HIPAA Breach Investigations – What You Should Know

The following is a guest blog post by Moazzam Adnan Raja, Vice President of Marketing at Atlantic.Net. Correctly handling a HIPAA breach recovery will benefit from a well-prepared and systematic approach. Investigation is one of a few key elements to consider, alongside speed, notification, and risk assessment. The specific issue of time deserves closer examination, as does the incorporation of risk management and auditing processes. 4 pillars of HIPAA breach response Here are four key elements or pillars of a strong HIPAA breach response, a framework provided by Brach Eichler healthcare attorney Lani M. Dornfeld, that can be helpful in guiding your own response, as well as setting expectations with your healthcare hosts and other business associates: Speed – Moving rapidly in response to a breach is fundamental to limiting the damage. Put together an investigation and response team, which should include the HIPAA security officer and HIPAA privacy officer, along with an attorney as necessary. You may want to standardly include your attorneys, along with members of a HIPAA compliance committee, if your organization is larger and requires more sophisticated oversight. The board of trustees and board of directors could also be included. Investigation – The way that an investigation is conducted will depend heavily on the nature and scope of the breach. There is, of course, the issue of responsibility to patients but also liability to the organization. For the latter, Dor...
Source: EMR and HIPAA - Category: Information Technology Authors: Tags: Healthcare HealthCare IT HIPAA HIPAA Breaches HIPAA Training Atlantic.net Healthcare Breach Investigations HIPAA Hosting HIPAA Risk Assessments Moazzam Adnan Raja Source Type: blogs