Home Other News HIPAA Compliance Resources Available for Dental Practices

HIPAA Compliance Resources Available for Dental Practices

HIPAA Compliance Resources Available for Dental Practices
0

The Indiana Dental Association does not currently endorse any HIPPA compliance service provider.

Many IDA members have reported being contacted by various organizations providing HIPAA compliance services. Some of these vendors claim to be endorsed by IDA. Please note:

  • IDA does not currently endorse any HIPAA compliance providers. A service provider erroneously using the IDA name should raise a red flag.
  • While it is important to review your HIPAA compliance on an annual basis, it is not necessary to hire an outside vendor.

 

What is prompting this buzz around HIPAA compliance?

HHS Office for Civil Rights (OCR) established a program to assess the procedures that covered entities (CE) use to comply with HIPAA regulations. This assessment, in the form of random audits, was divided into three phases. The first phase, conducted 2011-2012, was used to develop a set of protocol to measure the CEs’ efforts toward HIPAA compliance. The second phase, which began in 2016, came in the form of random desk audits. The third phase consists of comprehensive on-site audits of CEs as well as business associates.

The third phase was originally scheduled to begin in the first quarter of 2017 but was delayed until analysis of phase II could be completed. This current flutter of activity by various HIPAA compliance vendors might be prompted by an earlier statement in which Deven McGraw, HHS OCR Deputy Director of Health Information Privacy said he hoped the third phase of audits would begin before the end of 2017.

 

How can I ensure my HIPAA compliance?

To the best of our knowledge, there has not yet been an announcement of the launch of phase III audits. Nonetheless, it is highly suggested that you audit your own HIPAA compliance each year, and there are many vendors who provide these services. Before choosing a service provider, be sure to do your homework. Remember, the Indiana Dental Association does not currently endorse any HIPPA compliance service provider.

It is not mandatory to use an outside provider for your annual HIPAA audit. There are many tools that you and your staff can use to perform your own internal audit:

 

Note on OCR Audits
It is important to note that your annual internal audit of your HIPAA compliance is not the same as the random OCR HIPAA audits being conducting on health care entities and their business associates. These OCR-conducted audits are not optional, and if your office is chosen for an audit, your must comply.

 

 

 

 

 

 

 

Close