Walter E. Johnson Director of Compliance & Ethics Kforce Government Solutions
|
|
- Ashlee Harvey
- 6 years ago
- Views:
Transcription
1 GAMING THE SYSTEM! 2016 HCCA Compliance Institute Walter E. Johnson Cindy Hart Adam Weinstein Dawn Lambert Panelists Walter E. Johnson Director of Compliance & Ethics Kforce Government Solutions Adam K. Weinstein Vice President, Regulatory Affairs NewYork-Presbyterian/Queens Cindy Hart Audit Manager CHAN Healthcare, LLC Dawn E. Lambert Chief Privacy Officer IASIS Healthcare 1
2 Agenda Introductions Discussion Topics Monitoring Integrity Using the COSO framework Hotline Promotion & Reporting Closing Questions Case Overview Bucks County, Pennsylvania Government employees Dependents Restitution 2
3 Monitoring Integrity Employee Snooping Social Media Monitoring Integrity What do you think is the most common cause of HIPAA security breaches? 3
4 Most common cause of HIPAA security breaches is employee snooping. Veriphyr study HIPAA requires adequate physical, administrative, and technical safeguards A single unauthorized access is not reportable to OCR WHY?? 4
5 Only breaches that expose must be reported BUT It is still a HIPAA violation and could trigger an OCR investigation Organizations compliant with MU must ensure security of patients ephi 5
6 Big challenge preventing improper access to PHI What are snoopers looking at? Celebrities X-factor Ex-spouse Ex-friends Ex-colleagues 6
7 Health Information Technology for Economic and Clinical Health (HITECH) Act, Public Law 111-5, Section Business Associate to notify Covered Entity upon discovery of breach Not required to notify if data was encrypted or destroyed 7
8 Example: Nurse in TX hospital accessed patient records on another unit Example: Walgreens pharmacy customer prescription provided to 3 rd party by snooping pharmacist 8
9 Example: Largest snooping settlement is $865,000 paid by UCLA in 2011 Kaiser Permanente Bellflower paid $250,000 What to do? 1. Training on the topic 2. No-Peeking policy 3. Limit access to minimum necessary 4. Monitor VIP records 5. Discourage log-in piggybacking 6. Focus on people issues 9
10 Guidance from the Annual Report to Congress (8/24/09): Encryption & destruction are best methods for rendering PHI unusable, unreadable, or indecipherable to unauthorized persons Social Media (continued) Think your employees know better than to post PHI on social media? THINK AGAIN!! For example: Hospital employee posts a patient s picture and chart along with his comments on her condition, because it was only Facebook and therefore not real. The employee thought it was funny. ED personnel posted pictures to the Internet of a man s fatal knife wounds. 10
11 Social Media (continued) Sometimes employees post with the best of intentions: In California, 5 nurses used FaceBook to provide shift change updates to their coworkers. While they did not post patient names, they did post enough specific information that the incoming nurses could prepare for their shift. Social Media (continued) Social Media is clearly HERE TO STAY So, what is a company to do? Develop a social media policy (and review it as often as guidance is published) Provide focused training on Social Media Monitor social media activities (lawfully) 11
12 Social Media (continued) Social Media Policy: It should clearly state that the conduct that the employer wants to prevent (don t make them read between the lines) Social Media Monitoring: Implement a structure for electronic monitoring to reduce exposure to potential claims and protect the company. Social Media (continued) TRAIN, TRAIN, TRAIN DO: Understand what is considered a HIPAA violation on social networks DO: Train employees thoroughly DON T: Post anything you wouldn t say in public for all to hear DON T: Overlook the severity of HIPAA violation penalties 12
13 Social Media (continued) Companies may not freely snoop through social media pages to glean otherwise undisclosed information about applicants and employees. But companies cannot turn a blind eye to their employees social media activities. So what is a company to do? Look to technology and legal counsel! Social Media (continued) Last, but certainly not LEAST ---- Be consistent with disciplinary actions Document, document, document 13
14 COSO Framework A. What is COSO (Internal Controls) B. Is it important? and Why? and How? COSO Framework (continued) COSO s components make these internal controls effective and reliable for operations and financial reporting! 14
15 COSO Framework (continued) COSO Documents are available on Internal Control-Integrated Frameworks Executive Summary Internal Control-Integrated Framework & Appendices 175 Pages Illustrated tools for Assessing Effectiveness of a System of Internal Control COSO in the Cyber Age: Report Offers Guidance on Using Frameworks to Assess Cyber Risks (2015) Improving Organizational Performance and Governance: How the COSO Frameworks Can Help (2014) Enhancing Board Oversight: Avoiding Judgment Traps and Biases (2012) Hotline & Direct-Line Promotion & Analysis B.o.D. Enterprise Effectiveness REPORT In Board of Directors Meetings and/or reports share Hotline data. Share Direct-line data. PROMOTE In addition to website and bulletin boards, promote the Hotline in all presentation materials such as Town Halls, s, & announcements. ANALYZE Use data from hotline calls, direct-line calls, and compliance training to determine +/- in reporting and/or inquiries. 15
16 Hotline & Direct-Line Promotion & Analysis (continued) Quarter 1 Quarter 2 Quarter 3 Quarter 4 0 Hotline Direct line Training Communication Quarter 1: Communications on upcoming Fraud Training Quarter 2: Fraud Training Quarter 3: Follow-Up Communication on Fraud Prevention Questions 16
HIPAA Compliance and Mistakes:
HIPAA Compliance and Mistakes: Let s just say what everyone is thinking: Trying to be compliant with the Health Insurance Portability and Accountability Act (HIPAA) is tough! At HIPAAgps, we get that.
