About this BlogWelcome to the Snell & Wilmer Benefits Blog. We will be posting about current employee benefits and executive compensation topics and issues. We invite you to contact the authors with your thoughts or questions.
Although it is not a new requirement, it is important and therefore worth a reminder: HIPAA requires covered entities to establish and implement written policies and procedures that are consistent with its Privacy and Security Rules.
As discussed in an earlier blog, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) has begun its Phase 2 HIPAA Audit Program. The Program will focus on the policies and procedures adopted and employed by covered entities and their business associates to meet the requirements of the Privacy, Security, and Breach Notification Rules. Furthermore, if a group health plan is selected for an audit, it would have a very short time to produce its policies and procedures (i.e., 10 business days). Read More ›
Share this Article: