OCR Completes 20 Audits, Plans 95 More
HEALTHCARE PRIVACY—U.S.May 22, 2012
Federal authorities have selected another 95 healthcare organizations to be audited for HIPAA compliance this year, GovInfoSecurity reports. The Department of Health and Human Services' Office for Civil Rights (OCR) has completed its initial 20 audits, which served to test the program mandated under the HITECH Act, and is collecting data on the next 25. The remaining 70 entities will be notified in coming months. The audits assess compliance with HIPAA's privacy and security rules, the report states. In selecting audit candidates, the OCR looks at an entity's size, affiliation with other healthcare organizations and past breach notifications, among other factors.