More informationYou Might Have a HIPAA Breach. Now What?
You Might Have a HIPAA Breach. Now What? Ann M. Curran O Connor & Thomas, PC Phuong D. Nguyen Compliance Manager HealthTexas Provider Network Introductions Phuong D. Nguyen Compliance Manager, HealthTexas
More informationYou Might Have a HIPAA Breach. Now What?
You Might Have a HIPAA Breach. Now What? Ann M. Curran O Connor & Thomas, PC Phuong D. Nguyen Compliance Manager HealthTexas Provider Network Introductions Phuong D. Nguyen Compliance Manager, HealthTexas
More informationPrivacy and Information Security Sanction Policy
Effective Date: November 2018 Policy Statement Privacy and Information Security Sanction Policy All workforce members, including faculty, staff, and students, are expected to comply with the organization
More informationThe Rye Ambulatory Surgery Center, LLC Compliance Plan
The Rye Ambulatory Surgery Center, LLC Compliance Plan Approved By Board of Managers October 27, 2010 INTRODUCTION The Rye Ambulatory Surgery Center ( Rye ASC ) is committed to conducting its operations
More informationHow to Finish the HIPAA Security Risk Analysis and Meaningful Use Risk Assessment
How to Finish the HIPAA Security Risk Analysis and Meaningful Use Risk Assessment Caroline Hamilton caroline.r.hamilton@gmail.com Risk & Security LLC As channeled by Dr. HIPAA Meaningful Use was the Hottest
More informationFrom the Front Lines: Navigating the OCR Phase 2 HIPAA Audits
View the Replay From the Front Lines: Navigating the OCR Phase 2 HIPAA Audits June 16, 2016 Executive Series Webinar Today s Speakers Carla Wagner, HCISPP Privacy Officer Beacon Health System Trish A.
More informationSHRINERS HOSPITALS FOR CHILDREN CORPORATE COMPLIANCE PLAN
SHRINERS HOSPITALS FOR CHILDREN CORPORATE COMPLIANCE PLAN 1.0 INTRODUCTION Shriners Hospitals for Children ( SHC ) is committed to conducting itself according to applicable business ethical standards and
More informationWelcome to Northside Hospital s Annual / New Hire Compliance Training. 1 of 35
2015-2016 Corporate Compliance Training Welcome to Northside Hospital s Annual / New Hire Compliance Training 1 of 35 Goals of Session 1. Review Northside s Compliance Program and Code of Conduct 2. Emphasize
More informationAcceleron Pharma Inc. Code of Business Conduct and Ethics
I. INTRODUCTION Acceleron Pharma Inc. Code of Business Conduct and Ethics (Amended & Restated as of March 1, 2018) This Code of Business Conduct and Ethics ( Code ) provides a general statement of the
More informationClickStaff Orientation Training. Presented to: Contingent Workers Presented by: <Supplier ABC> Version Effective Date: June 20, 2012 Version: 8FINAL
ClickStaff Orientation Training Presented to: Contingent Workers g Presented by: Version Effective Date: June 20, 2012 Version: 8FINAL Housekeeping reminders Session will take about 15-20
More informationCompliance with Laws, Rules and Regulations
R1 RCM Inc. (hereafter, R1 or the Company ) is committed to the conduct of its business in an ethical, legal, and transparent manner. In turn, the Company expects that all employees, contractors and vendors
More informationBenchmarking Compliance Programs. Bret S. Bissey, MBA, FACHE, CHC, CMPE, Senior Vice President, Compliance Services, MediTract
Benchmarking Compliance Programs Bret S. Bissey, MBA, FACHE, CHC, CMPE, Senior Vice President, Compliance Services, MediTract Health Care Compliance Association INDIANAPOLIS, IN Regional Conference September
More informationPreparing for an OCR Audit: What is Expected of You
