Compliancy Group News

Webinar This Week: 26/01/22: Lessons and Examples from 2021’s HIPAA Breaches and Fines

2021 has been a tough year for the healthcare industry with huge numbers of data breaches occurring and vast numbers of healthcare records exposed as hackers stepped up their attacks on healthcare providers and ransomware actors ran riot.  The HHS’ Office for Civil Rights has continued to impose large numbers of fines on covered entities and business associates for noncompliance with the HIPAA Rules, even during the pandemic. The trend for the past year was a major focus on violations of the HIPAA Right of Access, and many of the fines were imposed on smaller healthcare practices.

The webinar will cover:

  • The data breaches and fines in 2021 (what caused them, who was affected, etc.)
  • How to protect yourself from suffering a breach or financial penalty in the New Year.
  • Predictions of what will happen in the future and what to look out for

You will also get the inside scoop from compliance experts and find out how you can start protecting your business in 2022!

Register Now for Free Webinar

Lessons and Examples from 2021’s HIPAA Breaches and Fines

Date: January 26, 2022 @ 2:00 p.m. ET | 11.00 a.m. PT

Host: Compliancy Group

[contact-form-7]

The post Webinar This Week: 26/01/22: Lessons and Examples from 2021’s HIPAA Breaches and Fines appeared first on HIPAA Journal.

Webinar Today: How to Complete Your 2021 HIPAA Security Risk Assessment

The Health Insurance Portability and Accountability Act requires HIPAA-covered entities and their business associates to complete a risk assessment to identify all risks to the confidentiality, integrity, and availability of ePHI. Not only is a risk assessment required for compliance, it allows organizations to identify and address risks before they can be exploited, thus helping to prevent costly data breaches.

Many healthcare organizations and business associates find annual risk assessments problematic, and fail to conduct comprehensive risk assessments that meet the requirements of the HIPAA Security Rule. Risk assessment failures are among the most common HIPAA violations cited by the HHS’ Office for Civil Rights in its audits and data breach investigations.

As the year draws to an end, it is now time to perform your annual HIPAA Security Risk assessment and help is at hand to help you comply with this important HIPAA provision.

On Tuesday, December 7, 2021, Compliancy Group is hosting a webinar that will provide an overview of everything you need to know to allow you to complete the security risk assessment required by MACRA/MIPS and the HIPAA Security Rule.

Webinar Details:

How to Complete your 2021 Risk Assessment

Tuesday, December 21, 2021

2:00 p.m. ET / 11:00 a.m. PT

[contact-form-7]

The post Webinar Today: How to Complete Your 2021 HIPAA Security Risk Assessment appeared first on HIPAA Journal.

Northwoods Family Dental Confirmed as HIPAA Compliant

Most dental practices are HIPAA-covered entities and are required to comply with the provisions of the Health Insurance Portability and Accountability Act (HIPAA). Patients are increasingly aware of the need for HIPAA compliance, and with cyberattacks on the healthcare industry increasing, full compliance with the HIPAA Rules has never been more important.

To ensure that no aspect of HIPAA compliance was overlooked, Rhinelander, Wisconsin-based Northwoods Family Dental followed a recommendation of the American Dental Alliance, partnered with Compliancy Group, and used its HIPAA methodology to ensure the practice was fully compliant.

Compliancy Group has developed a 6-stage HIPAA risk analysis and remediation process, with clients able to use its proprietary HIPAA compliance software solution – The Guard – to track progress throughout their compliance journey. After following the program, Compliancy Group’s compliance coaches assessed Northwoods Family Dental’s HIPAA program and recently confirmed that Northwoods Family Dental has created an effective compliance program and was fully compliant with the standards of the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and the HITECH Act.

Northwoods Family Dental’s good faith effort toward compliance saw the small family dental practice awarded the HIPAA Seal of Compliance, which demonstrates to current and prospective patients that the practice is committed to ensuring the privacy and security of patients’ protected health information.

“Our company is proud to have completed advanced HIPAA training to help further protect our patients and learn about the importance of patient privacy to help achieve high-quality care,” said Northwoods Family Dental “As a small-town family practice continues to grow, we want to ensure the practice and patients have the best experience by having technology but also protecting patient’s health information to a high degree. We look forward to serving our community!”

The post Northwoods Family Dental Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Webinar Today: How to Complete Your 2021 HIPAA Security Risk Assessment

The Health Insurance Portability and Accountability Act requires HIPAA-covered entities and their business associates to complete a risk assessment to identify all risks to the confidentiality, integrity, and availability of ePHI. Not only is a risk assessment required for compliance, it allows organizations to identify and address risks before they can be exploited, thus helping to prevent costly data breaches.

Many healthcare organizations and business associates find annual risk assessments problematic, and fail to conduct comprehensive risk assessments that meet the requirements of the HIPAA Security Rule. Risk assessment failures are among the most common HIPAA violations cited by the HHS’ Office for Civil Rights in its audits and data breach investigations.

