Onsite HIPAA audits coming in 2017: ONC official

HIPAA document
Currently, more than 200 desk audits are ongoing. (Photo credit: Getty/designer491)

Chances are it won’t happen—but you'd better be prepared if it does: The feds will be conducting a “small number” of onsite HIPAA audits in 2017, according to an HHS Office for Civil Rights official.

OCR senior adviser Linda Sanches, at the Healthcare Information and Management Systems Society Privacy & Security Forum in Boston this week, explained what healthcare leaders can expect from the process, according to Healthcare IT News.

"We’re looking for evidence that you are implementing the policies and procedures," Sanches told the audience. "Two huge problems we’re seeing are implementation of risk analysis and risk management."

New White Paper

Craft a Superior Member Experience

Read the latest white paper on how health plans can leverage technology to revolutionize digital CX to increase member satisfaction, drive self-service, and improve outcomes while generating ROI.

HIPAA privacy audits were put on hold last year as the agency developed its phase 2 policy. This spring, HHS posted a new HIPAA audit protocol.

OCR will look “at risk analyses and risk management, notices of privacy practices and access and response to requests for access, and content timeliness of notifications," OCR Director Jocelyn Samuels said at the time.

Currently, more than 200 desk audits are ongoing—most of them focused on providers, Sanches said, according to Healthcare IT News.

Suggested Articles

Louisiana rescinded Medicaid managed care contracts for UnitedHealthcare, Humana and two other insurers due to concerns with the bidding process

Moody’s released its look at trends to watch in 2020 and weighed the potential credit implications across multiple sectors in healthcare.

Investors poured $4 billion into companies working on AI in healthcare across 367 deals in 2019, according to CB Insights' latest AI funding report.