Phase 2 of OCR HIPAA Audits Begins

by  Wyn Staheli, Director of Content
April 30th, 2016

HHS has announced that Phase 2 of the HIPAA Audits has begun. If you remember, Phase 1 had some pretty dismal results. Of the 115 entities audited, only 11% were in full compliance. Last year they sent out pre-selection surveys and as promised, the audits have now begun.

Every healthcare provider needs to make sure that their email software is set to accept email from You must respond to the email that they send out -- you cannot use the excuse that it ended up in your Spam or Junk mailboxes and you didn't see it. The simple solution is to add the OCR email address (shown above) to your 'approved sender' list, assuring that you don't miss that important email.

For those not selected for an audit, this doesn't mean that you are off the hook regarding HIPAA. Everyone that is a covered Entity MUST be following HIPAA standards. Are your Policies and Procedures up to date? Have you taken all the appropriate measures to ensure that you are protecting Patient Health Information (PHI)? The OCR is finding weak points in the system and you need to be addressing your own weaknesses as well. If you haven't recently completed your own Risk Assessment, do it now! Doing so will help you determine your own weaknesses, giving you time make necessary adjustments to ensure compliance. Your efforts can help to establish your good faith attempt to comply before you get that email alerting you that an audit is taking place.



Phase 2 of OCR HIPAA Audits Begins. (2016, April 30). Find-A-Code Articles. Retrieved from

© InnoviHealth Systems Inc

Article Tags  (click on a tag to see related articles)

Complete & Easy HIPAA Compliance

A simple and practical guide to implementing HIPAA, HITECH, and Omnibus Final Rule components. Includes the forms and policies and information you need to meet compliance requirements. Plus over 50 customizable forms!

Publish this Article on your Website, Blog or Newsletter

This article is available for publishing on websites, blogs, and newsletters. The article must be published in its entirety - all links must be active. If you would like to publish this article, please contact us and let us know where you will be publishing it. The easiest way to get the text of the article is to highlight and copy. Or use your browser's "View Source" option to capture the HTML formatted code.

If you would like a specific article written on a medical coding and billing topic, please Contact Us.


innoviHealth Systems, Inc.
62 East 300 North
Spanish Fork, UT 84660
Phone: 801-770-4203 (8-5 Mountain)
free demo
request yours today
free subscription
for any budget

Thank you for choosing Find-A-Code, please Sign In to remove ads.