the necessary follow-up. Finally, the day concludes with a session on the essential activities of documenting policies, procedures, and activities, training staff and managers in the issues and policies they need to know about, and examining compliance readiness through drills and self-audits, finishing up with a look at long-term compliance planning and making sure you stay ahead of compliance needs.
Why should you attend:
The HIPAA Regulations carry significant obligations to protect the privacy and security of Protected Health Information, and significant penalties in the millions of dollars can result from non-compliance.
Even if you have worked on your HIPAA compliance in the past, you could be out of compliance today because of the changes to the rules, new guidance, changes in how you do business and manage PHI, changes to the threats to privacy and security, and even changes in other laws and policies not directly related to HIPAA.
All of these changes have an impact on your HIPAA compliance, and if you don't keep up, you are leaving yourself open to complaints and enforcement investigations. It is essential to review all the aspects of HIPAA compliance now, to be sure you are working in the right direction and are addressing the issues of greatest importance.
Many organizations haven't yet finished implementing changes required by the HIPAA Omnibus Update of 2013. Areas of the rules that have shown compliance problems in the past are now targeted with guidance and audits to improve and verify compliance. And new threats from insiders and Ransomware could destroy your information and harm your patients. There is plenty that can go wrong with HIPAA compliance, but with the right training and resources you have a chance to make your patients happy and stay out of trouble.
Who will Benefit:
- HIPAA Privacy Officers
- HIPAA Security Officers
- Information Security Officers
- Risk Managers
- Compliance Officers
- Privacy Officers
- Health Information Managers
- Information Technology Managers
- Medical Office Managers
- Chief Financial Officers
- Systems Managers
- Legal Counsel
- Operations Directors
- Registration Process - (8:30 am till 8:45 am)
- Lecture 1: Overview of HIPAA Regulations
- The Origins and Purposes of HIPAA
- Privacy Rule History and Objectives
- Security Rule History and Objectives
- Breach Notification Overview and Analysis of Duty to Report
- Lecture 2: HIPAA Privacy Rule Principles, Policies and Procedures
- Patient Rights under HIPAA, including Rights of Access
- Limitations on Uses and Disclosures
- Required Policies and Procedures
- Training and Documentation Requirements
- Lecture 3: Recent and Proposed Changes to HIPAA and Related Rules
- New Penalty Structure and HIPAA Audit Program
- New Patient Rights to Restrict Disclosures to Health Plans
- New Accounting of Disclosures Rules
- New Rules for Sharing Information under 42 CFR Part 2
- Impacts of 21st Century Cures Act and Repeal of ACA
- Lecture 4: HIPAA Security Rule Principles
- General Rules and Flexibility Provisions
- The Role of Risk Analysis
- Security Safeguards
- Training and Documentation
- Lecture 1: HIPAA Security Policies and Procedures and Audits
- HIPAA Security Policy Framework
- Sample Security Policy Content
- New Policies and New Guidance from NIST
- The New HIPAA Compliance Audit Protocol
- Lecture 2: Risk Analysis for Security and Meaningful Use
- Principles of Risk Analysis for Information Security
- Information Security Management Process
- Risk Analysis Methods
- Risk Analysis Example
- Lecture 3: Risk Mitigation and Compliance Remediation
- Typical Security Risks
- Social Media, Texting, e-mail, and Privacy
- Dealing with Portable Devices and Remote Access
- Compliance Planning
- Lecture 4: Documentation, Training, Drills, Self-Audits, and Long Term Compliance Planning
- How to Organize and Use Documentation to Your Advantage
- Training Methods and Compliance Improvement
- Conducting Drills in Incident and Audit Response
- Using the HIPAA Audit Protocol for Documentation and Self-Auditing
- Planning your Compliance Work into the Future
Jim Sheldon-Dean,
Principal and Director of Compliance Services, Lewis Creek Systems, LLC
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities.
Mr. Sheldon-Dean serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Workgroup for Electronic Data Interchange Privacy and Security Workgroup, and is a recipient of the WEDI 2011 Award of Merit. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at numerous regional and national healthcare association conferences and conventions and the annual NIST/OCR HIPAA Security Conference in Washington, D.C.
He has more than 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related Web sites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. In addition, he has eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. He received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.
Register Now
Online using Credit card
Get the Invitation
Pre-Register yourself and get the official Invite when venue and dates are announced for this seminar.
Call here to register +1-888-717-2436 or email at [email protected]
Other Registration Option
- Download the Order Form
- Fill this form with attendee details & payment details
- Fax it to +1-650-362-2367, or
- Email it to [email protected]
Payment Mode
ComplianceOnline (MetricStream, Inc),
6201 America Center Drive Suite 240
San Jose, CA 95002
USA
Register / Pay by Wire Transfer
Please contact us at +1-888-717-2436 to get details of wire transfer option.Terms & Conditions to Register for the Seminar/Conference/Event
Your registration for the seminar is subject to following terms and conditions. If you need any clarification before registering for this seminar please call us @ +1-888-717-2436 or email us @ [email protected]
Payment:
Payment is required 2 days before the date of the conference. We accept American Express, Visa and MasterCard. Make checks payable to MetricStream Inc. (our parent company).
