Start 2021 off strong with the next TWO webinars in MPA's Free Compliance Webinar Series!
MPA brings you a lot of compliance and HIPAA news in our blog.
But did you know there's even more in our monthly newsletter subscription?
Topics: Compliance Basics
The pandemic has led covered entities and business associates to rethink training.
For starters, in-services are not always practical right now. With more remote employees, and concerns about trying to contain spread of the virus, in-person, classroom-style training is not working for everyone.
Plus, many providers are dealing with an evolving workforce: more agency/temp staff, more healthcare professionals newly hired due to loosened education or certification requirements during COVID-19. All of these people need training - and providers have less time to train.
Compliance and HIPAA training does not have to be in the form of a live in-service to be effective.
MPA's Compliance and HIPAA Training Handbooks can help.
It’s not often that a HIPAA incident also provides a history lesson, but there’s a first time for everything.
This new download on MPA's store includes four compliance cartoons ready for your employees to caption. The HIPAA version includes four HIPAA cartoons.
Distribute one (or more!) cartoons to your staff by email, or print and post them in your building. Ask staff to come up with captions, and return their cartoons to the Compliance Officer. Then, choose a winner: A caption that embodies your culture of compliance, and will resonate with your organization. Post the winning caption (or captions), and award the winner(s) a prize.
Each caption is followed by Compliance Officer notes: An explanation of the compliance risk involved, and a sample caption.
Compliance Cartoon Caption Game: $95
Compliance Cartoon Caption Game - HIPAA Version: $95
Here's a sample:
Hopefully you can answer this question, with 100% certainty, with a single word: Zero.
But that’s often not the case.
Recently, the City of New Haven, CT, entered a $202,400 settlement with the OCR to resolve potential HIPAA Privacy and Security Rule violations.
The New Haven Health Department filed a breach report after “a former employee returned…eight days after being terminated, logged into her old computer with her still active user name and password, and downloaded PHI that included patient names, addresses, dates of birth, race/ethnicity, gender, and sexually transmitted diseases test results onto a USB drive.” This former employee also gave her user name and password to an intern.
MPA sees this scenario frequently – an employee leaves, access is not terminated in a timely manner, and the former employee continues to log in (typically out of curiosity).
Every few days, we see criminal charges brought against physicians and other individuals who provided controlled substances without a medical need; without a proper medical visit or exam; or in exchange for kickbacks or bribes.
On October 21, we had big news from the Department of Justice: settlements with Purdue Pharmacy and the Sackler family. Purdue Pharma, a pharmaceutical company primarily owned by the Sackler family, is most well-known for its opioid product OxyContin.
State, private, and federal lawsuits have increasingly been filed against opioid manufacturers, and many in the healthcare industry expected to see enforcement involving Purdue and the Sacklers. Here’s what happened in October: