HIPAA, HITECH Final Rules Expected by Early 2011
Also on OCR's plate is its "periodic audit" plan that must be rolled out in accordance with HITECH. There is no timetable or details on the audit plan yet, though OCR did tell HealthLeaders Media in May it hired Booz Allen Hamilton to help build its HITECH-required HIPAA auditing plan.
Then, OCR said it is "presently engaged in a contract to survey and recommend strategies for implementing the HITECH audit requirement."
Asked again this month about the status of the audit plan, OCR essentially said it is not ready to release the plan.
"Pursuant to Section 13411 of HITECH,OCR is in the process of developing a program to conduct periodic audits to ensure that covered entities and business associates comply with HIPAA Privacy and Security Rule requirements," Rachel Seeger, MPA, MA, senior health information privacy outreach specialist for OCR, wrote in an e-mail to HealthLeaders. "At this time, audit report is pre-decisional and not available publicly. OCR does not have a timetable for implementation."
Dom Nicastro is a contributing writer. He edits the Medical Records Briefings newsletter and manages the HIPAA Update Blog.
- CFO Exchange: Smartphones Poised to Disrupt Healthcare, Says Topol
- Half of All Primary Care, Internal Medicine Jobs Unfilled in 2013
- How Digital Strategy Shapes Patient Engagement at Boston Children's Hospital
- CNO on Hospital Redesign: 'You Can't Over-Communicate'
- Carondelet to Pay $35M to Settle Fraud Allegations
- Some Cancer Hospitals' Quality Data Will Soon Be Public
- PA Ranks See 'Phenomenal Growth,' Lack of Diversity
- Consumerism Drives Healthcare Branding, Rebranding Efforts
- CA Powers Up $80M HIE to 'Create Value in the Data'
- 3 Traits Personality Assessments Can't Reveal