Compliance audit in action | HIM377 | DeVry University - Downers Grove, IL
Module 5: Compliance Audit in Action For this assignment, you will need to review the Case Study presented perform a compliance audit to determine gaps in privacy and security compliance. Expand AllPanels Collapse AllPanels Case Study DeVry Medical Group provides primary care, pediatric care, and urology services. Recently, the Medical Group implemented an electronic health record system that interfaces with their laboratory management system for streamlined syncing of patient lab results in their charts. Post implementation, concerns have come about on the quality of the privacy and security measures in place. As the Privacy & Security Officer, you have determined that a compliance audit is needed to ensure DeVry medical Group is in compliance with HIPAA regulations. The compliance audit has revealed potential compliance issues related to the new electronic health record system, there are inadequate access controls, lack of encryption for data transmittals, and less than half of the employees on staff have been trained properly on privacy and security measures. Action Plan You are tasked with identifying the gaps and proposing strategies to assist with being compliant with HIPAA Privacy and Security Rules. Steps you will complete as part of your proposed strategies to meet HIPAA compliance: