Phase two HIPAA audits under way
July 19, 2016
— The U.S. Department of Health and Human Services Office for Civil Rights has sent emails to selected covered entities that will be included in phase two of its Health Insurance Portability and Accountability Act audit program. The emails are from OSOCRAudit@hhs.gov
. OCR suggests monitoring spam folders for messages from this address.
The audits will examine selected covered entities' compliance with HIPAA's Privacy, Security, and Breach Notification Rules, with a focus on the Notice of Privacy Practices, patients' right of access, the timeliness and content of breach notification, and the security risk analysis and risk management processes.
For more information, visit the HHS website