Maze

“A covered entity must train all members of its workforce on the policies and procedures with respect to protected health information.”


Information privacy and security standards continue to evolve. New laws appear every day from HIPAA and the Federal Trade Commission Red Flag rules to Washington’s Uniform Health Information Act and breach notification laws.

These rules can impose substantial burdens on health care professionals and can surprise other businesses not even providing health care services.

Everyone with sensitive personal information should develop and implement information management and security standards that fit their business needs.

We can help you learn, comply, and train your employees.

Here are just a few of the areas we cover:

  • New HIPAA penalties and tougher enforcement
  • Regulation of “business associates”
  • Breach notification requirements
  • Patient rights to restrict disclosure
  • Accounting for disclosures
  • Risk assessments and information security

Licensed professionals need continuing education and employees need information to succeed. We offer a variety of professional continuing education courses, employee training programs and online classes.

Compliance regulations are constantly changing. We provide the information and training you need to stay on top of regulatory changes.

HHS Regulations -Training §164.530(b)

Standard: training. A covered entity must train all members of its workforce on the policies and procedures with respect to protected health information required by this subpart and subpart D of this part, as necessary and appropriate for the members of the workforce to carry out their functions within the covered entity.

Implementation specifications: training.

A covered entity must provide training that meets the requirements of paragraph (b)(1) of this section, as follows:

To each member of the covered entity’s workforce by no later than the compliance date for the covered entity;

Thereafter, to each new member of the workforce within a reasonable period of time after the person joins the covered entity’s workforce; and

To each member of the covered entity’s workforce whose functions are affected by a material change in the policies or procedures required by this subpart or subpart D of this part, within a reasonable period of time after the material change becomes effective in accordance with paragraph (i) of this section.

A covered entity must document that the training as described in paragraph (b)(2)(i) of this section has been provided, as required by paragraph (j) of this section.