HealthBlawg

David Harlow's Health Care Law Blog

    • Twitter
    • Facebook
    • LinkedIn
    • RSS
    • Email
  • About
  • Archives
  • Podcast
  • Press
  • Awards/Reviews
  • HIPAA
  • HCSM

HIPAA Audits: The Latest Oracular Prognostications

March 18, 2015

OMB cleared the HIPAA pre-audit survey late last week. (H/T LifeHealthPro.) That is one crucial prerequisite to OCR's initiation of the new round of HIPAA audits that have been the subject of all the Delphic prophecies we keep hearing (the survey is required to collect information about covered entities and their business associates, since this round of audits is supposed to include a look at business associates . . . and OCR won't know who's a business associate unless they ask covered entities).

OCR has apparently already identified "several hundred" covered entities (see "OCR supporting statement A") to which it would like to administer the questionnaire this time around (out of an estimated 3 million covered entities).

OCR wants to select "an appropriate mix of size and complexity of entities to be audited" from a pool of no more than 500 potential covered entity auditees. It also projects administering the questionnaire to no more than 200 potential business associate auditees in 2015. (In 2012, 115 covered entities were audited. Seems like more audits will be conducted this time around.)  Screening questionnaires will be administered at the outset of each future round of audits, which OCR helpfully notes will be conducted, per the HITECH Act, on a "periodic" basis.

Some day, the federales may even update the posted OCR audit protocol to reflect the Omnibus Final Rule and really, really enter into this next phase of auditing. Before that happens, all covered entities and business associates should make sure that HIPAA compliance policies, procedures and workforce training processes are fully implemented and documented. Can't say I didn't warn you.

David Harlow
The Harlow Group LLC
Health Care Law and Consulting  

Photo: Kufoleto via Wikimedia Commons CC

Filed Under: Health care policy, Health Law, HIPAA, OCR, Privacy, Security

you might also like:

  1. HIPAA Phase 2 Audit Protocol Released; More Details Emerge

  2. HIPAA Audits: OCR Finally Announces Phase 2

  3. HIPAA compliance audits coming; bits of detail emerge. Get ready now!

« Lessons from the Anthem breach
Meaningful Use Stage 3: The Buzz About APIs »

Follow me on Twitter

David Harlow 💉😷 Follow 42,908 17,568

Mastodon @healthblawg@c.im #HealthCare #MedDevice #Compliance #Privacy @MyOmnipod #HIPAA #digitalhealth #HarlowOnHC #pinksocks Tweets are tweets No more no less

healthblawg
healthblawg avatar; David Harlow 💉😷 @healthblawg ·
5h 1620445622955278337

Moonshots — StartUp Health https://paper.li/healthblawg/1369855999?read=https%3A%2F%2Fwww.startuphealth.com%2Fmoonshots #hcldr

Reply on Twitter 1620445622955278337 Retweet on Twitter 1620445622955278337 0 Like on Twitter 1620445622955278337 0 Twitter 1620445622955278337
healthblawg avatar; David Harlow 💉😷 @healthblawg ·
5h 1620445621772587008

Harlow on Health Care is out! #healthcare #hcldr #hcsm #HIT #healthreform #HIPAA

Image for twitter card

Moonshots — StartUp Health

startuphealth.com At StartUp Health, we invest in the most innovative health entrepreneurs in the world — our glob...

paper.li

Reply on Twitter 1620445621772587008 Retweet on Twitter 1620445621772587008 0 Like on Twitter 1620445621772587008 0 Twitter 1620445621772587008
healthblawg avatar; David Harlow 💉😷 @healthblawg ·
6h 1620439418514333698

The latest Harlow On Health Care Daily #HarlowOnHC #digitalhealth #healthcare #innovation #privacy #hcldr Thx: @biomelb @SCMagazine @r2guidance #digitalhealth #healthcare

Image for twitter card

Why enterprises trust hardware-based security over quantum computing

venturebeat.com Quantum computing is being realized, but its limitations in cybersecurity are prompting organizations to ...

paper.li

Reply on Twitter 1620439418514333698 Retweet on Twitter 1620439418514333698 0 Like on Twitter 1620439418514333698 0 Twitter 1620439418514333698
Load More
Follow me on Mastodon

HIPAAtools

Hipaatools

The HIPAA Compliance Toolkit

The Walking Gallery

The Walking Gallery

Quick Links

  • Home
  • Categories
  • Archives
  • Podcast Interviews
  • HIPAAtools
  • HIPAA Compliance
  • Health Care Social Media
  • Speaking
  • In the Press
  • Blogroll

David Harlow

David Harlow

HealthcareNOW Radio

Connect with David

  • Twitter
  • Facebook
  • LinkedIn
  • RSS
  • Email
  • Subscribe
  • Contact
  • Book Me: Speaking
  • About
  • The Harlow Group LLC
Copyright © 2006–2023
HealthBlawg is a publication of The Harlow Group LLC. See Copyright notice and disclaimer.
Fair use with attribution and a link is encouraged. Click for more on David Harlow.
[footer_backtotop text="Back to top" href="#"]