OCR HIPAA Audit Update

The Department of Health and Human Services (HHS), Office of Civil Rights (OCR), awarded a $9.2 million contract to KPMG LLP on June 10, signaling the start of OCR’s proactive and intensified Health Insurance Portability and Accountability Act (HIPAA) audit process. Historically, most OCR auditing has been reactive, in response to complaints of violations of the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information, or Security Rule, which sets national standards for the security of electronic, protected health information. Section 13,411 of the Health Information Technology for Economic and Clinical Health (HITECH) Act, however, mandates that HHS conduct periodic, proactive audits to determine compliance.

Click the link below to read the full alert.