Paul R. Hales received his Juris Doctor degree from Columbia University Law School and is licensed to practice law before the Supreme Court of the United States. He is an expert on HIPAA Privacy, Security, Breach notification and Enforcement Rules with a national HIPAA consulting practice based in St. Louis. Paul is the author of all content in The HIPAA E-Tool, an Internet-based, Software as a Service product for health care providers and business associates.
All EHRs certified to qualify for the Medicare and Medicaid Electronic Health Records (EHR) Incentive Programs must maintain an Audit Log of actions related to Electronic Health Information (EPHI) that supports the forensic reconstruction of the sequence of changes to a patient's chart.
This webinar explains the inter-connected Breach Notification Rule requirements of Covered Entities and Business Associates when a Business Associate or Subcontractor Business Associate suffers a Breach. And it covers the special, more restrictive compliance requirements when a Business Associate or Subcontractor is an Agent under the Federal Common Law of Agency - including how to avoid creating an Agency relationship by mistake.
There is a simple 3 step HIPAA "safe harbor" that frees Covered Entities and Business Associates from any responsibility or liability for unauthorized access to Protected Health Information (PHI) in unencrypted emails and text messages during transmission and after receipt by the patient.
This session will explain the HIPAA Rules for Web Sites and Social Media. The secret is - HIPAA Rules are easy to follow, step-by-step - when you know the steps. The HIPAA Rules, HHS/OCR guidance, Resolution Agreements provide a simple, easy to use blueprint using your Web Site and Social Media to engage patients and comply with HIPAA.
HIPAA Privacy, Security, Breach Notification and Enforcement Rules mandate compliance by Health Care Providers of all sizes - from one physician, dentist, optometrist, or licensed clinical social worker to the largest medical center.
This lesson is designed to enable your Organization to perform a complete Risk Analysis of all PHI it creates, receives, maintains or transmits in any format. You will understand and identify threats, vulnerabilities and risks to your organization's PHI wherever it is located.
This webinar focuses on HIPAA Rules for transmitting informational email and text messages to patients over an electronic communications network.
The webinar will concentrate on topics that HHS has announced will be the focus of the first round of "desk audits". They reflect significant areas of non-compliance revealed in the 2012 pilot audits and HHS HIPAA violation investigations concluded by Resolution Agreements and Corrective Action Plans.