If you are a healthcare organization that has vendors providing services as a HIPAA Business Associate, managing this process can be confusing. A “business associate” is a person or entity that performs certain functions or activities that involve the use or disclosure of protected health information on behalf of, or provides services to, a covered entity healthcare provider.
Having a systematic process to handle these business relationships to ensure a healthcare organization’s protected health information is being properly accessed and protected by the business associate is critical.
Organizations must know how to identify business associates. Business associate functions and activities include the use of tracking technologies, claims processing or administration; data analysis, processing or administration; utilization review; quality assurance; billing; benefit management; and practice management. Business associate services are legal; actuarial; accounting; consulting; data aggregation; management; administrative; accreditation; and financial.
This webinar is for HIPAA Covered Entities (CEs) and Business Associates (BAs). Criminals increasingly focus cyber-attacks on BAs because one hit can give them access to PHI of all the BA’s customers. Growth of serious BA PHI breaches affecting tens of millions of patients put the spotlight on BA HIPAA compliance, attracting HHS Office for Civil Rights investigations and aggressive private class action lawsuits filed within days of a breach targeting BAs and their CE customers. CEs that did nothing wrong can still be held liable to pay the same civil money penalty as their BA for the BA’s HIPAA violation under the Federal Common Law of Agency which is included in the HIPAA Enforcement Rule.
Simple steps, often overlooked but easy to follow, enable CEs and BAs to protect against costs and damage to their reputations caused by violations of HIPAA Rules that apply to BAs. The chain of HIPAA compliance starts with a CE. It extends to a BA that provides a CE with services involving PHI. And the chain of compliance continues on down to any subcontractors of a BA that perform services involving PHI. BA subcontractors are defined by HIPAA as BAs and are fully liable for compliance.
This webinar explains the interconnected HIPAA compliance responsibilities and liabilities of CEs and BAs. HIPAA Rules that apply to both are easy to follow, step-by-step, when you know the steps.
HIPAA Rules that apply to CEs in dealing with BAs and that BAs must follow are discussed and explained including:
CEs can find themselves fully liable for HIPAA violations committed by BAs and BAs for violations committed by Subcontractors under the little known Federal Common Law of Agency. However, risks associated with BA HIPAA compliance can be managed calmly and confidently by following the HIPAA Rules that are easy to follow, step-by-step.
CEs should attend to see what to look for in Due Diligence, how to obtain HIPAA required satisfactory assurances that a BA is complying with HIPAA and avoid liability by inadvertently making a BA their agent.
BAs should attend this webinar to see exactly what they must do to comply with HIPAA Rules – Security, Privacy and Breach Notification Rules. And what to look for in Due Diligence and how to obtain HIPAA required satisfactory assurances that a Subcontractor BA is complying with HIPAA while avoiding liability by inadvertently making a Subcontractor BA their agent
Covered Entities of all types who disclose PHI to BAs and allow BAs to create, receive, maintain and transmit PHI on their behalf
Business Associates of all types including for example:
Venue: Recorded Webinar
Turn bad data into great data in minutes! Do you spend more time than is necessary importing and updating data from external sources such as databases, CSV files and web pages? Does the phrase "it's taking too long" describe how you feel about the time it takes to get your data into the right format for your reports? Do you regularly perform repetitive time-consuming "data cleaning and transforming" tasks such as removing unnecessary rows and columns, filtering out data that you don’t need, converting text to numbers or dates, splitting or merging columns, removing "weird" characters or combining files together? Would you like to be able to do all the above with the click of a button? If the answer Is yes, you need Power Query (known as Get and Transform in Excel 2016 and later). This training will focus on two main topics…How to import data into Excel from a variety of sources and how to automate the data cleaning process. Why you should attend Power Query / Get and Transform can save you a ton of time when working with imported data. In many cases when you get data from external sources, it needs work on it before it can be used. Although this can be done using Excel functionality, Power Query / Get and Transform is a lot faster and is repeatable with a couple of clicks. Topics covered Import data into Excel from sources such as text files, web pages and databases Avoid Excel’s "million-row limitation" Keep the imported data in sync with the source data using just two clicks Understanding and Managing Steps in the Power Query Editor Save a ton of time - automate the data cleaning process Who should attend? This training is classed as intermediate and is aimed at users of Excel who wish to learn about Power Query/Get and Transform to clean data (as both a one-off and a repeating process)
