The Health Insurance Portability and Accountability Act (HIPAA) requires HIPAA-covered entities and their business associates to complete a risk assessment. The purpose of the risk assessment is to identify and evaluate all risks and vulnerabilities to the confidentiality, integrity, and availability of electronic protected health information (ePHI). An annual risk assessment is also required by MACRA/MIPS.
Only by conducting a risk assessment is it possible to identify all risks to ePHI, evaluate them, prioritize them, and then subject them to the risk management process. Despite the importance of this element of HIPAA compliance, it is one of the most commonly cited HIPAA violations by the HHS’ Office for Civil Rights in its enforcement activities and HIPAA audits.
The risk assessment should not be viewed as a HIPAA compliance checkbox item to avoid financial penalties. Conducting a comprehensive risk assessment will identify vulnerabilities before they are found and exploited by threat actors. Completing an annual risk assessment will help HIPAA-regulated entities prevent costly data breaches as well as avoid regulatory fines.
To help you complete your 2022 risk assessment and ensure you are fully compliant, Compliancy Group is hosting a webinar that provides an overview of everything you need to know about completing your 2022 risk assessment. This webinar was hugely popular with HIPAA Journal readers last year and has helped many HIPAA-regulated entities ensure compliance with this important HIPAA requirement. Mark the date in your calendar and register for the webinar using the form below.
Webinar Details:
How to Complete your 2022 Risk Assessment
Wednesday, September 21, 2022
2:00 p.m. ET / 11:00 a.m. PT
[contact-form-7]
The post Webinar: Sept 21, 2022: How to Complete Your 2022 Risk Assessment appeared first on HIPAA Journal.