Preparing for an OCR Audit: What is Expected of You Speakers Chuck Burbank CISO and Director of Managed Privacy Services FairWarning Robert Mireles, CIPM Sr. Healthcare Privacy Specialist for Managed Privacy
More informationGUIDELINES. Corporate Compliance. Kenneth D. Gibbs President & Chief Executive. Martin A. Cammer Senior Vice President & Corporate Compliance Officer
GUIDELINES Corporate Compliance Kenneth D. Gibbs President & Chief Executive Martin A. Cammer Senior Vice President & Corporate Compliance Officer Joyce Leahy Executive Vice President for Legal Affairs
More informationMARICOPA INTEGRATED HEALTH SYSTEM Code of Conduct and Ethics
MARICOPA INTEGRATED HEALTH SYSTEM Code of Conduct and Ethics Date: November 12, 2015 11.12.2015 Page 1 Code of Conduct and Ethics Revised and Effective November 12, 2015 I. PURPOSE This Code of Conduct
More informationHIPAA Demystified: Strategies to Bullet Proof Your Compliance Plan. Chris Apgar, CISSP Ron Moser, CISA, CRISC
HIPAA Demystified: Strategies to Bullet Proof Your Compliance Plan Chris Apgar, CISSP Ron Moser, CISA, CRISC Overview The Culture of Compliance First Steps What are the risks? Making a plan Whatever You
More informationNorth Shore LIJ Health System, Inc.
North Shore LIJ Health System, Inc. POLICY TITLE: Information System Review and Audit Controls Policy POLICY #: 900.27 System Approval Date: 1/15/2015 ADMINISTRATIVE POLICY AND PROCEDURE MANUAL CATEGORY:
More informationDo You Know What Your Business Associates Subcontractors & Vendors Are Doing With Your PHI & ephi?
Do You Know What Your Business Associates Subcontractors & Vendors Are Doing With Your PHI & ephi? Web Hull Privacy, Data Protection, & Compliance Advisor Web.Hull@icloud.com HCCA 2017 Compliance Institute
More informationDo You Know What Your Business Associates Subcontractors & Vendors Are Doing With Your PHI & ephi?
Do You Know What Your Business Associates Subcontractors & Vendors Are Doing With Your PHI & ephi? Web Hull Privacy, Data Protection, & Compliance Advisor Web.Hull@icloud.com HCCA 2017 Compliance Institute
More informationSALINAS VALLEY MEMORIAL HEALTHCARE SYSTEM. Compliance Program. March 2018
SALINAS VALLEY MEMORIAL HEALTHCARE SYSTEM Compliance Program March 2018 Salinas Valley Memorial Healthcare System, 450 East Romie Lane, Salinas, California, 93901 PROGRAM GOAL/PURPOSE The Salinas Valley
More informationAllergan plc COMPREHENSIVE COMPLIANCE PROGRAM
Allergan plc COMPREHENSIVE COMPLIANCE PROGRAM 1. Compliance with Law All colleagues, officers and directors of the Company shall respect and comply with all applicable federal, state, local and foreign
More informationEffective Compliance Programs How Does Your Program Measure Up?
Effective Compliance Programs How Does Your Program Measure Up? Maryland Leading Age 2016 Karla Dreisbach, CHC, CHPC Vice President of Compliance, Peace Church Compliance Program What is the compliance
More informationFIRST TIER, DOWNSTREAM AND RELATED ENTITY (FDR) COMPLIANCE GUIDE
FIRST TIER, DOWNSTREAM AND RELATED ENTITY (FDR) COMPLIANCE GUIDE I. Introduction Viva Health s Commitment to Compliance Viva Health, Inc. ( Viva ) requires and promotes integrity, and an ethical, efficient
More informationRiver City Medical Group ANTIFRAUD PLAN
ANTIFRAUD PLAN INTRODUCTION (RCMG) has developed an antifraud plan (the ) in compliance with Section 1348 of the California Health and Safety Code, the Centers for Medicare and Medicaid Service, and the
More informationScope Policy Statement Reason For Policy Procedure Definitions Sanctions Additional Contacts History. Scope. University Policies.
