Banner

Article

Are you ready for a HIPAA audit?

Time was when violating the Health Insurance Portability and Accountability Act got you little more than a warning letter from the U.S. Department of Health and Human Services.

Key Points

The HITECH Act also replaced the aforementioned warning letters with mandatory fines for violations. The most serious of these-those classified as "willful neglect"-include breaches of unsecured protected health information (PHI), and can carry penalties of up to $1.5 million.

A second-tier violation is where most physicians would most likely find themselves, and the fines for those are $1,000 per violation. Fines can go as high as $25,000 per violation, and can be levied for multiple incidents. In short, HIPAA violations can really add up.

HIPAA AUDITS

HHS defines a PHI breach as "an impermissible use or disclosure under the Privacy Rule that compromises the security or privacy of the protected health information such that the use or disclosure poses a significant risk of financial, reputational, or other harm to the affected individual."

Three types of incidents can trigger a HIPAA audit. (A random audit also is possible, although the odds are fairly low given the number of physicians in the United States compared to the number of HIPAA auditors.)

When applying for the incentives, physicians must explain how their practice meets HIPAA compliance requirements. The EHR must be certified as HIPAA-compliant, as must all the physician's policies and procedure manuals, employees need to undergo appropriate training, and all annual audits must be documented.

Related Videos
Jay W. Lee, MD, MPH, FAAFP headshot | © American Association of Family Practitioners
Related Content
Negative browsing habits lead to negative moods: ©Teodor Lazarev -stock.adobe.com
November 25th 2024

Your patients’ browsing habits may be driving their negative moods

Ep 40: Malpractice caps and nuclear verdicts with Bob White, the Doctors Company
September 20th 2024

Ep 40: Malpractice caps and nuclear verdicts with Bob White, the Doctors Company

© fizkes - stock.adobe.com
November 21st 2024

70% of Americans want primary care providers to address mental health

Ep 34: U.S. Rep. Earl L. 'Buddy' Carter on physicians getting involved in policy
June 28th 2024

Ep 34: U.S. Rep. Earl L. 'Buddy' Carter on physicians getting involved in policy

© shevchukandrey - stock.adobe.com
November 20th 2024

USPSTF releases the 14th Annual Report to Congress on High-Priority Evidence Gaps for Clinical Preventive Services

Jay W. Lee, MD, MPH, FAAFP © - American Academy of Family Physicians
November 19th 2024

Jay W. Lee, MD, MPH, FAAFP explains the CDC's latest vaccine recommendations