HIPAA Audit Updates - Privacy, Security, and Breach Notification Rules

Members & Publications

May 4, 2016

The Office of Civil Rights (OCR) under the Department of Health and Human Services (HHS), has begun implementing Phase 2 of their HIPAA Audit Program. Under this program, OCR reviews the policies and procedures adopted and employed by covered entities (including physician offices) and their business associates which are intended to meet selected standards and implementation specifications of the Privacy, Security, and Breach Notification Rules. These analyses are conducted using a comprehensive audit protocol that has been updated to reflect the Omnibus Final Rule. 

View the audit protocol, which was updated in April, 2016. Physicians and/or their practice managers should review their HIPAA policies and procedures to ensure they are in line with the updated protocol. The OCR may impose fines for practices that are not in compliance.

Legislation Introduced to Alleviate Impact of Conversion Factor Cut for 2021

Nov 09, 2020

Last month, two bills were introduced in the House proposing solutions to the estimated 10.6% Physician Fee Schedule conversion factor cut expected to go into effect January 1, 2021.  The bills offer some relief to the cut, but do not reflect a comprehensive or long-term solution.  AAPM&R has therefore chosen to remain neutral regarding these bills. 

Your Academy continues to advocate for a permanent solution to the conversion factor cut while maintaining the important payment increases to office and outpatient evaluation and management services.