OCR Announces HIPAA Audit Program

Joseph Lazzarotti writes:

Today, the Office for Civil Rights formally announced it is implementing the audit requirement under the American Recovery and Reinvestment Act of 2009, in Section 13411 of the HITECH Act. The agency confirmed that it is piloting a program to perform up to 150 audits of covered entities to assess privacy and security compliance, and that the pilot phase will begin November 2011and conclude by December 2012.

A new page on OCR’s website answers some helpful questions for covered entities and business associates…

Maintenance Note
CISA Alert: Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
System Status Note
System Status Note
Fraudster's fake data breach claims should remind media to be careful what we report
"Pompompurin" taken into custody after violating conditions of pre-sentencing release on bond (1)

Related: