Finally! FREE HIPAA Tool Makes HIPAA Risk-Assessment Easy-Peasy

Finally! FREE HIPAA Tool Makes HIPAA Risk-Assessment Easy-Peasy

176
6

Conducting Health Insurance Portability and Accountability Act HIPAA risk assessments has been required for years, but many small or independent practitioners haven’t bothered because of the burden. The proliferation of practitioners using one or more devices with clinical populations has required an expedited process to relieve complications and burdens related to HIPAA compliance.

Healthcare IT News reported that HHS’s Office for Civil Rights and the Office of the National Coordinator for Health IT have released a “security risk assessment tool” for small and mid-sized entities.  Officials explained, “The tool is designed to help practices conduct and document a HIPAA risk assessment in a thorough, organized fashion at their own pace by allowing them to assess the information security risks in their organizations under the … HIPAA Security Rule.”  The tool is available as a downloadable mobile app. It also can create a report to be shown to auditors.

With HIPAA, all “covered entities” must “regularly review the administrative, physical and technical safeguards they have in place to protect the security of [protected health] information.”  As HHS staff noted in their recent news release, “By conducting these HIPAA risk assessments, health care providers can uncover potential weaknesses in their security policies, processes and systems.”  According to National Coordinator for Health Information Technology Karen DeSalvo, the new tool  will  meet providers’ needs and goals: “Protecting patients’ protected health information is important to all health care providers and the new tool we are releasing today will help them assess the security of their organizations.”

HHS officials noted that “risk analysis tops the list for where health care entities often make their biggest HIPAA misstep.” As Health care data breaches have involved “more than 30 million people [having] their protected health information compromised”  and “Organizations have been required to pay $18.6 million in settlement fines. State fines are not included in that estimate. As we have reported here at the Telebehavioral Health Institute,  the most frequently reported target for HIPAA enforcement is private practices. This new tool will simply and expedite the regular risk assessment task of the private or small group practitioner.

HHS and ONC are asking for comments from users.

Basic Telehealth Legal Issues: Rules, Regulations & Risk Management

Bring your telehealth practice into legal compliance. Get up to date on inter-jurisdictional practice, privacy, HIPAA, referrals, risk management, duty to warn, the duty to report, termination, and much more!

Disclaimer: Telehealth.org offers information as educational material designed to inform you of issues, products, or services potentially of interest. We cannot and do not accept liability for your decisions regarding any information offered. Please conduct your due diligence before taking action. Also, the views and opinions expressed are not intended to malign any organization, company, or individual. Product names, logos, brands, and other trademarks or images are the property of their respective trademark holders. There is no affiliation, sponsorship, or partnership suggested by using these brands unless contained in an ad. We do not and cannot offer legal, ethical, billing technical, medical, or therapeutic advice. Use of this site constitutes your agreement to TBHI Privacy Policy and Terms and Conditions.

Subscribe
Notify of
guest
6 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Ryan Stephens
Ryan Stephens
2 years ago

Third party vendors offer more than just risk assessment tools. Modern software now allow providers to streamline their entire compliance processes.

Hipaa security system
Hipaa security system
8 years ago

Hello,
How effective is the app??

Marlene Maheu, Ph. D.
Marlene Maheu, Ph. D.
Reply to  Hipaa security system
8 years ago

All reports that we have received are quite positive. The tool helps us be compliant with HIPAA laws, as defined by this same group. Therefore, anything that will help us adhere to their standards would make the make the tool quite effective.

Dr. Maheu
Dr. Maheu
8 years ago

Grace,
Thank you for your comment. Here is the link for you: http://www.healthit.gov/providers-professionals/security-risk-assessment

Diane Hediger
Diane Hediger
8 years ago

What is the app called?

Grace Valenti
Grace Valenti
8 years ago

No mention in the article as to what the app is (called) and where it can be acquired. Can you supply this info?

6
0
Would love your thoughts, please comment.x