Compliance training is now critical, with an upcoming February 16 NPP revision deadline and a May Security Rule overhaul on the horizon.
HIPAA Privacy Changes
The NPP revision requires updates to how substance use records are handled. Providers should distribute updated Notice of Privacy Practices forms and collect patient signatures as proof of execution.
May Security Rule Overhaul
Stricter digital safety requirements include:
- Mandatory MFA for all staff logins
- Maintaining PHI Access Logs
- Demonstrating a working Risk Analysis and Management Plan to auditors
OCR Audit Preparedness and OSHA
Providers must follow BBP Standard compliance and the General Duty Clause, keeping logs of all safety training sessions.
CMS Fraud Waste and Abuse Prevention
Monthly OIG exclusion list checks are required, documented with dated screenshots or signed reports.
Resources
Taino Consultants and EPI Compliance offer forms, training bundles, and webcasts to help practices manage documentation. Review policies, refresh training logs, and actively manage compliance programs to protect future revenue.
About Jose Delgado
Dr. Jose I. Delgado is the founder and CEO of Taino Consultants, a veteran-owned, 8(a) graduate healthcare IT consulting firm based in St. Augustine, Florida. With over 30 years of experience in healthcare compliance and government contracting, Dr. Delgado has helped organizations navigate HIPAA, MACRA/MIPS, and federal IT security requirements.
Need help with healthcare compliance?
Taino Consultants provides HIPAA compliance consulting, MACRA/MIPS compliance support, and healthcare IT modernization services for government and private healthcare organizations.
Schedule a consultation
