Everyone is in play when it comes to OCR and HHS for compliance. I have heard everything from we are not important enough to “they will never reach us.” Well folks, here is your wake up call. OCR just fined a 2 doctor practice in the Phoenix area 100k dollars for failure to comply with HIPAA. One response I saw from OCR really stuck with me:
“This case is significant because it highlights a multi-year, continuing failure on the part of this provider to comply with the requirements of the Privacy and Security Rules,” said Leon Rodriguez, director of OCR. “We hope that health care providers pay careful attention to this resolution agreement and understand that the HIPAA Privacy and Security Rules have been in place for many years, and OCR expects full compliance no matter the size of a covered entity.”
This is your wake up call….