Cancellations and substitutions:
Written cancellations through fax or email (from the person who has registered for this conference) received at least 10 calendar days prior to the start date of the event will receive a refund - less a $300 administration fee. No cancellations will be accepted - nor refunds issued - within 10 calendar days before the start date of the event.
On request by email or fax (before the seminar) a credit for the amount paid minus administration fees ($300) will be transferred to any future ComplianceOnline event and a credit note will be issued.
Substitutions may be made at any time. No-shows will be charged the full amount.
We discourage onsite registrations, however if you wish to register onsite, payment to happen through credit card immediately or check to be submitted onsite. Conference material will be given on the spot if it is available after distributing to other attendees. In case it is not available, we will send the material after the conference is over.
In the event ComplianceOnline cancels the seminar, ComplianceOnline is not responsible for any airfare, hotel, other costs or losses incurred by registrants. Some topics and speakers may be subject to change without notice.
Attendance confirmation and documents to carry to the seminar venue:
After we receive the payment from the registered attendee, an electronic event pass will be sent to the email address associated with the registrant 5 working days before the seminar date. Please bring the pass to the venue of the event.
Conference photograph / video:
By registering and attending ComplianceOnline conference, you agree to have your photographs or videos taken at the conference venue and you do not have any objections to ComplianceOnline using these photos and videos for marketing, archiving or any other conference related activities. You agree to release ComplianceOnline from any kind of claims arising out of copyright or privacy violations.
We are pleased to offer several exhibitor, sponsorship and media partnership options designed to maximize your company's exposure and networking opportunities before, during and after the event.
Benefits of becoming a Sponsor/Exhibitor/Media Partner:
- Logo on website, marketing email, branding materials & the registration booth
- Exhibit Space
- Free event pass
- Speaking opportunity
- Social media campaign
For more details and other sponsorship options at this event, please contact Event Manager: [email protected] or call: +1-650-238-9656
Media Partner:
Local Attractions of Salt Lake City, UT
Temple Square and Related Sites
Temple Square is Salt Lake City's most popular attraction. With its grand six-spired temple, two visitor's centers, lovely flower gardens and fountains - and nearby sites related to the Church of Jesus Christ of Latter-Day Saints. Area attractions include the Assembly Hall, Tabernacle, Museum of Church History and Art, Family Search Center, Beehive House, Lion House, Brigham Young Historic Park, LDS Conference Center and Joseph Smith Memorial Building. Temple Square offers hundreds of free movies, dramatic programs and music events every year.
The Gateway
The Gateway on the west side of downtown Salt Lake is the city's best outdoor shopping center.
City Creek Center
It's designed to be a walkable shopper's paradise, with six acres of green space, the namesake creek, two 18-foot waterfalls, and a massive retractable roof.
Capitol Hill
The Utah State Capitol, at 300 N. State St., sits atop a hill overlooking the Salt Lake Valley. The building was constructed in 1912-1916 and renovated in 2004-2008.
Hogle Zoo
Utah's Hogle Zoo dates from 1931 and is located at the mouth of Emigration Canyon at 2600 E. Sunnyside Avenue. The Zoo is one of the most visited attractions in Utah and the top paid-for tourist attraction in Salt Lake City. It covers 42 acres and includes more than 800 animals.
This is the Place Heritage Park
This is the Place Heritage Park includes a restored pioneer village with live demonstrations of pioneer life and a restored Brigham Young farmhouse.
University of Utah
The University of Utah is not only one of the state's leading educational institutions but also an important cultural and sports center for the city and the state of Utah.
Liberty Park and Tracy Aviary
Liberty Park is Salt Lake City's second largest public park and includes trails, playgrounds, a pond, paddle boat rentals, tennis courts, picnic facilities, amusement rides and a water play area. Liberty Park includes the Chase Home Museum of Folk Arts and the excellent eight-acre Tracy Aviary, one of two free-standing aviaries in the United States.
Library Square
Library Square, at 210 East 400 South, includes not just the award-winning Salt Lake City main library, but also shops, a cafe, a Salt Lake Community College Writing Center and the studios of KCPW, a local NPR affiliate.
Bingham Canyon Copper Mine
The Kennecott Bingham Canyon Copper Mine in the southwest corner of the Salt Lake Valley is the world's largest man-made hole in the ground and has produced more copper than any other mine in history. It is one of two man-made objects seen from space.
Thanksgiving Point
Thanksgiving Point is a huge recreation area near the Point of the Mountain that includes spectacular themed gardens, a farm and agriculture center, movie theaters, an IMAX, shops, restaurants, a golf course, party and reception facilities, and the world's largest indoor dinosaur museum.
