Compliance Considerations for Third-Party Payment Processors – Critical Compliance Management System Components

by KirkpatrickPrice / December 19, 2022

What is a CMS? Do you have one? If you’re not sure, this session is for you! We will discuss the necessary components including Board of Directors and management oversight, compliance program components, consumer protection, and compliance audit. The webinar will provide guidance on how even small to mid-sized organizations can build a robust CMS on a budget and discuss industry resources available to kick-start your program. 

Road to HIPAA Compliance: Risk Analysis and Risk Management

by KirkpatrickPrice / April 12, 2023

Risk Management for HIPAA Compliance Continuing down the Road to HIPAA Compliance, we will discuss what a risk assessment is, what that looks like according to HIPAA requirements, and how to analyze and manage risk.  What is a Risk Assessment? Why should you care about risk assessments? You must protect your assets, and to do that, we believe you need a formalized risk assessment. A risk assessment is a systematic process…

Third-Party Payment Processors: Risk and Regulation

by KirkpatrickPrice / April 12, 2023

Are you looking to learn about compliance risk and the importance of having effective compliance management systems? Are you unsure about what regulations apply to payment processing and need to review the regulatory landscape? Are you looking to learn about enforcement actions brought against banks and payment processors and what it could mean for you and your organization? This webinar educates listeners with an overview of third-party payment processors (TPPP),…

Road to HIPAA Compliance: Preparing for Phase 2 HIPAA Compliance

by KirkpatrickPrice / February 9, 2023

How Can You Prepare Your Organization for Phase 2 HIPAA Audits? This webinar covers an overview of what to expect as we shift to a new phase of proactive supervision and how to prepare for an onsite audit from the OCR.   First, let’s look at the background of the OCR Period Audit Process and Enforcement Action: 2009: HITECH requires periodic audits of covered entities and business associates 2011/2012: Phase…

Lessons Learned: Major Security Vulnerabilities and Flaws Uncovered During Audit of HealthCare.gov

by Sarah Harvey / December 19, 2022

Last month, an audit of HealthCare.gov uncovered some basic flaws in the security of the government’s healthcare website. The Personally Identifiable Information (PII) of millions of health insurance customers was being stored in a database that, fortunately, was never compromised by way of cyberattack. Medical records are not stored in the system, however, names, Social Security numbers, birth dates, addresses, and phone numbers of customers were left vulnerable to attacks.…