HIPAA Security Alert: HIPAA Audit and Other News
July 01, 2007
Several years have passed since the April 2005 compliance date for the HIPPA Security Rule. Although many health plans and health care providers conducted security risk analyses and implemented security safeguards and policies and procedures, some have not completed this process. However, recent activities of the Office of Inspector General ("OIG") and the Department of Health and Human Services ("DHHS") would suggest that health plans and health care providers should seriously consider finishing and/or re-evaluating their risk assessments and risk managements policies and procedures, especially those relating to remote use of electronic protected health information.