HIPAA for Health Centers
Access the on-demand workshops here.
As covered entities, health centers must comply with the same HIPAA Rules that apply to other health care providers including large hospitals and hospital systems; however, health centers often have limited time, personnel and resources to commit to HIPAA compliance. Recent HIPAA settlements demonstrate that the Office for Civil Rights (OCR) expects all covered entities (including health centers) to comply with the HIPAA Rules regardless of their size, location or mission. Non-compliance can result in civil monetary penalties and corrective action plans that last at least two years and include substantial oversight by OCR.
This workshop series introduces the key compliance requirements for health centers under the HIPAA Privacy, Security and Breach Notification Rules – from the Privacy Rule requirements for disclosing protected health information (PHI) and responding to patient requests, to the Security Rule requirements for conducting security risk analyses and limiting access to electronic PHI to investigating and reporting breaches. Presenters will include the details of recent HIPAA enforcement actions and settlements, updates on changes to the HIPAA Rules, and lots of client stories and time for your questions. Join us for one workshop or all three!
Each workshop includes:
- Overview of the HIPAA regulations and compliance expectations
- Discussion of relevant enforcement actions and guidance from OCR
- Updates on proposed/pending changes to the HIPAA regulations
- Tips on developing a more robust HIPAA compliance program in your health center
- HIPAA Privacy Officers
- HIPAA Security Officers
- Compliance Officers
- Health Center Directors
- Operations staff
- Medical records staff
- Administrative and/or office staff
Workshop 1: HIPAA Privacy for Health Centers
- Understand the key HIPAA Privacy compliance requirements for health centers
- Develop and/or revise your health center’s policies and procedures to comply with the HIPAA Privacy Rule and to incorporate best practices
- Revise your health center’s Notice of Privacy Practices to reflect how your health center uses and discloses patient information
Workshop 2: HIPAA Security for Health Centers
- Understand the key HIPAA Security compliance requirements for health centers.
- Understand the expectations for conducting a security risk analysis and developing activities to mitigate identified security risks
- Develop and/or revise your health center’s policies and procedures to comply with the HIPAA Security Rule and to incorporate best practices
Workshop 3: Business Associates and Breaches
- Identify when a business associate agreement is required prior to disclosing patient information
- Develop and/or revise your health center’s business associate agreement template to incorporate the required elements and provisions favorable to your health center
- Understand the requirements for reporting breaches to patients, to the Office for Civil Rights and to the media
Workshop 1 - HIPAA Privacy for Health Centers
Monday, October 19, 2020
12:00 pm - 4:00 pm ET
|12:00 pm - 1:00 pm||Disclosing PHI for Treatment, Payment and Health Care Operations|
|1:00 pm - 1:15 pm||Break|
|1:15 pm - 2:15 pm||Authorization Requirements; Notice of Privacy Practices|
|2:15 pm - 2:30 pm||Break|
|2:30 pm - 3:30 pm||Responding to Patient Requests: Access, Amendments and Restrictions|
|3:30 pm - 4:00 pm||Q&A|
Workshop 2 - HIPAA Security for Health Centers
Monday, October 26, 2020
12:00 pm - 4:00 pm ET
|12:00 pm - 1:30 pm|
Introduction to the Security Rule
Administrative Safeguards: Conducting a Security Risk Analysis and Creating a HIPAA Security Compliance Program
|1:30 pm - 1:45 pm||Break|
|1:45 pm - 2:30 pm||Physical Safeguards: Protecting Health Center Facilities, Systems and Devices|
|2:30 pm - 2:45 pm||Break|
|2:45 pm - 3:30 pm||Technical Safeguards: Access, Audit, Authentication and Encryption|
|3:30 pm - 4:00 pm||Q&A|
Workshop 3 - Business Associates and Breaches
Monday, November 2, 2020
12:00 pm - 4:00 pm ET
|12:00 pm - 1:15 pm||Identifying Your Health Center’s Business Associates and Executing Business Associate Agreements|
|1:15 pm - 1:30 pm||Break|
|1:30 pm - 2:45 pm|
Investigating and Reporting Breaches
|2:45 pm - 3:00 pm||Break|
|3:00 pm - 4:00 pm||Responding to an OCR Investigation|
FTLF'S VIRTUAL CLASSROOM
This live, interactive training will take place in FTLF's Virtual Classroom, hosted by Zoom. Should you have any technical questions or would like more information, please contact us at email@example.com or 1-855-200-3822.
A Partner in the firm’s health law practice group, Molly advises health centers on the management of clinical, employment and workforce-related risks, with a particular focus on professional liability, Federal Tort Claims Act, and HIPAA matters. From her experience as both a private attorney and in-house counsel, Molly knows the importance of managing liability and risk issues in mission-driven organizations. [Full Bio]
As Partner and Compliance Counsel with the firm’s health law practice group, Dianne advises health centers on implementing effective compliance programs and on addressing top compliance risk areas. Dianne counsels health centers and other organizations on developing compliance programs that include the OIG’s seven elements, respond to identified compliance risk areas, and reflect the organization’s culture. Dianne also advises health centers and other organizations on patient privacy and confidentiality, including the HIPAA Privacy Rule and 42 CFR Part 2. She has experience responding to privacy and security incidents, including determining whether there has been a breach, notifying patients and the government, and creating corrective action plans. [Full Bio]
Participants can earn up to 12.60 CPE credits in Specialized Knowledge and Applications upon completion of all course requirements.
- Prerequisites: None
- Target Audience: HIPAA Privacy Officers, HIPAA Security Officers, Compliance Officers, Health Center Director, Operations staff, Medical records staff, Administrative and/or office staff
- Advanced Preparation: None
- Program Level: All
- Delivery Method: Group-Live
Feldesman Tucker Leifer Fidell LLP is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website www.nasbaregistry.org (formerly www.learningmarket.org).
- 10.50 Certificate of Attendance
You can either register for the entire HIPAA for Health Centers workshop series (all three sessions) or you can register for each workshop individually. To register for just one session (or two) click the link above with the title you wish to purchase and then register on that page.
Each registration must be in the name of the individual(s) who will attend. This allows FTLF to communicate important course information to the actual attendee(s), add training materials and handouts to the right account, and properly assign certificates of attendance or CPE credits.
To register for this training:
- For yourself: login to your account and register with your personal information
- For someone else: login with the ATTENDEE’S login information or create an account for the ATTENDEE and register from the ATTENDEE's account
- For a group: email Learning@ftlf.com to complete group registration
If you encounter problems or have questions Contact us.
We accept payment by PayPal, credit card, and check. Payment for any live training is due upon registration. If payment is not received in full prior to the start of the event, FTLF reserves the right to cancel your order and deny you entrance to the training.
All cancellation or transfer requests must be received in writing at firstname.lastname@example.org. Requests for refunds or transfers for in-person events will be granted according to the following schedule:
- 30 or more days prior to the event, requests for a full refund or a transfer without a fee will be granted.
- Between 11 to 29 days prior to the event, requests for cancellations will be granted a 50% refund and requests for transfers will be granted, space permitting and subject to a transfer fee.
- Within 10 days of the event start date, no requests for refunds or credits will be granted. At FTLF's discretion, late transfers may be granted, space permitting and subject to a transfer fee.
If there are extenuating circumstances regarding your cancellation, please reach out to the FTLF Training Team directly at email@example.com.
Google Chrome or Mozilla Firefox are the preferred browsers.