Get ready: OCR audits are coming
Abstract: In 2011, the DHS’s Office of Civil Rights (OCR) established a pilot audit program to assess the compliance of covered entities, including hospitals, with HIPAA. Hospitals should take steps now to help ensure they pass muster if selected for an audit — and to reduce their risks of a PHI breach even if not selected. This article covers Phase 1 findings and Phase 2 expectations. A sidebar notes that the potential consequences of failing to comply with HIPAA rules go far beyond those associated with failing an OCR audit.