Joseph Lazzarotti writes:
Today, the Office for Civil Rights formally announced it is implementing the audit requirement under the American Recovery and Reinvestment Act of 2009, in Section 13411 of the HITECH Act. The agency confirmed that it is piloting a program to perform up to 150 audits of covered entities to assess privacy and security compliance, and that the pilot phase will begin November 2011and conclude by December 2012.
A new page on OCR’s website answers some helpful questions for covered entities and business associates…
Read more on Workplace Privacy Data Management & Security Report