7 Reasons You Need to Implement Annual HIPAA Retraining Jason Karn , Total HIPAA Compliance, LLC
Jul 16, 2015
7 Reasons You Need to Implement Annual HIPAA Retraining
Jason Karn, Total HIPAA Compliance, LLC
HIPAA Requirement:
oCovered Entities
oBusiness Associates
oBusiness Associate Subcontractors
Must train all workforce members on HIPAA
Is one time training enough?
The answer is, NO!
HIPAA is complicated and forgetting how to follow the Rule can lead to fines and penalties
7 Reasons You Need to Retrain Your Staff on HIPAA
ONE
For Example, as of 2014: Clients and patients
can sue using HIPAA as a
Standard of Care
HIPAA Interpretations Change
TWO
o Did you speak too loudly in public about a client or patient?
o Send an errant fax with PHI?
o Did you lose an unencrypted device?
Not all Breaches are this obvious, but mistakes happen - especially if you don’t remember the Rule
It’s Easy to Forget the Rules
THREE
These Security Standards are good business practicesfor any company and protect it from the loss of important information
o Use 8+ random characters and digits in passwords
o Check for SSL/TLS on websites
o Use 2-factor authentication
HIPAA as a Security Standard
FOUR
New employees start at random times during the year and sometimes their HIPAA training falls through the cracks.
Annual retraining meansyou never miss anyone!
You Have New Employees
FIVE
Be thorough with your HIPAA training efforts
oAdopt an annual re-training schedule and
adhere to it
oCarefully maintain training records
Cover Your ***
Best Business Practices (CYA)
SIX
If you’re a health insurance agency you are regulated by Gramm-Leach-Bliley (G-L-B) in addition to HIPAA.
You are REQUIRED by the G-L-B Law to annually
retrain your employees.
You May Be Regulated
SEVEN
In addition to the steep fines levied by HHS following a confirmed HIPAA Breach, HHS requires employee retraining in an effort to prevent future exposures
Reduce the likelihood of a Breach with a regular
retraining program
It’s a HHS Corrective Action
Retrain to Comply
At Total HIPAA Compliance, we have
online training solutions for your
company, business, or practice.
To learn more :
https://www.totalhipaa.com/
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License.
©Copyright 2015
What does that mean?
You may share this slide deck in its entirety with anyone for free. Splitting up the deck or charging for the copies is out of bounds.
The original slide deck can be found at :http://www.slideshare.net/JasonKarn/7-reasons-to-annually
Copyright Notice from Jason Karn, Total HIPAA Compliance, LLC