Skip Navigation Documents in Portable Document Format (PDF) require Adobe Acrobat Reader 5.0 or higher to view, download Adobe® Acrobat Reader.
blurred background

September 2018: Critical HIPAA Compliance Gaps Exposed by HHS

Business Insurance

 

Critical HIPAA Compliance Gaps Exposed by HHS

Over the last couple of years, the Department of Health and Human Services (HHS) conducted "desk audits" of 166 covered entities and 41 business associates. These audits focused on select HIPAA privacy, security and breach notification requirements. HHS has not released its official findings from the audits yet, but it has identified serious compliance gaps in the following areas:

  • Security risk analysis
  • Security risk management
  • Right of access to protected health information (PHI)

Employers that sponsor group health plans should periodically review their compliance with HIPAA rules, including whether their security analysis and risk management for electronic PHI is up to date. Employers should also watch for more guidance from HHS on these compliance requirements.

contact us

There was an error submitting the form

Thank you for your submission.

 
 
Insurance products are offered through Univest Insurance, Inc. and are obligations of the issuing insurance companies, are not obligations or deposits of or guaranteed by any bank and are not insured by the FDIC or any other agency of the United States. Insurance products are not a condition to any bank loan, product or service. Univest Insurance, Inc. is a licensed subsidiary of Univest Corporation of Pennsylvania.
 
 
to the
top