OCR Gears Up for HIPAA-HITECH Security Audits

The audits likely will be outsourced and not conducted by OCR staff.  Security audits will check that organizations have completed a risk assessment and implemented appropriate administrative, technical and physical safeguards.  Audits for compliance with the privacy rule will focus on organizations’ efforts to uphold individuals’ rights, such as their right to access their own medical records.

Read more…


No comments yet.

Leave a Reply