HIPAA Audits

The Audits Are Coming! The Audits Are Coming!

By Bob Grant – As of March 22, 2016, the Office for Civil Rights (OCR) has officially begun their Phase 2 HIPAA Privacy, Security, and Breach Notification Audit Program. This announcement comes after months of speculation and preparation for the eventual roll-out of this new program. Luckily, with Compliancy Group you won’t have to go it alone.

Read More

OCR HIPAA Audits – It’s Real This Time

By Jonathan Krasner – Although HIPAA is an important set of laws passed to protect the sensitive medical information handled by millions of covered entities and business associates, HHS Office for Civil Rights has never established a permanent compliance audit program.


8 Questions about Vendors Auditors Ask

By Steve Spearman – Once upon a time, all a healthcare organization needed to do to ensure that its vendors and subcontractors would keep data secure was to require it in their contractual agreement. However OCR’s recent efforts to strengthen what it believes could be the weakest link in HIPAA compliance and PHI security: vendors and subcontractors.


Random HIPAA Audits are Coming

By Steve Spearman – Last week, in Washington, D.C., NIST and OCR held their 8th annual Safeguarding Health Information: Building Assurance through HIPAA Security seminar. Here are some of the major takeaways and big announcements that came out of that conference.


The Auditors Are Coming, The Auditors Are Coming!!

By Matt Fisher – After waiting with bated breath for almost a year, the day when full scale HIPPA audits will start is almost here. During a keynote address the the HIPAA Security Conference co-hosted by the HHS Office for Civil Rights and the National Institute of Standards and Technology (“NIST”), OCR Director Jocelyn Samuels revealed that the day when audits will start is getting closer.



Gearing Up for OCR HIPAA Audits in 2015

OCR is ramping up their HIPAA privacy and security audit program for covered entities (CEs) and business associates (BAs). Delayed until 2015, the second round of HIPAA audits is expected to be more pragmatic and comprehensive.