Blog sponsored by Clearwater Compliance
Clearwater Compliance LLC is offering a complimentary Health Insurance Portability and Accountability Act (HIPAA) Risk Analysis Methodology Assessment. The offer is for hospitals and health plans.
The analysis will highlight and utilize the nine essential elements of a bona fide risk analysis as provided in the HHS/Office of Civil Rights Guidance on Risk Analysis Requirements under the HIPAA Security Rule.
The review will result in a specific scorecard vis-a-vis this standard, which OCR uses in its HIPAA Security Rule enforcement actions; e.g., investigations, audits, and compliance reviews. The Clearwater analysis will provide specific recommendations in each of the nine areas.
The assessment will help executives, managers, attorneys and security professionals reduce the legal, financial and regulatory risks that can result when a company fails to complete a proper risk analysis.
Clearwater will identify the difference between a risk analysis, a compliance gap assessment and technical testing; provide examples from OCR investigations and settlements. Companies will learn what regulators expect to see in a risk analysis and risk management plan, and discuss the role of attorneys and client privilege with respect to the risk analysis process.
Here’s what Clearwater will provide in the free analysis:
- Assessment of whether a company’s current form will meet OCR audit, compliance review or investigation standards.
- Identify deficiencies under the HIPAA Security Rule Implementation Specifications and OCR Audit Protocol.
- Identify deficiencies based on the nine essential elements of risk analysis in HHS/OCR Guidance on Risk Analysis Requirements under the HIPAA Security Rule