As the year draws to an end, it is now time to perform your annual HIPAA Security Risk assessment and help is at hand to help you comply with this important HIPAA provision.

On Tuesday, December 7, 2021, Compliancy Group is hosting a webinar that will provide an overview of everything you need to know to allow you to complete the security risk assessment required by MACRA/MIPS and the HIPAA Security Rule.

Webinar Details:

How to Complete your 2021 Risk Assessment

Tuesday, December 7, 2021

2:00 p.m. ET / 11:00 a.m. PT

To book your place, complete the form below

[contact-form-7]

The post Webinar Today: How to Complete Your 2021 HIPAA Security Risk Assessment appeared first on HIPAA Journal.

Compliancy Group Confirms Wasfago is HIPAA Compliant

Compliancy Group has confirmed the Dubai-based healthcare technology startup Wasfago has implemented an effective HIPAA compliance program and has met the required standards of the Health Insurance Portability and Accountability Act Rules.

In Dubai, UAE, the Dubai Health Authority (DHA) provides strategic oversight for the complete health sector and conducts activities to enhance private sector engagement. In 2018, the DHA established the Health Informatics & Smart Health Department, which implemented a comprehensive regulatory framework for digital health in the emirates.

Working within that framework, Wasfago Portal LLC has leveraged advanced technologies to create healthcare solutions to meet the needs of Dubai residents and address their unmet needs. One of the solutions developed by Wasfago is a health app that allows patients to fill their prescriptions remotely and have them delivered promptly, without having to attend and wait at a pharmacy.

Since the Wasfago app collects and transmits healthcare data, it is vital for privacy and security controls to be implemented to ensure that information cannot be intercepted by unauthorized individuals. To confirm effective privacy and security safeguards had been fully implemented, Wasfago partnered with Compliancy Group and used its HIPAA compliance software and methodology to ensure its app, policies, and procedures met the minimum standards of the HIPAA Rules.

After successfully completing that process, Compliancy Group’s compliance experts assessed Wasfago’s good faith effort toward HIPAA compliance and confirmed it had implemented an effective HIPAA compliance program.

“Wasfago is pleased to announce that it has achieved compliance with the mandated standards of the Health Insurance Portability and Accountability Act (through the use of Compliancy Group’s proprietary HIPAA methodology, and HIPAA Seal of Compliance,” said Wasfago. “Wasfago would like to express its gratitude to the Dubai Health Authority (Health Informatics and smart health department) for the incredible support it has offered, which led to acquiring this HIPAA verification; making Wasfago the first company in the UAE to become verified under HIPAA.”

The post Compliancy Group Confirms Wasfago is HIPAA Compliant appeared first on HIPAA Journal.

Webinar Today: Top Tools for HIPAA Compliant Communication

Patients want a convenient way to communicate with their healthcare providers; however, care must be taken when choosing a communication platform as the Health Insurance Portability and Accountability Act covers patient communications and many platforms are not compliant with the HIPAA Rules.

On November 18, Compliancy Group will be hosting a webinar to explain how HIPAA applies to patient communications and the steps that must be taken to make communications HIPAA compliant. During the webinar, attendees will also learn about the correct way to respond to patient reviews, will be provided with tips to effectively communicate via text and email, and how to become and remain HIPAA compliant.

Attendees will also be introduced to some communication tools that can help them effectively communicate with patients

Webinar Details:

Thursday, November 18, 2021

2:00 p.m. ET ¦ 1:00 p.m CT ¦ 12:00 p.m MT ¦ 11:00 a.m. PT

Host: Compliancy Group, in collaboration with Curogram and Phone.com

REGISTER FOR THE WEBINAR

The post Webinar Today: Top Tools for HIPAA Compliant Communication appeared first on HIPAA Journal.

Webinar Today: Do I Need to be HIPAA Compliant?

“Covered Entities” are required to comply with the Health Insurance Portability and Accountability Act (HIPAA). Covered entities are healthcare providers, health plans, and healthcare clearinghouses, which must ensure they are fully compliant with the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules.

There is a common misconception that HIPAA only applies to these entities, when compliance is mandatory for virtually all companies and individuals who work in healthcare in any capacity. There have been many fines imposed on organizations and companies that did not believe compliance was necessary or failed to fully grasp what compliance entailed.

Any company or individual that either handles protected health information (PHI) or otherwise comes into contact with PHI is required to comply with the HIPAA Rules, even if they do not fall under the classification of covered entity. That includes any business that provides goods or services to covered entities that requires contact with PHI.

To clear up confusion about whether compliance with the HIPAA Rules is required, Compliancy Group will be hosting a webinar on September 22, 2021 and will explain to whom the HIPAA Rules apply.

If you are in any doubt about whether you or your company need to be compliant with the HIPAA Rules, be sure to attend the upcoming webinar.

