Compliance Tip of the Day: Why Engage in Pre-acquisition Due Diligence
Compliance Tip of the Day: Bringing Predictive Analytics into Your Compliance Regime
Compliance into the Weeds: Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Adventures in Compliance: The Novels – The Hound of the Baskervilles, Introduction and Compliance Lessons Learned
Compliance Tip of the Day: Assessing Internal Controls
Compliance Tip of the Day: COSO Objective 5 – Monitoring Activities
Compliance Tip of the Day: COSO Objective 2 - Risk Assessment
FCPA Compliance Report: Fraud Risk Management - Insights and Experiences with Peter Schablik
#Risk New York Speaker Series – Inside Behavioral Insights: Tom Hardin on Compliance at #RiskNYC
Compliance Tip of the Day: COSO Framework
#Risk New York Speaker Series: Exploring AI Risks in Compliance with Gwen Hassan
Healthcare Enterprise Risk Management
Compliance Tip of the Day: Assessing Internal Controls in International Operations
Managing Sanctions Compliance
Regulatory Ramblings: Episode 68 - Why Geopolitical Risk Matters to Compliance and Legal Staff with Mark Nuttal and Chad Olsen
FCPA Compliance Report: Amanda Carty on a Due Diligence and Risk Management
Episode 364 -- Five Strategies to Mitigate a New Risk Environment
Strengthening Compliance: Lessons From the OCC's Consent Order With Patriot Bank — Payments Pros – The Payments Law Podcast
Compliance and AI: Ali Khan on Implementing AI Risk Management Systems
Compliance Tip of the Day: Superforecasting
If your organization uses Electronic Health Records (EHRs), the recent updates to the SAFER Guidelines (Safety Assurance Factors for EHR Resilience) are essential for helping you assess the potential safety issues posed by...more
As the new year continues, it is useful to review your practice’s processes and policies to ensure that the practice operates with efficiency and remains compliant with ever-changing healthcare regulations....more
Many healthcare organizations understand the importance of having a Compliance Committee but some struggle to use their committee effectively. The key to ensuring the Compliance Committee is effective is building smart...more
Can you remember healthcare security 20+ years ago? It seems like a different world from now. Believe it or not, the HIPAA Security Rule has barely changed since it was first enacted in 2003 and has been long overdue for a...more
As the new year begins, it is useful to review your practice’s processes and policies to ensure that the practice operates with efficiency and remains compliant with ever-changing healthcare regulations....more
The U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”), which enforces HIPAA, recently announced a new enforcement initiative, the Risk Analysis Initiative, in conjunction with OCR’s seventh...more
A recent OIG report found that diagnoses reported in 2022 Medicare Advantage (MA) encounter data based only on health risk assessments (HRA) and HRA-linked chart reviews resulted in CMS making additional risk-adjusted...more
In recent testimony before the United States House Committee on Energy and Commerce Subcommittee on Oversight and Investigations, Christi A. Grimm, Inspector General of the Department of Health and Human Services (HHS)...more
Although the HHS Office for Civil Rights (OCR) described its recent $4.75 million agreement with a Bronx, New York, hospital as settling a “malicious insider cybersecurity investigation,” the agency considered a total of 11...more
For the year ending September 30, 2023, federal False Claims Act settlements and judgments exceeded $2.5 billion, much of which came from the health care industry. The largest, at over $487 million, stems from a finding by a...more
Within the specific element discussions in HHS-OIG’s Guidance, are important operational details and strategies for an effective compliance program. GCPG provides important suggestions and innovations for consideration by...more
The Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR) have recently launched a joint HIPAA Security Risk Assessment (SRA) Tool. The tool is designed to assist...more
Report on Patient Privacy 23, no. 10 (October, 2023) By 2016, it should have been clear to HIPAA covered entities that a security risk analysis—and corresponding risk management plan—were compliance basics. Yet, a new...more
Report on Patient Privacy 23, no. 10 (October, 2023) Kaiser Foundation Health Plan Inc. and Kaiser Foundation Hospitals will pay California $49 million to resolve allegations that they unlawfully disposed of hazardous waste,...more
Artificial intelligence (AI) is nothing new to the healthcare industry, as many organizations and clinicians have utilized such tools in some capacity for many years. Imaging-related AI to support radiologists is not...more
Session #1: State of the Healthcare Industry Effective Compliance Plans and Enforcement Trends - In their discussion of compliance program effectiveness and enforcement, attorneys Kolarik and Waltz and Ms. Sumner...more
“We continue to see interest across the health care M&A vertical and buyers need to be ready to move quickly when attractive assets come on the market. The current environment rewards potential acquirers who are willing to...more
On September 14, 2022, the Federal Bureau of Investigation (FBI) issued a Private Industry Notification (Notification) warning the industry regarding increasing cyber-attack activity against healthcare providers and payment...more
HCCA's Basic Compliance Academy is a three-and-a-half-day intensive training program focusing on subject areas at the heart of health care compliance practice. Its faculty is made up of experts in the field. Courses are...more
The Office for Civil Rights (OCR) announced on October 23, 2019, that Jackson Health System (“Jackson”), a not for profit hospital system comprised of six hospitals, urgent care centers, nursing facilities and primary care...more
Over the past year, we have seen a new trend in healthcare fraud cases in which the government has chosen to target private equity firms (PEFs). Traditionally, the government has chosen to name the healthcare company and its...more
In a recent newsletter, the Office for Civil Rights (OCR) encourages health care organizations to review their procedures around authentication and “ensure that they have the appropriate safeguards in place.”...more
In an effort to establish consistent emergency preparedness requirements, increase patient safety, and ensure coordinated responses to catastrophes, the Centers for Medicare and Medicaid Services (CMS) released the Emergency...more
Healthcare organizations – ranging from physician practice groups to large, multi-state hospital systems – face a variety of risks, including fraud and abuse, as well as HIPAA privacy issues. Starting from a baseline risk...more
For health care professionals who began accepting Meaningful Use incentive money at the outset of availability under the Medicare option in 2011, the year 2015 is an important year. If the provider has met all core...more