HIPAA-required risk analysis demands repetition
Various healthcare industry studies have shown that an alarming number of medical practices are not prepared to be HIPAA compliant. For example, certain surveys indicated roughly 1/3 of respondents had not conducted a HIPAA-required risk analysis. HIPAA ruling 164.308(a)(1)(ii)(A) requires a medical practice (covered entity) to periodically perform a thorough risk analysis. Meanwhile, The U.S. […]