Management of Human Resource Records: Personnel Records for Staff and Temporary Employees and Benefit Program Records for All Employees, Retirees, and COBRA Participants About This Policy Effective Date:
More informationOn the Alert: Incident Response Plan for Healthcare 111/13/2017
On the Alert: Incident Response Plan for Healthcare 111/13/2017 Presenter Introductions Nadia Fahim-Koster Managing Director, IT Risk Management Meditology Services Kevin Henry Senior Associate, IT Risk
More informationWhat is Compliance? Compliance Preventative Medicine for Your Practice. Commit to consistency. Commit to correctness. Commit to communication
Compliance Preventative Medicine for Your Practice Alicia Shickle CPC, CPCO, CPPM Director Compliance Division AAPC What is Compliance? Commit to correctness Do things right Commit to consistency Do the
More informationArc of Onondaga Corporate Compliance Plan
Arc of Onondaga Corporate Compliance Plan The Corporate Compliance Plan consists of eight key elements as well as a wide array of policies and procedures that address key risk areas, to guide our best
More informationBetter Security More Often. How to Keep Sacramento County Information Systems and Data Secure While Achieving Your Department Mission
How to Keep Sacramento County Information Systems and Data Secure While Achieving Your Department Mission 1 Table of contents Privacy and Security Matter: You Decide How Much A Look Inside Sacramento County
More informationSocial Networking. Management Guide. Compliance and Legal Services
Social Networking Management Guide Compliance and Legal Services Table of Contents IU Health Policies... 3 ADM 1.13 Standards of Conduct for Business Practices ADM 1.98 Information Security Incident Response
More informationAmgen GLOBAL CORPORATE COMPLIANCE POLICY
1. Scope Applicable to all Amgen Inc. and subsidiary or affiliated company staff members, consultants, contract workers, secondees and temporary staff worldwide ( Covered Persons ). Consultants, contract
More informationMaricopa Integrated Health System CODE OF CONDUCT AND ETHICS
Maricopa Integrated Health System CODE OF CONDUCT AND ETHICS March, 2012 March, 2012 Dear Member of the Maricopa Integrated Health System Team: Personal and corporate integrity has been one of Maricopa
More informationVIRTUA DATE OF LAST REVIEW 5/11; 4/14, 8/16
8/16 POLICY Virtua is committed to helping the people of our region be well, get well, and stay well. Part of our commitment to the communities we serve is to provide services of the highest quality to
More informationEnvironmental Scanning and Risk Assessment
Margaret Hambleton CHC-F, CHRC Vice President and Corporate Compliance Officer Dignity Health Environmental Scanning and Risk Assessment Health Care Compliance Association Orange County, CA Regional Conference
More informationEmerging Technology and Security Update
Emerging Technology and Security Update February 13, 2015 Jordan Reed Managing Director Agenda 2015 Internal Audit Capabilities and Needs Survey 2014 IT Priorities Survey Results 2014 IT Security and Privacy
More informationa physicians guide to security risk assessment
PAGE//1 a physicians guide to security risk assessment isalus healthcare isalus healthcare a physicians guide to security risk assessment table of contents INTRO 1 DO I NEED TO OUTSOURCE MY SECURITY RISK
More informationPhysician Group Case Study: An Effective Approach to Creating a Comprehensive Compliance Program
Case Study Physician Group Case Study: An Effective Approach to Creating a Comprehensive Compliance Program This presentation is intended to provide a brief overview of compliance and should not to be
More informationWelcome to today s Live Event we will begin shortly. Please feel free to use Chat or Q&A to tell us any burning questions you may have in advance
Welcome to today s Live Event we will begin shortly Please feel free to use Chat or Q&A to tell us any burning questions you may have in advance 1 Welcome to How to Develop Your HIPAA Security Policies
More informationSuccess in Joint Ventures: Sustained Compliance and Audit Oversight
