The Health Insurance Portability and Accountability Act (HIPAA) became law in 1996. Nearly two decades later, the HIPAA Privacy and Security Rules remain challenging for many practices. In 2012 the Office for Civil Rights (OCR) of the US Department of Health and Human Services (HHS) completed an audit of 61 hospitals and clinics and found that 98% had at least one security finding or observation, that 80% did not have a complete and accurate risk assessment, and that in general, smaller clinics (10-50 providers) had a more difficult time addressing the requirements than did larger entities. Why do practices still struggle?
The cost and effort in complying with the HIPAA regulations surpasses any immediate visible and tangible result. Unfortunately, we tend to put off prevention in favor of production, where working harder and faster seems to produce “more” visible results. This self-study course will help you understand some of the legal and technology terms, and help guide you through the broad and complicated rules to developing a day-to-day privacy and security compliance program.
At the conclusion of this course, participants should be able to:
Robert Y. Oikawa, MD, MPH, CISSP, CPPS, CPHQ, has focused on the information security and safety of health care information technology, especially regarding HIPAA security and privacy. He has been involved with health care, security, safety, and quality improvement throughout his career. He received his MD degree from the Johns Hopkins University School of Medicine in 1979, completing his medical residency and fellowships in biomedical engineering, cardiology, and interventional cardiology at the Johns Hopkins Medical Institutions. After a stint in private practice of interventional cardiology, he returned to software engineering and served as principal consultant, senior program manager, and senior architect during a decade with the Microsoft Corporation and MSNBC, focusing on software and system architecture, information security, learning solution development, software engineering best practices, risk management, innovation, and intellectual property.
Tracey L. G. Hugel, RNC-TNP, CHC, CHPC, CPHIMS – Skagit Regional Medical Center, Mount Vernon, WA
David McGrath, CPHRM – Senior Healthcare Risk Management Consultant, Physicians Insurance, Seattle, WA
Cathy Reunanen, ARM, CPHRM – Senior Healthcare Risk Management Consultant, Physicians Insurance, Seattle, WA
Cryss. Toycen – CME Specialist, Physicians Insurance, Seattle, WA
Mesina McMurray – CME Coordinator, Physicians Insurance, Seattle, WA
Original release: August 2014
Last reviewed: August 2017
Expiration: August 2018
Category 1 credit is applicable throughout the United States.
Physicians in Washington who complete this course will fulfill the risk management education requirement mandated by the Washington Health Services Act of 1993.
Participants will need to complete and pass a short quiz in order to claim CME credit. The minimum score to receive course credit is 70%.
Estimated time to complete this activity: 1 hour
* If you are a member of Physicians Insurance, all CME courses are included with your premium. Click here to access members-only CME.