(Recorded Webinar) Privacy and Security Risk Areas

This webinar is closed to new enrollments. For more patient privacy and confidentiality trainings, click here.

Duration: 60 minutes
Webinar recorded on: 4/29/20

This webinar is part of the Navigating Telehealth for FQHCs During COVID-19 webinar series and can be purchased individually or as part of the series. To purchase the full series, click here.

As health care providers either accelerated their plans to adopt telehealth or dramatically expanded their current telehealth capacity in response to the COVID-19 public health emergency, they may have inadvertently increased their compliance risks related to patient privacy and security. 

The Office for Civil Rights (OCR) announced some flexibility in the HIPAA Rules during the public health emergency, including waiving the requirement for covered entities to execute a business associate agreement requirement for certain video platforms and texting applications. Still, other HIPAA requirements remain in place and enforceable, including the HIPAA Privacy Rule requirement that covered entities provide patients with notice as to how their health information will be used and disclosed and the HIPAA Security Rule requirement that covered entities regularly conduct a security risk analysis and develop risk mitigation strategies.  As patient information travels to and through the internet, on employee and patient personal devices, the potential for breaches and security incidents increases. 

On this webinar, we will review the major privacy and security risks related to adopting and expanding telehealth services in the health center context. Presenters will review the applicable federal laws and regulations, including HIPAA and 42 CFR Part 2, and identify key compliance considerations when identifying telehealth vendors, negotiating contracts and business associate agreements, notifying patients about telehealth, training health center staff members and adopting remote monitoring applications and technologies.

Target Audience

  • HIPAA Privacy and Security Officers
  • Compliance Officers and Risk Managers
  • Medical Leadership and Staff
  • Administrative/Operations Leadership and Staff
  • Substance Use Disorder Services Leadership and Staff

Learning Objectives

After this webinar, you will be able to:

  • Discuss how the HIPAA and 42 CFR Part 2 requirements apply when adopting and expanding a telehealth program
  • Identify strategies to mitigate compliance risks related to your health center’s telehealth program
  • Leverage the flexibility provided during OCR’s period of enforcement discretion to build a compliant telehealth program 
Course summary
Available credit: 
  • 1.00 Certificate of Attendance
Course opens: 
Course expires: 


As Partner and Compliance Counsel with the firm’s health law practice group, Dianne advises health centers on implementing effective compliance programs and on addressing top compliance risk areas. Dianne counsels health centers and other organizations on developing compliance programs that include the OIG’s seven elements, respond to identified compliance risk areas, and reflect the organization’s culture.  Dianne also advises health centers and other organizations on patient privacy and confidentiality, including the HIPAA Privacy Rule and 42 CFR Part 2.  She has experience responding to privacy and security incidents, including determining whether there has been a breach, notifying patients and the government, and creating corrective action plans. [Full Bio]

Certificates of Attendance: We verify attendance upon completion of a webinar (live or recorded version) and will only issue certificates in the name of the account holder enrolled in the course. If you need to document attendance for someone other than the account holder, we provide blank Certificates of Attendance for a supervisor to sign and certify that a different individual viewed the course. 

Group Attendance: Due to the online nature of webinars, we cannot verify participation by more than one person. For groups, we provide an attendance record form and blank Certificates of Attendance to record attendance at a group viewing session and document each individual's participation. We recommend that a supervisor or colleague sign the certificate to certify attendance. 

Read more about maintaining an attendance record in our FAQs.

Available Credit

  • 1.00 Certificate of Attendance


Please login or register to take this course.

This webinar is closed to new enrollments. For more patient privacy and confidentiality trainings, click here.


Recorded webinars are available for 180 days after the date of purchase or date of the webinar. Once posted to your account, you can view this webinar anytime on-demand during the access period identified in your purchase confirmation. For additional information on viewing and accessing webinars, view our full terms and conditions here.


If you pay by credit card or PayPal, you will be able to access the recorded webinar immediately (unless the live webinar has not yet occurred). If you pay by check, we will grant access to the recording when we receive your check. You will receive a confirmation email once access is granted. FTLF reserves the right to suspend access to the webinar if payment is not received within 30 days. For more information on payments and registration, please visit our FAQ page.


No refunds will be provided for recorded webinars. FTLF can transfer a registration to someone else within your organization or, provided you have not already viewed the webinar, transfer the registration to another on-demand program. Where the registration fee for the new webinar is higher, you must also pay the difference between the original course and the new course registration fee at the time of transfer. Administrative fees may also apply. If your organization purchased a webinar under the account of a staff member who no longer works for your organization, please Contact Us. View our full policy on refunds and cancellations here.

Required Hardware/Software

Google Chrome and Mozilla Firefox are the preferred browsers.