Webinar Overview

Navigating the IT requirements of the HIPAA/HITECH Security Rule can be a significant challenge for any healthcare organization. This session provides a detailed, practical guide to securing Protected Health Information (PHI) during transmission, cutting through the common myths and complexities that surround this critical area of compliance.

Drawing from over 17 years of experience as a compliance auditor and expert witness in HIPAA-related cases, the instructor will provide clarity based on real-world evidence and direct experience with OCR auditors. We will delve into specific scenarios involving texting, email, encryption, personal devices, and voice data, separating legal requirements from industry hype. Critically, we will explore how patients can now pursue cash remedies for wrongful disclosures of PHI and, more importantly, demonstrate the proactive steps and best practices you can implement to significantly limit your organization's risk.

Why You Should Attend

Are you confused by the conflicting information online about what is and isn't allowed under HIPAA? This webinar is designed to finally provide clear, authoritative answers. Misunderstanding your obligations for transmitting PHI can create massive liability for both Covered Entities and Business Associates.

Attend this session to:

• Understand the current enforcement landscape from HHS and the growing risks related to portable devices, texting, and email.

• Learn how to avoid being "low-hanging fruit" for audits and, more critically, for lawsuits from individuals whose PHI has been compromised.

• Gain insights from an expert witness who has testified in cases where poor IT practices led to costly litigation, often from private law suits which pose a greater immediate threat than federal penalties.

Areas Covered in the Session

• 2024 Regulatory Landscape: Key updates and enforcement trends you need to know.

• BYOD (Bring Your Own Device): Developing and enforcing effective policies for personal devices.

• Portable Device Security: Implementing best practices for laptops, tablets, and smartphones.

• Clinician Texting: Practical and compliant solutions for doctor-to-doctor and doctor-to-patient communication.

• Business Associate Burdens: Clarifying the increased responsibilities and risks for vendors.

• Emailing PHI: Guidelines for determining when encryption is necessary and how to implement it effectively.

• Texting PHI: Understanding the requirements for secure medical messaging platforms.

• The Federal Audit Process: What to expect and how to prepare for an OCR investigation.

Who Will Benefit

This webinar is essential for any individual or organization that handles protected health information, including:

• Healthcare Practice Managers and Administrators

• Business Associates (Billing Companies, IT Vendors, Transcription Services, Answering Services, etc.)

• Physicians and Medical Professionals

• Chief Information Officers (CIO) and IT Security Staff

• Compliance Officers and Risk Managers

• Attorneys Representing Healthcare Entities

• Any person who directly or indirectly creates, accesses, or transmits PHI.