Industry Notes:
Small Providers Can't Skip HIPAA Risk Analysis
Published on Fri Feb 27, 2015
Don’t expect to get off the hook for HIPAA compliance just because you aren’t a big corporation or health system. The idea that a security risk analysis is optional for small providers is a myth, according to the HHS Office of the National Coordinator for Health Information Technology (ONC). All pro-viders who qualify as covered entities (CEs) under HIPAA must [...]