Planning is essential to mitigating risks. Whether it’s a policy limiting the use of unencrypted portable devices or testing back-ups to ensure a disaster recovery plan is effective, having a strategy and a plan helps prevent the unauthorized access, use, or disclosure of ePHI. This means that interpreting and applying a compliance strategy requires added effort and oversight that clinical managers are often stretched to provide.
The HIPAA content experts at the Kentucky REC provide facility leaders with project management, long-range guidance and targeted mitigation on select vulnerabilities. The purpose is to reduce overall security risks to the organization, streamline implementation of risk planning, and improve education of critical Security Rule components to staff and leadership.
Contact the Kentucky REC today for more information on managing HIPAA compliance and reducing risk to your organization.
Additional Project Management Resources
Breach Notification Guidelines
Audit Protocol
KENTUCKY REC HIPAA NEWS
HHS SCAM ALERT: INDIVIDUAL POSING AS OCR INVESTIGATOR
HHS Scam Alert: Individual Posing as OCR Investigator It has come to OCR’s attention that an individual posing as an OCR Investigator has contacted HIPAA covered entities in an attempt to obtain protected health information (PHI). The individual identifies themselves...
MEDICARE TELEHEALTH COVERAGE DURING THE COVID-19 NATIONAL EMERGENCY
Under the 1135 waiver authority and Coronavirus Preparedness and Response Supplemental Appropriations Act, CMS has expanded access to Medicare telehealth services for beneficiaries. This response is in an effort to ensure that all beneficiaries, particularly those at...
COVID-19 AND THE HIPAA PRIVACY RULE
COVID-19 and The HIPAA Privacy Rule: Bulletins from HHS In light of the COVID-19 national emergency, the Health and Human Services (HHS) Office for Civil Rights (OCR) has released information specific to the HIPAA Privacy Rule. The Kentucky REC wants to make sure you...
