• Menu
  • Skip to primary navigation
  • Skip to main content

Health Care Lawyers - Ismail Laher Helping Providers Nationwide with (Medicare) Audits and Investigations

Ish Laher and the Attorneys at Liles Parker, PLLC represent Health Care Providers nationwide. We handles Medicare Audits Defense, Medicare Prepayment and Over Payment issues, CMS Suspension and Revocation Actions,, Compliance Plans, Hippa & Osha Mandatory Training

  • Webinars
  • Violations & Convictions
  • UPIC’s
  • Suspension Actions
  • Revocation Issues
  • RACs – Recovery Audit Contractors
  • Post Payment Reviews
  • Pre Payment Reviews
  • Ish – Ismail Laher & Team
  • Hipaa
  • Webinars
  • Violations & Convictions
  • UPIC’s
  • Suspension Actions
  • Revocation Issues
  • RACs – Recovery Audit Contractors
  • Post Payment Reviews
  • Pre Payment Reviews
  • Ish – Ismail Laher & Team
  • Hipaa

Violations

$750,000 HIPAA settlement emphasizes the importance of risk analysis and device and media control policies with respect to privacy regulations

September 13, 2015 //  by AdminL

$750,000 HIPAA settlement emphasizes the importance of risk analysis and device and media control policies

Cancer Care Group, P.C. agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules with the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR).

The Indiana based Radiation oncology private physician practice paid $750,000 and will adopt a robust corrective action plan to correct deficiencies in its HIPAA compliance program.

This all started on August 29, 2012, when OCR received notification from the Group regarding a breach of unsecured electronic protected health information (ePHI) after a laptop bag was stolen from an employee’s car.

The bag contained the employee’s computer and unencrypted backup media, which contained the names, addresses, dates of birth, Social Security numbers, insurance information and clinical information of approximately 55,000 current and former Cancer Care patients.

OCR’s subsequent investigation found that, prior to the breach, the Group  was in widespread non-compliance with the HIPAA Security Rule.

It had not conducted an enterprise-wide risk analysis when the breach occurred in July 2012. It do not have in place a written policy specific to the removal of hardware and electronic media containing ePHI into and out of its facilities, even though this was common practice within the organization.

OCR found that these two issues, in particular, contributed to the breach, as an enterprise-wide risk analysis could have identified these issues.

The Group as taken corrective action with regard to the specific requirements of the Privacy and Security Rules that are at the core of this enforcement action, as well as actions to come into compliance with the other provisions of the HIPAA Rules.

 

===

see source articles

http://www.hhs.gov/ocr/privacy/hipaa/enforcement/examples/cancercare.html

and

http://www.hhs.gov/news/press/2015pres/09/20150902a.html

Medical Audits Survival Guide with Washington DC Attorney “Ish” Ismail Laher

THIS IS NOT A GOVERNMENT WEBSITE – Mr. Laher is an attorney in private practice with Liles Parker, PLLC. We counsel nationwide on Health Law related issues such as Medicare Audits & Fraud Defense, Medicare Prepayment and Over Payment issues, CMS Suspension and Revocation Actions, Practice Specific Gap Analysis, Compliance Plans, Hippa & Osha issues & related training, and with year round (part time) General Counsel and Certified Medical Compliance Officer Services.

 

Category: General, SettlementsTag: CAP's, Hippa, Settlement, Violations


Deprecated: genesis_footer_creds_text is deprecated since version 3.1.0! Use genesis_pre_get_option_footer_text instead. This filter is no longer supported. You can now modify your footer text using the Theme Settings. in /home/medicala/public_html/wp-includes/functions.php on line 5094

Copyright © 2023 · Mai Law Pro on Genesis Framework · WordPress · Log in