Success in Joint Ventures: Sustained Compliance and Audit Oversight Gene DeLaddy, CIA Senior Vice President, Chief Compliance & Privacy Officer, Chief Audit Executive Dave Pyland, CPA Director, Internal
More informationDelta Dental of Michigan, Ohio, and Indiana. Compliance Plan
Delta Dental of Michigan, Ohio, and Indiana Compliance Plan Procedure #: 420-29 Issue Date: 5/15/2013 Last Revised Date: 5/23/2016 Last Review Date: 5/23/2016 Next Review Date: 5/23/2017 Title: Compliance
More informationResearch and the EHR: Process Improvement Through Integration
Research and the EHR: Process Improvement Through Integration Session 160, March 8, 2018 Arash Naeim, MD PhD, Chief Medical Research Officer, UCLA Health System Marti Arvin, VP of Audit Strategy, CynergisTek
More informationSharp HealthCare s 2017 Compliance Education. Compliance and Ethics Module 1
Sharp HealthCare s 2017 Compliance Education Compliance and Ethics Module 1 1 Learning Objectives In this module you will learn about the following: Sharp HealthCare s Compliance and Ethics Program The
More informationRETURN ON INVESTMENT (ROI): DOCUMENTING AND SUPPORTING THE VALUE-ADD FOR A COMPLIANCE PROGRAM
RETURN ON INVESTMENT (ROI): DOCUMENTING AND SUPPORTING THE VALUE-ADD FOR A COMPLIANCE PROGRAM OBJECTIVES EXPLORE METHODS AND TOOLS TO DOCUMENT THE VALUE- ADDED FOR A COMPLIANCE PROGRAM. APPLY PROVEN ROI
More informationHealth Solutions. Commercial Health Solutions Overview EXPANDING INSIGHT. ENSURING VALUE. IMPROVING OUTCOMES.
Health Solutions Commercial Health Solutions Overview EXPANDING INSIGHT. ENSURING VALUE. IMPROVING OUTCOMES. Expanding Insight. Ensuring Value. Improving Outcomes. Organizations look to experienced solutions
More informationDevelopmental Delay Rehabilitation Services Inc.
Developmental Delay Rehabilitation Services Inc. Corporate Compliance Plan Terence Blackwell, CEO Nathan Cohen, CCC/SLP, President Corporate Compliance Officer Table of Contents Section Name I. Corporate
More informationTop 5 Must Do IT Audits
Top 5 Must Do IT Audits Mike Fabrizius, Sharp HealthCare, VP, Internal Audit DJ Wilkins, KPMG, Partner, IT Advisory 2011 AHIA Annual Conference www.ahia.org Background on Sharp HealthCare Sharp s Co-sourcing
More informationPrivacy Incident Response & Reporting: Pre and Post HITECH
Privacy Incident Response & Reporting: Pre and Post HITECH Erika Riethmiller-Bol, Director, Corporate Privacy-Incident Program, Anthem, Inc. HCCA Managed Care Compliance Conference February 16, 2015 Objectives
More informationManaging the Business Associate Relationship: From Onboarding to Breaches. March 27, 2016
Managing the Business Associate Relationship: From Onboarding to Breaches March 27, 2016 HCCA s 21 st Annual Compliance Institute National Harbor, MD Today s Agenda Onboarding: Health care providers and
More informationThe following topics will be covered in this course: 1) Don t let pressure influence ethics and reasoning 2) Be careful about rationalizations 3)
The following topics will be covered in this course: 1) Don t let pressure influence ethics and reasoning 2) Be careful about rationalizations 3) Enforcement matters 4) Create a flatter organization and
More informationRamifications of the New COSO Framework & Recent PCAOB Actions
Ramifications of the New COSO Framework & Recent PCAOB Actions Panelists Moderator Bob Meyer, Senior Vice President of Finance & Corporate Controller, American Tower Joann Cangelosi, Partner, Grant Thornton
More information2018 SRAI Annual Meeting. Research Regulatory Compliance: Effective Models of Authority for Achieving Success
2018 SRAI Annual Meeting Research Regulatory Compliance: Effective Models of Authority for Achieving Success John Baumann, PhD, Associate Vice President of Compliance, Indiana University Sarah Kiskaddon,
More informationCODE OF ETHICS/CONDUCT
CODE OF ETHICS/CONDUCT This Code of Ethics/Conduct ( Code ) covers a wide range of business practices and procedures. It does not cover every possible issue that may arise, but rather provides information
More informationCompliance. TODAY December A discussion on celebrating Corporate Compliance & Ethics Week See page 16
