Three steps to prepare for a HIPAA audit

What’s the bottom line?

  • Share

Based on available information about the pilot HIPAA audit program, CEs and BAs face many hurdles in meeting their compliance obligations based on HIPAA’s final omnibus rule.

As OCR looks to make its pilot audit program permanent, now is the time for CEs and BAs to improve their privacy and security programs. The EY HIPAA Acceleration Program Methodology provides a high-level framework for enhancing your HIPAA program. This approach has been implemented and tested at some of the largest, most complex covered entities.

Failure to meet the requirements of HIPAA and HITECH may result in hefty fines and lost revenue. More importantly, CEs and BAs may experience significant public embarrassment and brand damage, which can be much harder to overcome.