Nearly 1 out of 4 breaches reported affected healthcare organizations (2018 Verizon Report)
Hackers are targeting healthcare organizations at an alarming rate. The number one cause of a breach in the healthcare industry is simply due to human error. Security Awareness Training is your best defense. Employees of healthcare organizations are responsible for protecting and retaining vast amounts of highly sensitive data. Data that must be kept current, accurate, and accessible to various parties. Regulations such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health (HITECH) Act have been put in place to help protect your organization and patients. As part of these acts, the Department of Health and Human Services has mandated annual privacy and security trainings, as well as regular reminders, for all employees of Covered Entities. Not only are these required by the federal government, but they are considered to be impactful best practices.
What is at risk?
- Personal Risk | These can include disciplinary action as well as criminal penalties, up to 10 years in prison, and personal fines up to $250,000.
- Organizational Risk | A standard HIPAA violation costs up to $50,000 per incident of non-compliance and $1.5 million per year for each standard violation.
- Irreversible damage to reputation and loss of patients’ trust is at stake.
HIPAA | HITECH Tips
- Provide continued HIPAA | HITECH education to employees and stay up to date with reviewing regulations.
- Hold vendors accountable for IT security policies and require them to prove up-to-date and continued compliance.
- Do not share healthcare related stories about patients on social platforms. Even if you leave their name out of the story, someone might be able to guess who the patient is based on the information provided. Protect patient’s information and rights.
HIPAA | HITECH Courses
Privacy for Business Associates
60 min | The final Omnibus rules for the Health Insurance Portability and Accountability Act (HIPAA), as amended by the HITECH Act places greater responsibility on all business associates to safeguard Protected Health Information. Business associates and their subcontractors will, for the first time, have some absolute obligations for how they can use and disclose protected health information that they handle on behalf of the covered entity. This privacy course is specifically tailored to help employees of business associates understand what information is private, why it is private and what they can do to protect it.
Privacy for Covered Entities
60 min | Training employees to safeguard Protected Health Information (PHI) is a requirement of all “covered entities” based on the Health Insurance Portability and Accountability Act of 1996, as amended by the HITECH Act. This privacy course is specifically tailored to help healthcare employees understand what information is private, why it is private and what they can do to protect it.
45 min | The final Omnibus rule greatly enhances a patient’s privacy protections, provides individuals new rights to their health information, and significantly strengthens the government’s ability to enforce the law. Training employees to safeguard Protected Health Information (PHI) is a requirement of all “covered entities” based on the Health Insurance Portability and Accountability Act of 1996, as amended by the HITECH Act. This privacy course is specifically tailored to help healthcare employees understand what information is private, why it is private and what they can do to protect it.
Medicare Fraud, Waste, and Abuse
15 min | Fraudulent and abusive practices put the health and welfare of millions of Americans at risk, and cost U.S. taxpayers billions of dollars every year. If organizations do not have programs designed to prevent, detect, and correct noncompliance, patients’ Medicare services might be delayed, they might not be able to use the providers of their choice, or their benefits could be denied. In this course, you will learn how you can help fight fraud, waste, and abuse in Medicare programs, including, what the major laws are that prohibit abusive practices, how to recognize unlawful activities, how to prevent, correct, and report fraudulent, wasteful, and abusive actions, and where to get help.
Sign Up for News & Announcements