Compliance TODAY December 2013 a publication of the health care compliance association www.hcca-info.org Timothy Ferriss Compliance Specialist Privacy Alaska Native Tribal Health Consortium Jan Cunningham
More informationHealth Care Compliance Association
Volume Fourteen Number Two Published Monthly Meet Jenny O Brien UnitedHealth Group s Chief Medicare Compliance Officer page 14 Feature Focus: 2012 OIG Work Plan: Part 2, Additional OIG reviews page 35
More informationPHYSICIAN PRACTICE MANAGEMENT
The Newsletter of the Massachusetts-Rhode Island Chapter Volume XLI Number 6 MASS MEDIA PHYSICIAN PRACTICE MANAGEMENT Schedule M, Noncash Contributions and Gift-In-Kind Valuations Assuring the Effectiveness
More informationCANDIDATE DATA PROTECTION STANDARDS
CANDIDATE DATA PROTECTION STANDARDS I. OBJECTIVE The aim of these Candidate Data Protection Standards ( Standards ) is to provide adequate and consistent safeguards for the handling of candidate data by
More information2016 Medicare-Medicaid Plan Compliance Plan
2016 Medicare-Medicaid Plan Compliance Plan Document maintained by: Christy K. Bosse Director & Compliance Officer Updated as of: 3/7/2016 1 Compliance Plan Governance The Medicare-Medicaid Plan ( MMP
More informationObjectives. On-boarding the New Provider. Successful On-Boarding: Integrating Newly Acquired Physician Practices Into Your Compliance Program
Successful On-Boarding: Integrating Newly Acquired Physician Practices Into Your Compliance Program 2012 HCCA Clinical Practice Compliance Conference Session 601 1:00 p.m. 2:00 p.m. Objectives 1. Assess
More informationFraud Detection and Prevention
Fraud Detection and Prevention Washington Association of School Business Officials May 7, 2015 Sherrie Ard, CPA, CFE Local Government Performance Center Financial Management Specialist FRAUD 2 Overview
More informationInternal Audit & the Audit Committee
HCCA Audit & Compliance Committee Conference February 2008 Internal Audit & the Audit Committee Glen C. Mueller, CPA, CIA, CISA, CISM Scripps Health, San Diego, CA VP-Chief Audit & Compliance Executive
More informationPharmaceutical Congress Spring Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers
Pharmaceutical Congress Spring 2003 Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers Michael P. Swiatocha June 8, 2003 Agenda Introductions & Objectives Overview of Industry Practices
More informationFourth Annual Pharmaceutical Regulatory and Compliance Congress
Fourth Annual Pharmaceutical Regulatory and Compliance Congress Preconference I A Compliance Primer for the Pharmaceutical Sector Michael P. Swiatocha November 12, 2003 Agenda for Preconference I Introduction
More informationIssued by: Executive Compliance Committee Prepared By: Chief Ethics & Compliance Officer Approved By: Board
Compliance Officer Vendor-Promotional Training and Business Associate- BACKGROUND The Office of Inspector General (OIG) has issued guidance regarding the development and implementation of compliance programs
More informationThey re Back! Phase 2 OCR Audits Are Underway
They re Back! Phase 2 OCR Audits Are Underway Adam Greene, JD, MPH Partner, Davis Wright Tremaine LLP How You Get to Meet OCR 1. Complaint 2. Compliance Review 3. Breach Report 4. Audit 2 Background on
More informationCreating a Culture of Compliance Through Effective Program Structure 2012 HCCA Compliance Institute
Creating a Culture of Compliance Through Effective Program Structure 2012 HCCA Compliance Institute Sarah Campbell, Director Al Josephs, Senior Director Ryan Whitehill, Manager Ethics and Compliance Tenet
More informationCompliance Plans. Kelly S. McIntosh July 20, 2017
Compliance Plans Kelly S. McIntosh July 20, 2017 Roadmap The importance of compliance and compliance programs Common compliance issues know your risk areas! Guidance for drafting or updating your compliance
More informationThe Company seeks to comply with both the letter and spirit of the laws and regulations in all jurisdictions in which it operates.
1. Policy Statement CRC HEALTH GROUP, INC. CRC HEALTH CORPORATION CODE OF BUSINESS CONDUCT AND ETHICS It is the policy of CRC Health Group to conduct its business affairs honestly and in an ethical manner.
