Global

CompliancePanel

Knowledge, a Way Forward

2-day In-person Seminar:

Texting and E-mail with Patients:

Patient Requests and Complying with HIPAA

SFO, CA

October 29th & 30th, 2015

9:00 AM to 6:00 PM

Course "Texting and E-mail with Patients: Patient Requests and Complying with HIPAA" has
been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC
recertication upon full completion.

Jim Sheldon Dean

Director of Compliance Services, Lewis Creek Systems, LLC
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based
consulting rm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety
of health care entities.
Sheldon-Dean serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Workgroup for Electronic
Data Interchange Privacy and Security Workgroup, and is a recipient of the WEDI 2011 Award of Merit. He is a frequent
speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including
speaking engagements at numerous regional and national healthcare association conferences and conventions and the
annual NIST/OCR HIPAA Security Conference in Washington, D.C.

Overview
With the recent advances in portable technology, more and more organizations and their users are taking advantage of
mobile devices to save time and get work done more efciently. Texting, portable e-mail, and Apps are revolutionizing the
ways health care providers interact with their patients and get their work done. But the use of these devices comes with
hidden costs of compliance, especially if they lead to a reportable breach under HIPAA or state laws. HIPAA Privacy and
Security Ofcers have been struggling to keep up with the use of the devices to protect patient privacy and avoid compliance
issues. Even if these devices arent in formal use in your organization.

Global

CompliancePanel

Knowledge, a Way Forward

Agenda:
DAY ONE

Continue....

Day one sets the stage with an overview of the HIPAA

regulations and then continues with presentation of the
specics of the Privacy Rule, the communication rights of
individuals, and the basics of the Security Rule.

The day continues with what must be done to survive

audits by the US Department of Health and Human
Services, including an examination of how risk analysis
can be used to drive compliance by the systematic
examination of information ows and mitigation of risks
discovered, and an exploration of the ofcial HHS HIPAA
Audit Protocol, including how to use the protocol to help
manage your compliance work and its documentation.
Typical risk issues pertaining to mobile devices will be
discussed, and the use of risk analysis for the evaluation
of devices and systems will be emphasized. Finally, the
day concludes with a session on the essential activities of
documenting policies, procedures, and activities, training
staff and managers in the issues and policies they need
to know about, and examining compliance readiness
through drills and self-audits.

Overview of HIPAA Regulations

The Origins and Purposes of HIPAA
Privacy Rule History and Objectives
Security Rule History and Objectives
Breach Notication Requirements, Benets, and

Results
HIPAA Privacy Rule Principles, Policies and Procedures
Patient Rights under HIPAA
Limitations on Uses and Disclosures
Required Policies and Procedures
Training and Documentation Requirements

HIPAA and Rights of Communication

HIPAA Security Policies and Procedures and Audits

Right to Request Alternative Communications

HIPAA Security Policy Framework

Impacts of Using Alternative Communications

Sample Security Policy Content

Considering Risks and Security

BYOD and Mobile Device Policies

Communications Guidance from HHS

The New HIPAA Compliance Audit Protocol

HIPAA Security Rule Principles

Risk Analysis and Mobile Devices

General Rules and Flexibility Provisions

Principles of Risk Analysis for Information Security

The Role of Risk Analysis

Information Security Management Process

Security Safeguards

Risk Analysis Methods

Training and Documentation

Risk Analysis and Mobile Devices

DAY TWO

Risk Mitigation and Compliance Remediation

Typical Security Risks for Mobile Devices
Social Media, Texting, e-mail, and Privacy

Day two begins with a detailed examination of HIPAA

Security Rule requirements, with particular attention to
the issues of mobile devices and the applications that
may be used on them, such as Texting and e-mail, and
BYOD issues.

Dealing with Portable Devices and Remote Access

Compliance Planning

Documentation, Training, Drills and Self-Audits

How to Organize and Use Documentation to Your

Advantage
Training Methods and Compliance Improvement
Conducting Drills in Incident Response
Using the HIPAA Audit Protocol for Documentation

and Self-Auditing

Global

CompliancePanel

Pricing List

Knowledge, a Way Forward

Group participations

Price for One Delegate pass Price: $ 1,695.00

Register now and save(Early Bird) $200. Price

Register Now
**Please note the registration will be closed 2 days (48 Hours) prior to

2 Attendees to get offer

10%

3 to 6 Attendees to get offer

20%

7 to 10 Attendees to get offer

25%

10+ Attendees to get offer

30%

the date of the seminar.

What you will get

Learning Objectives
Participation certificates

Payment Option
Credit Card: Use the Link to make Payment by
Visa/Master/American Express card click on the
register now link

Interactive sessions with the US expert

Post event email assistance to your queries.

Check: Kindly make the check payable to

NetZealous DBA GlobalCompliancePanel and
mailed to 161 Mission Falls Lane, Suite 216,

Special price on future purchase of web

Fremont, CA 94539, USA

based trainings.
Special price on future consulting or expertise
services.
Special price on future seminars by
GlobalCompliancePanel.

PO: Please drop an email to

support@globalcompliancepanel.com or call the
our toll free +1-800-447-9407 for the invoice and
you may fax the PO to 302 288 6884

Seminar Kit includes presentation handout,

Wire Transfer: Please drop an email to

ID card, brochure, trainings catalog, notepad

support@globalcompliancepanel.com or call our

and pen.

toll free +1-800-447-9407 for the wire transfer

Networking with industry's top notch professionals

information

Contact Information: Event Coordinator

Kindly get in touch with us for any help or information.

NetZealous LLC, DBA GlobalCompliancePanel

Look forward to meeting you at the seminar

161 Mission Falls Lane, Suite 216, Fremont, CA 94539, USA

GlobalCompliancePanel

Toll free: +1-800-447-9407

Fax: 302 288 6884
Email: support@globalcompliancepanel.com