OCR Announces November 2011 Start of Privacy and Security Compliance Audits

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is responsible for privacy and security enforcement under Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act provisions. OCR has announced that it is initiating compliance audits beginning this month, as authorized by the HITECH Act.¬† This action precedes the imminent release of the Final HIPAA/HITECH Act Privacy, Security, Breach Notification, and Enforcement Rules,¬†expected before the end of 2011, and will strengthen enforcement and accountability for compliance with existing and forthcoming Rule modifications. ¬† To avoid the consequences of potential penalties for non-compliance, covered entities and business…


Word of the Day: Site Visit

Site Visit: A scheduled three- to five-hour visit at a location determined by the vendor and host site that allows the practice purchasing the same software to see that software and interfaces in action. Most purchasers want to observe the new workflows, how well the interfaces work, and learn implementation tips.