More informationThe Relationship Between HIPAA Compliance and Business Associates
The Relationship Between HIPAA Compliance and Business Associates 2007-2016 1 What is HIPAA? HIPAA / HITECH Protect patient confidentiality while furthering innovation and patient care Omnibus (September
More informationINTERNAL CONTROL SYSTEMS
INTERNAL CONTROL SYSTEMS County Recorders Conference April 2015 How many of you can say that you are reasonably certain that the office: operates in a way that goals are reached; reports materially correct
More informationLIBERTY Dental Plan General Compliance Training
LIBERTY Dental Plan General Compliance Training 1 IMPORTANT NOTICE IMPORTANT NOTICE This training module will assist Medicare Parts C and D plan Sponsors in satisfying the Compliance training requirements
More informationCORPORATE COMPLIANCE PROGRAM CODE OF CONDUCT PLEDGE OF PRINCIPLES
CORPORATE COMPLIANCE PROGRAM CODE OF CONDUCT PLEDGE OF PRINCIPLES 2015 1 THE CODE OF CONDUCT Our code of conduct, the Pledge of Principles, was developed to help guide the behavior and performance of employees
More informationConverging Ethics, Governance, and Culture
"Safeguarding Reputation and Fiduciary Integrity" Converging Ethics, Governance, and Culture Michael Brozzetti, CIA, CISA, CGEIT 1 Disclaimer The views and opinions expressed herein are solely those of
More informationInstitutional Compliance Awareness. Updated 2/23/18
Institutional Compliance Awareness Updated 2/23/18 Institutional Compliance Plan Approved by the Board of Trustees Outlines key elements of the compliance structure: Risk and Compliance Oversight Council
More informationInternal Control in Higher Education
Internal Control in Higher Education Daniel Adams Office of Audit Services Audit Services Mission To provide assurance and advisory services that are independent, objective and risk-based in order to protect
More informationDOING WHAT S RIGHT. Our Code of Conduct and Ethics
Our Code of Conduct and Ethics Dear Employees and Caregivers, Caring. It s at the core of who we are and what we do. As caregivers to the most frail in our society, the Curo focus is on quality care, effective
More informationCorporate Compliance Plan
Corporate Compliance Plan Effective February 23, 2007 I. Compliance Policy Statement ABX Air, Inc. Corporate Compliance Plan This document is the Corporate Compliance Plan (this Plan ) of ABX Air, Inc.
More information3/16/2016. How to Implement a Monitoring Program Presented by: Kelly Nueske April 2016 OBJECTIVES AGENDA
How to Implement a Monitoring Program Presented by: Kelly Nueske April 2016 OBJECTIVES Discuss strategies for implementing a monitoring program. For example, using the quality platform. A complete walkthrough
More informationEGUIDE BRIDGING THE GAP BETWEEN HEALTHCARE & HIPAA COMPLIANT CLOUD TECHNOLOGY Created for mike elfassi
Created for mike elfassi Bridging The Gap Between Healthcare & Hipaa Compliant Cloud Technology and outsource computing resources to external entities, would provide substantial relief to healthcare service
More informationLarge Hospital Systems
Large Hospital Systems HCCA 17 th Annual Compliance Institute PREAM1 April 21, 2013 Session Goal 2 This session is the opportunity for Large Hospital and Health System compliance officers to engage in
More informationLarge Hospital Systems
Large Hospital Systems HCCA 17 th Annual Compliance Institute PREAM1 April 21, 2013 Session Goal 2 This session is the opportunity for Large Hospital and Health System compliance officers to engage in
More informationPolicy on Financial Accountability & Control
Responsible Official (Title): Responsible Office: Responsible Division: Chief Financial Officer Chief Financial Officer Financial Services Policy on Financial Accountability & Control 1. Policy Statement
More informationINTERNAL AUDIT Fraud Investigation Process Campus Administrative Training Series April 24, 2017
INTERNAL AUDIT Fraud Investigation Process Campus Administrative Training Series April 24, 2017 Stewart Cobine, CPA AVP & Chief Audit Officer Maggie Harrell, CFE Senior Investigative Auditor FOCUS OF SESSION
More informationOCI Mitigation Plan SAMPLE for IDIQ contract
OCI Mitigation Plan SAMPLE for IDIQ contract Company (Authorized Signatory) Company Vice President (or equivalent level) i TABLE OF CONTENTS Section Description Page I. Organizational Conflict of Interest
More informationTelemedicine. SCOPE PERIOD The scope period was all telemedicine initiatives and applications as of April 26, 2018.
