Did you know that a HIPAA Security Risk Assessment is required for all covered entities (CE) under HIPAA? The Health Insurance Portability and Accountability Act (HIPAA) Security Rule requires that covered entities and its business associates conduct a risk assessment of their healthcare organization.
A risk assessment helps your organization (therapy practice) ensure
it is compliant with HIPAA’s administrative, physical, and technical safeguards. A risk assessment also helps reveal areas where your protected health information (PHI) could be at risk.
Watch the Security Risk Assessment video at HealthIT.gov to learn more about the assessment process and how it benefits your organization or visit the HHS site for official guidance on all things HIPAA.
Get Up to Date on a HIPAA Security Risk Assessment
Don’t risk having your practice appear on the Office of Civil Rights breach notification portal, often referred to as the “Wall of Shame”. Have you completed a HIPAA Security Risk Assessment? Have you done so on an annual basis? Have you acted on results to cure deficiencies?