To Learn More and To REGISTER, visit:  www.lorman.com/training/medical-records/privacy-and-security-challenges-of-cloud-computing-in-healthcare#overview

 Learn more on the security issues that can arise within computing systems in health care.

Many covered entities and business associates who are required to comply with HIPAA as well as other federal and state law requirements protecting the privacy and security of patients’ identifiable data still misunderstand the impact of cloud computing on their electronic protected health information (ePHI), as well as the organization’s overall HIPAA compliance. There also continues to be misunderstanding of whether a vendor which transmits and/or hosts an organization’s ePHI is a HIPAA Business Associate, or not. This topic helps the persons responsible for their organization’s compliance with HIPAA and other federal and state laws ensure that ePHI which is hosted, maintained and/or transmitted by a Cloud Vendor is secure and not used and disclosed in an unauthorized manner. The topic also explains the most critical requirements of the HIPAA Security Rule that an organization should focus on when evaluating a Cloud Vendor. This material will go into detail and provide you and your organization with a roadmap for evaluating your Cloud Vendors, and ensuring that your contract adequately protects your organization and its ePHI before it is ‘handed off’ to a Cloud Vendor. This information is critical for organizations to hone their Security and Privacy policies and procedures to prevent Breaches and address any shortcomings in their HIPAA compliance program attributed to the use of a Cloud Vendor. HHS/OCR investigation and recent Attorney General settlements have stated that the Covered Entity is the initial gate-keepers to ePHI which must evaluate all vendors, including those utilizing The Cloud, with due diligence.

Agenda

Overview

  • What Is “Cloud Computing”?
  • Electronic Medical Records … and the Cloud
  • Personal Health Records . . . and the Cloud
  • Health Information Exchange . . . and the Cloud
  • Information Technology Vendors and Understanding the Health Care Space

Security Issues

  • HIPAA Security Rule
  • Is Your Cloud Vendor a HIPAA Business Associate, or a “Conduit” (Hint, They Are Rarely a Conduit)
  • Incorporating Your Cloud Vendor in Your Security Risk Analysis
  • The Importance of Clearly-Defined and Controlled Role-Based Access and Access Management
  • Encryption Is Not an Option, Unless It’s Not an Option
  • Malicious Software, and the Importance of Training and Security Reminders
  • The Importance of Timely Discovery of Breaches Through Effective Auditing
  • Managing Breaches Caused by the Cloud Vendor

Privacy Issues

  • HIPAA Privacy Rule, 42 CFR Part 2, State Privacy Laws
  • Authorized vs. Unauthorized Uses and Disclosures of Protected Health Information (PHI)
  • When Data Analytics Are Permitted for Health Care Operations
  • When Data Analytics Are Not Permitted (Monetization and “Sale of PHI” Prohibition)

 

