Blogs - RadioMD Latest Blogs

Carol Amick

Carol Amick

Carol Amick is an experienced healthcare compliance professional with over 20 years of experience in healthcare. After starting her career at HCA she moved on to become a compliance consultant for a “Big 4” accounting firm and has since served as the Internal Audit Director, Compliance Director and Privacy Officer for several healthcare providers. Carol has worked with post-acute care, outpatient, and acute care providers to develop and implement effective compliance programs. During her time as Compliance and Privacy Director Carol has led numerous investigations into PHI breaches and responded to outside investigations by the OCR, OIG and other regulatory agencies.

Carol has extensive experience in helping organizations ensure compliance with the complex healthcare regulations and with responding to regulatory audits and investigations. She currently serves as the Manager of Health Care Services at CompliancePoint.
Risk and Implementation Lessons Learned From a HIPAA Audit

According to the United States Department of Health and Human Services, approximately 70% of organizations are not HIPAA Compliant. 

The Health Insurance Portability and Accountability Act, known as HIPAA, mandates industry-wide standards for health care information and electronic billing, and requires protection as well as confidential handling of protected health information. According to HIPAA rules, any company that deals with protected information must have a physical network and process security measures that are followed to ensure compliance. 

It may be safe to say that many organizations are still perplexed about HIPAA audits, enforcements and compliance. As a result, the number of organizations that fail to meet compliance each year remain the majority. To begin understanding compliance, healthcare organizations would be wise to consider three key recommendations.