The Department of Health and Human Services’ Office for Civil Rights recently announced it will resume its HIPAA compliance audit program starting the fall of 2014.
“OCR will be conducting desk audits of select HIPAA privacy and security rule provisions, with comprehensive on-site audits conducted as resources allow,” noted an OCR person. In 2012, KPMG conducted 115 pilot audits. The upcoming 2014 audits will be conducted by OCR staff. The auditors will assess compliance efforts through an updated protocol, which will include new criteria reflecting HIPAA Omnibus Rule changes and more specific test procedures. Read more details about the HIPAA Audit.