Follow the link below to sign up from the webinar to discover if you are currently at risk of a financial penalty for noncompliance and, if so, what you need to do to become HIPAA compliant.

Webinar Details:

Do I Need to be HIPAA Compliant?

Wednesday, September 22, 2021

2:00 p.m. ET / 11 a.m. PT

The post Webinar Today: Do I Need to be HIPAA Compliant? appeared first on HIPAA Journal.

Compliancy Group Confirms Alan Simberg, LLC has Implemented an Effective HIPAA Compliance Program

Compliancy Group has confirmed Alan Simberg, LLC has implemented an effective HIPAA compliance program that meets the regulatory standards of the HIPAA Rules.  

As a licensed Marriage and Family Therapist and Chemical Dependency Counselor, Alan Simberg, LLC falls under the definition of covered entity and is required to comply with the standards of the Health Insurance Portability and Accountability Act (HIPAA).

Implementing a HIPAA compliance program can be a challenge for small healthcare providers, which is why many seek assistance from third-party compliance experts. To ensure no provisions of the HIPAA Rules were overlooked, Alan Simberg partnered with Compliancy Group and used the company’s proven HIPAA compliance methodology to ensure that policies and procedures were fully compliant with HIPAA standards, and all potential risks to the confidentiality, integrity, and availability of protected health information were addressed and reduced to a low and acceptable level.

“Being HIPAA compliant is important to me because it verifies that I follow the highest mental health industry standards to protect my client’s confidential health information. This helps to assure my clients that I have taken every possible precaution to protect their personal information,” said Alan Simberg. “By demonstrating that I adhere to this standard my clients can feel comfortable talking with me about their deeply personal and troubling concerns without having to worry about unauthorized individuals having access to their information.”

After completing Compliancy Group’s six stage implementation program, and tracking progress using Compliancy Group’s proprietary compliance tracking software solution – The Guard, the company’s HIPAA compliance subject matter experts assessed Alan Simberg’s good faith effort toward HIPAA compliance.

After confirming Alan Simberg had implemented an effective HIPAA compliance program and was fully compliant with the regulatory standards of the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and the HITECH Act, Compliancy Group awarded him the HIPAA Seal of Compliance.

“I believe that having my compliance with HIPAA standards validated is something that potential and current clients will find assuring and comforting,” said Simberg.

The post Compliancy Group Confirms Alan Simberg, LLC has Implemented an Effective HIPAA Compliance Program appeared first on HIPAA Journal.

Curogram Confirmed as HIPAA Compliant by Compliancy Group

The texting and telemedicine platform provider Curogram has demonstrated its commitment to compliance with the Health Insurance Portability and Accountability Act (HIPAA) Rules with Compliancy Group and has been determined to have implemented an effective HIPAA compliance program.

Curogram’s patient-centric healthcare messaging platform helps optimize medical offices’ front desks by automating time-consuming tasks, streamlining processes, improving communication, and creating efficiencies that benefit providers, staff, and patients.

The vendors of text messaging platforms that are used to create, store, or transmit protected health information are considered business associates under HIPAA and are therefore obliged to comply with certain provisions of the HIPAA Rules and must ensure safeguards are implemented to ensure the confidentiality, integrity, and availability of protected health information (PHI).

HIPAA-covered entities that uses these platforms have a responsibility to ensure that any PHI provided to these platform providers or is otherwise made available to them through the use of their platform is protected at all times and must enter into business associate agreements with the platform vendor.

Curogram is committed to HIPAA compliance and recently partnered with Compliancy Group to ensure that the company and its platform are fully compliant with all appropriate aspects of the HIPAA Privacy Rule, Security Rule, Breach Notification Rule, Omnibus Rule, and the HITECH Act.

Curogram adopted Compliancy Group’s HIPAA compliance methodology and tracked its progress using Compliancy Group’s proprietary HIPAA compliance software solution – The Guard. Curogram successfully completed Compliancy Group’s 6-stage HIPAA risk analysis and remediation program and its HIPAA compliance program was assessed by Compliancy Group’s HIPAA subject matter experts.

Compliancy Group has confirmed that Curogram has implemented an effective HIPAA compliance program, is fully compliant with the HIPAA Rules, and is committed to HIPAA compliance moving forward.

Curogram was awarded the HIPAA Seal of Compliance, which demonstrates to current and future clients that the company has implemented an effective HIPAA compliance program and is committed to ensuring the privacy and security of any PHI entered, received, stored, or transmitted through its platform.

“Earning the Compliancy Group’s Seal of Compliance demonstrates our commitment to HIPAA compliance. In addition to providing secure patient communications options including 2-way texting, automated appointment reminders, and telemedicine services, we aim to lead the healthcare industry by example,” said Curogram COO, Michael Hsu.

The post Curogram Confirmed as HIPAA Compliant by Compliancy Group appeared first on HIPAA Journal.