Credits

 OnDemand Webinar

 Live Webinar Registration

  • ACHE 1.5
  • The American College of Healthcare Executives no longer pre-approves courses or organizations. Participants in this program wishing to have the continuing education hours applied toward ACHE Qualified Education credit should indicate their attendance when submitting an application to the American College of Healthcare Executives for advancement or recertification. ACHE Qualified Education credit must be related to healthcare management (i.e., it cannot be clinical, inspirational, or specific to the sponsoring organization). It can be earned through educational programs conducted or sponsored by any organization qualified to provide educational programming in healthcare management. Programs may be sponsored by ACHE, chapters or other qualified sources, whether the programming is face-to-face or distance offerings (webinars, online seminars, self-study courses, etc.).
  • AHIMA 1.5 including Privacy & Security 1.5
  • This program has been approved for 1.5 continuing education units for use in fulfilling the continuing education requirements of the American Health Information Management Association (AHIMA). Granting prior approval from AHIMA does not constitute endorsement of the program content or its program sponsor.
  • AL CLE 1.5 (Pending)
  • AR CLE 1.5
  • This course has been approved for 1.5 hours of CLE by the Arkansas CLE Board.
  • Arizona CLE 1.5
  • The State Bar of Arizona does not approve or accredit CLE activities for the Mandatory Continuing Legal Education requirement. This activity may qualify for up to 1.5 hours toward your annual CLE requirement for the State Bar of Arizona.
  • CA MCLE 1.5
  • Lorman Business Center, Inc. is a State Bar of California approved MCLE sponsor and this course qualifies for 1.5 CLE hours of participatory credit.
  • CO CLE 2.0
  • This program may qualify for 2.0 credit hours through the Colorado Supreme Court Board of Continuing Legal and Judicial Education through reciprocity. This course is accredited in other jurisdictions such as New Jersey. To receive CLE credit for this program, a home study affidavit must be submitted to the Supreme Court Board of Continuing Legal and Judicial Education.
  • CT CLE 1.5
  • Neither the Connecticut Judicial Branch nor the Commission on Minimum Continuing Legal Education approve or accredit CLE providers or activities. This course has been approved for CLE credit in jurisdictions aside from CT and therefore it automatically meets the content and delivery requirements in Connecticut. Credit is based on a 60 minute credit hour and shall be awarded as follows: 1.5 CLE credit(s).
  • GA CLE 1.5
  • This program has been approved by the Georgia Commission on Continuing Lawyer Competency for 1.5 CLE hours.
  • HI CLE 1.5
  • This program was approved by the Hawaii State Board of Continuing Legal Education for 1.5 CLE credit hours.
  • IL CLE 1.5
  • This course was approved for a total of 1.5 hours of MCLE Credit by the Illinois MCLE Board.
  • ME CLE 1.5
  • This course has been approved by the State of Maine Board of Overseers of the Bar. Lawyers who complete this course shall receive 1.5 hours of CLE credit under M. Bar R. 12.
  • MS CLE 1.5 (Pending)
  • This program has been submitted to the Mississippi Commission on Continuing Legal Education. Approval pending.
  • MT CLE 1.5
  • This program has been approved by the Montana Commission of Continuing Legal Education for a total of 1.5 CLE credits.
  • NH MCLE 1.5
  • NH MCLE does not approve or accredit CLE activities for the NH Minimum CLE requirement. Lorman Education Services believes this course meets the requirement of NH Supreme Court Rule 53 and may qualify for CLE credit(s). Program Length: 90 Minutes.
  • NJ CLE 1.8
  • This program has been approved by the Board on Continuing Legal Education of the Supreme Court of New Jersey for 1.8 hours of total CLE credit.
  • NV CLE 1.5
  • This program has been approved by the Nevada Board of Continuing Legal Education for 1.5 CLE hours.
  • PA CLE 1.5
  • This Distance Learning program has been approved by the Pennsylvania Continuing Legal Education Board for 1.5 hours of substantive law, practice and procedure CLE credit.
  • RI CLE 1.5
  • This program has been approved by the Rhode Island Mandatory Continuing Legal Education Commission for 1.5 hours of CLE credit.
  • TN CLE 1.5 (Pending)
  • This program has been submitted as a distance learning format by the Tennessee Commission on Continuing Legal Education for a maximum of 1.5 hours of credit.
  • VT CLE 1.5
  • This program has been approved by the Mandatory Continuing Legal Education Board of Vermont for 1.5 hours of CLE credit.
  • WA CLE 1.5
  • This program has been approved by the Washington State Board of Continuing Legal Education for 1.5 hours of Law & Legal Procedure credit.
  • WI CLE 1.5
  • This program has been approved by the Board of Bar Examiners for 1.5 hours for use toward the Wisconsin Mandatory CLE requirement.
  • WV MCLE 1.8
  • This program has been approved by the West Virginia State Bar MCLE Commission for 1.8 MCLE hours.
  • HFMA 1.5
  • This course is approved by HFMA for certification maintenance of continuous educational points and will equal 1.5 points of classroom instruction.

This program does NOT qualify, nor meet the National Standard for NASBA accreditation.

Who should attend?

This live webinar is designed for medical records directors, health information managers, facility administrators, billing managers, compliance officers, privacy officers and attorneys.

REGISTER:  www.lorman.com/training/medical-records/privacy-and-security-challenges-of-cloud-computing-in-healthcare#overview

SHARE THIS: