Seminar on Texting and E-mail with Patients: Patient Requests and Complying with HIPAA at SFO, CA

Overview:

With the recent advances in portable technology, more and more organizations and their users are taking advantage of mobile devices to save time and get work done more efficiently. Texting, portable e-mail, and Apps are revolutionizing the ways health care providers interact with their patients and get their work done.

But the use of these devices comes with hidden costs of compliance, especially if they lead to a reportable breach under HIPAA or state laws. HIPAA Privacy and Security Officers have been struggling to keep up with the use of the devices to protect patient privacy and avoid compliance issues. Even if these devices aren't in formal use in your organization, you need to act now to anticipate their use and make sure they are used properly.

This session is designed to provide intensive, two-day training in HIPAA compliance as it relates to the use of mobile devices, including how to use them with Protected Health Information, the policies and procedures you need to have in place to use them securely, and how to manage issues of the "BYOD" phenomenon.

The session provides the background and details for any manager of health information privacy and security to know what issues to look for with mobile devices, what needs to be done for HIPAA compliance, and what can happen when compliance is not adequate. Audits and enforcement will be explained, as well as privacy and security breaches and how to prevent them. Numerous references and sample documents will be provided.

The session will be valuable for both newcomers to HIPAA compliance as well as seasoned veterans. HIPAA compliance will be explained and discussed in detail, from the basics through the latest changes and new technology issues, so that the attendee will have a coherent understanding of not only the rules, but also how to think about compliance and make sound compliance decisions on a day-to-day basis in the context of mobile devices.

Who Will Benefit:

Information Security Officers

Risk Managers

Compliance Officers

Privacy Officers

Health Information Managers

Information Technology Managers

Medical Office Managers

Chief Financial Officers

Systems Managers

Legal Counsel

Operations Directors

Agenda

Day 1 Schedule

Lecture 1:

Overview of HIPAA Regulations

The Origins and Purposes of HIPAA

Privacy Rule History and Objectives

Security Rule History and Objectives

Breach Notification Requirements, Benefits, and Results

Lecture 2:

HIPAA Privacy Rule Principles, Policies and Procedures

Patient Rights under HIPAA

Limitations on Uses and Disclosures

Required Policies and Procedures

Training and Documentation Requirements

Lecture 3:

HIPAA and Rights of Communication

Right to Request Alternative Communications

Impacts of Using Alternative Communications

Considering Risks and Security

Communications Guidance from HHS

Lecture 4:

HIPAA Security Rule Principles

General Rules and Flexibility Provisions

The Role of Risk Analysis

Security Safeguards

Training and Documentation

Day 2 Schedule:

Day two begins with a detailed examination of HIPAA Security Rule requirements, with particular attention to the issues of mobile devices and the applications that may be used on them, such as Texting and e-mail, and BYOD issues.

The day continues with what must be done to survive audits by the US Department of Health and Human Services, including an examination of how risk analysis can be used to drive compliance by the systematic examination of information flows and mitigation of risks discovered, and an exploration of the official HHS HIPAA Audit Protocol, including how to use the protocol to help manage your compliance work and its documentation.

Lecture 1:

HIPAA Security Policies and Procedures and Audits

HIPAA Security Policy Framework

Sample Security Policy Content

BYOD and Mobile Device Policies

The New HIPAA Compliance Audit Protocol

Lecture 2:

Risk Analysis and Mobile Devices

Principles of Risk Analysis for Information Security

Information Security Management Process

Risk Analysis Methods

Risk Analysis and Mobile Devices

Lecture 3:

Risk Mitigation and Compliance Remediation

Typical Security Risks for Mobile Devices

Social Media, Texting, e-mail, and Privacy

Dealing with Portable Devices and Remote Access

Compliance Planning

Lecture 4:

Documentation, Training, Drills and Self-Audits

How to Organize and Use Documentation to Your Advantage

Training Methods and Compliance Improvement

Conducting Drills in Incident Response

Using the HIPAA Audit Protocol for Documentation and Self-Auditing

Speaker

Jim Sheldon Dean

Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, and a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities.

Venue: DoubleTree by Hilton Hotel San Francisco Airport

,  835 Airport Blvd., Burlingame CA 94010-9949

Date: October 29th & 30th, 2015

Time: 9:00 AM to 6:00 PM

Price: $1,695.00 (Seminar for One Delegate)

Register now and save $200. (Early Bird) Until September 15, Early Bird Price: $1,695.00 from September 16 to October 27, Regular Price: $1,895.00

Contact Information:

NetZealous LLC,

DBA GlobalCompliancePanel

161 Mission Falls Lane,

Suite 216, Fremont, CA 94539, USA         

USA Phone: 800-447-9407

Fax: 302-288-6884

support@globalcompliancepanel.com          

http://www.globalcompliancepanel.com

Event Link : http://goo.gl/W0U5MF