The Biden-Harris Administration, through the Office for Civil Rights (OCR) at the U.S. Department of Health & Human Services (HHS) has issued a Final Rule to modify the HIPAA Privacy Rule to support reproductive health care privacy. This Final Rule is one of many actions taken by HHS to protect access to and privacy of reproductive health care after the Supreme Court’s decision in Dobbs v. Jackson Women’s Health Organization that has led to extreme state abortion bans and other restrictions on reproductive freedom in 21 states. To better protect information related to reproductive health care and to bolster patient-provider confidentiality, organizations providing these services will need to implement required changes. This webinar will review those changes and provide guidance on new HIPAA Privacy Rule requirements. Webinar Objectives Definitions, Rules, CFR, & Acronyms What is Protected Health Information? Understand the Prohibitions Understand the Presumptions Understand Attestation Requirements Needed Changes to Your Notice of Privacy Practices Understand Disclosures to Law Enforcement The Complaint Process Q&A Webinar Highlights Learn from an expert who has served as a HIPAA Compliance Officer in a large organization. Learn how to understand the HIPAA Privacy Rule Final Rule to Support Reproductive Health Care Privacy. Learn what PHI can be disclosed to whom. Who Should Attend Compliance Officer HIPAA Privacy Officer HIPAA Security Officer Practice Managers Information Systems Manager Chief Information Officer General Counsel/lawyer Practice Management Consultants Reproductive Health Providers Women’s Healthcare Providers Vendor Business Associates supporting these providers
Confused about HIPAA compliance requirements and how it applies to your organization? HIPAA can be complicated!! Knowing what an organization must have in place to meet regulatory requirements can be challenging. For anyone tasked with managing a HIPAA compliance program, understanding the HIPAA security and privacy management process is critical to implementing and maintaining a comprehensive compliance program. The webinar will look at specific challenges organizations face in meeting HIPAA compliance requirements. This will include risk management plans; risk assessments; and program management. A growing concern with healthcare data is cybersecurity threats. The webinar will review critical HIPAA related information security topics. After completing this webinar, a Covered Entity or Business Associate will have a clear understanding for how to meet the growing demands of HIPAA compliance. Webinar Objectives Definitions, Rules, CFR, & Acronyms Who Must Comply with HIPAA Requirements? What are the HIPAA Security and Privacy Rules? Challenges of HIPAA Compliance What is a HIPAA Risk Management Plan? Upcoming changes to the HIPAA Privacy Rule How to prevent HIPAA data breaches from occurring Q&A Webinar Highlights Learn from an expert on the implementation of the HIPAA rules Learn what the HIPAA management process requires Learn how to uncomplicate and be able to evaluate your organization’s HIPAA compliance program Who Should Attend Compliance Officer HIPAA Privacy Officer HIPAA Security Officer Medical/Dental Office Managers Practice Managers Information Systems Manager Chief Information Officer General Counsel/lawyer Practice Management Consultants Any Business Associates that access protected health information
ICD-10-CM updates for 2025 will become effective on October 1, 2024. These updates will include several guideline changes as well as multiple updates & additions to the specific chapters. This webinar will discuss the new guidelines as well as specific code categories in which you need to be alert to changes that may impact your code selection. All chapters will be included to ensure your specialty is covered. It is impoprtant that you be proactive and prepared when submitting your claims with discharge dates of October 1. Missed update information may cause a processing & reimbursement delay. Webinar’s Goals Be aware of guideline changes Learn about chapter specfic additions & updates Ensure you are prepared with new code information Align with your software vendors to implement any necessary changes Target Audience Revenue Cycle Managers & staff Billers Coders Clinical Documentation Staff Finance Managers Denial Management Staff Physicians Mid Level Providers Claims Follow Up Staff