Assignment Task: Compliance Audit in Action
For this assignment, you will need to review the Case Study presented perform a compliance audit to determine gaps in privacy and security compliance.
Case Study:
DeVry Medical Group provides primary care, pediatric care, and urology services. Recently, the Medical Group implemented an electronic health record system that interfaces with their laboratory management system for streamlined syncing of patient lab results in their charts. Post implementation, concerns have come about on the quality of the privacy and security measures in place. As the Privacy & Security Officer, you have determined that a compliance audit is needed to ensure DeVry medical Group is in compliance with HIPAA regulations.
The compliance audit has revealed potential compliance issues related to the new electronic health record system, there are inadequate access controls, lack of encryption for data transmittals, and less than half of the employees on staff have been trained properly on privacy and security measures.
Action Plan
You are tasked with identifying the gaps and proposing strategies to assist with being compliant with HIPAA Privacy and Security Rules.
Steps you will complete as part of your proposed strategies to meet HIPAA compliance:
1. Assess the access control mechanisms for the electronic health record to determine that patient data is accessible only to authorized personnel.
2. Evaluate data protection measures, including encryption protocols for data at rest and data in transit. Looking for Assignment Help?
3. Review the employee training programs on the use of the electronic health record and HIPAA compliance.
4. Propose strategies to correct issues you have identified during steps 1-3.
Your deliverable method can be either in the form of a half-page to full page proposal or PowerPoint slides that outline each of the strategies you are proposing with an action plan for implementing them. For PowerPoint slides, the slides should outline your key points/recommendations and utilize the Notes section under your slides to provide complete sentences for your report as if you were presenting to a board for approval to implement.