Blogs Home
Monday, October 19, 2015 12:00 PM

Could Your Organization Demonstrate HIPAA Compliance?

Written by David Holtzman, Vice President of Compliance, CynergisTek, Inc.

OCR Audit program image

On September 30th, CynergisTek and Iatric Systems teamed up to host a complimentary webinar, “How to Prepare Your Organization for an OCR HIPAA Audit.” In this informative session, industry expert Mac McMillan talked about what we learned from OCR’s first round of audits in 2012 and what we can expect from the revised, permanent audit program. In this session, Mac provided several key takeaways that healthcare providers and vendors need to know before they receive an OCR audit letter.

  • OCR will be sending out 800 to 1,200 surveys. Mac speculates that they will send 800 at first, and then depending upon the response rate, could possibly send another 400.
  • The next round of audits should start before the end of the year and will include both covered entities and business associates. It is anticipated that there will be approximately 200 desk audits and 24 onsite audits.
  • Organizations that go through a desk audit will only have one opportunity to submit documentation.

Please reference the below infographic on HIPAA Compliance:

HIPAA Compliance & Enforcement and OCR HIPAA Audit Findings Infographic

Please download the below information now to prepare and ensure all your documentation is in order.