We have completed our audit of telemedicine. This audit was performed at the request of the UTHealth Audit Committee and was conducted in accordance with the International Standards for the Professional
More informationADDING VALUE BY AUDITING HEALTH INFORMATION IMPLEMENTATIONS ALEX ROBISON DAVID ZAVALA
1 ADDING VALUE BY AUDITING HEALTH INFORMATION EXCHANGE IMPLEMENTATIONS ALEX ROBISON DAVID ZAVALA PROTIVITI AHIA 31 st Annual Conference August 26-29, 2012 Philadelphia PA www.ahia.org Speakers Alex Robison
More informationSOCIAL MEDIA RISKS. Of Healthcare Organizations. October Sponsored by:
SOCIAL MEDIA RISKS Of Healthcare Organizations October 2011 Sponsored by: SOCIAL MEDIA RISKS Of Healthcare Organizations Social media sites such as Facebook, Twitter, YouTube and LinkedIn have become integral
More informationA-9: Audit Committee Effectiveness
A-9: Audit Committee Effectiveness Renée W. Jaenicke, CPA, CIA Renown Health 2011 AHIA Annual Conference www.ahia.org Renown Health and Internal Audit Our Journey Sources and Presentations Please ask questions
More information2017 Healthcare Compliance Benchmark Study
2017 Healthcare Compliance Benchmark Study Executive Summary and Results EXECUTIVE SUMMARY This report represents SAI Global s eighth annual survey gathering insights from compliance professionals in the
More informationAICPA CITP Credential Examination Series
Topic: COSO Framework Presenters: Al Chen and Virginia Collins Al Chen: Hello, and welcome to the AICPA CITP Credential Examination series. This podcast will assist you in preparing for the examination
More informationThis charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department.
CORPORATE AUDIT DEPARTMENT CHARTER PURPOSE This charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department. The Institute of Internal Auditors
More informationCSL BEHRING COMPLIANCE PLAN
CSL BEHRING COMPLIANCE PLAN I. POLICY AND PURPOSE Statement of Values CSL Behring adheres to a policy of strict compliance with the laws and regulations governing its business, not only as a legal obligation,
More informationView the Recording. Webinar: Accounting of Disclosures: Practical Approaches & Enforcement Update. November 17 th, FairWarning, Inc.
Webinar: Accounting of Disclosures: Practical Approaches & Enforcement Update November 17 th, 2011 View the Recording Learning objectives Enforcement update and lessons learned from past HIPAA audits Accounting
More informationLackey Memorial Hospital. Corporate Compliance Manual. And. Code of Conduct
Lackey Memorial Hospital Corporate Compliance Manual And Code of Conduct TABLE OF CONTENTS INTRODUCTION LETTER.3 CODE OF ETHICS...4 STATEMENT OF COMMITMENT TO CORPORTE COMPLIANCE.5 CORPORATE COMPLIANCE
More informationEnterprise Research Risk
Enterprise Research Risk Managing All the Moving Parts Erika Stevens, MA, Senior Manager Healthcare Advisory Tina Noonan, MBA,CHRC,CIP Director, Research and Regulatory Affairs Learning objectives Describe
More informationCode of Conduct 2012 Edition
Code of Conduct 2012 Edition Focused on Integrity Because We Care Dear University Hospitals Colleagues: University Hospitals is a unique and remarkable health care system, bringing together America s
More informationBRONX ACCOUNTABLE HEALTHCARE NETWORK IPA INC., D.B.A. MONTEFIORE ACO PIONEER ACO CORPORATE COMPLIANCE PLAN
BRONX ACCOUNTABLE HEALTHCARE NETWORK IPA INC., D.B.A. MONTEFIORE ACO PIONEER ACO CORPORATE COMPLIANCE PLAN Approved by: The ACO Board of Directors Date: December 11, 2012 Introduction In cooperation with
More informationData integrity forensics Bring transparency and trust to third-party data use
Legal, Compliance and Technology Webcast Series Sponsored by EY Forensic & Integrity Services Bring transparency and trust to third-party data use 24 October 2018 Today s speakers Moderator: Eric Derk
More informationPresentation Overview
How to Reasonably & Effectively Implement Compliance Programs for Small Group Physician Practices Andrea Merritt, Director of Compliance & Audit Services Ashlie Heald, Compliance Specialist Nova Compliance
More information3/21/2017. How and when should you leverage internal audit? March 28, Agenda. What are your initial thoughts on internal audit?
How and when should you leverage internal audit? March 28, 2017 Agenda Internal Audit foundation 3 lines of defense Trends in consultative & value enhancement work Why you should care Key takeaways 2 What
More information