Avoid costly fines with this HIPAA compliance checklist

In February 2018, Fresenius Medical Care paid a $3.5 million settlement resulting from improper handling of Protected Health Information (PHI). Their mistakes included impermissible disclosures, a lack of policies and data encryption, and insufficient safeguards. These failures constituted a major HIPAA violation.

It’s clear from the above settlement just how important HIPAA is to health organizations.

A major component of HIPAA compliance is the Security Rule, which came into effect in 2005. This rule focuses specifically on electronic Protected Health Information (ePHI). With the ever-increasing digitization of the healthcare industry and patient data, the HIPAA Security Rule needs to be at the forefront of any compliance conversation.

Just so you know
You’ve got your medical toolkit ready to help those in need — but what about your telemedicine toolkit? With JotForm’s HIPAA-compliant telehealth platform, you can easily create online medical forms that keep sensitive health data safe.

A violation of this rule could cost a health organization millions of dollars. In this piece, we’ll discuss the implications of the Security Rule and provide a checklist to help your organization stay compliant.

Just so you know
If your organization is fighting against COVID-19, you can apply for a free, unlimited, HIPAA-compliant JotForm account with our Coronavirus Responder Program.

HIPAA compliance: An ongoing endeavor

This checklist is designed to help your organization meet the rigorous safeguards under the HIPAA Security Rule. Enacting these measures will help ensure you’re compliant across each of the three categories. However, compliance is not a one-and-done operation.

You need to build constant vigilance and regular reviews into your processes. In addition, HIPAA rules have changed and expanded over time. To remain compliant, you need to stay informed on updates to HIPAA regulations to ensure your organization isn’t at risk for potential fines or legal battles.

This article is originally published on Aug 20, 2019, and updated on May 28, 2020.
Firm believer in personal data privacy in the age of information. Close follower of the new regulations concerning patient confidentiality & HIPAA. You can reach George through his contact form.

Send Comment:

JotForm Avatar


Podo CommentBe the first to comment.