January 29, 2015
              By:  Erica Youngerman, Esq. 

It’s time to report all breaches affecting fewer than 500 individuals to the U.S. Department of Health & Human Services.This annual deadline is within 60 days of the end of the calendar year in which the breaches were discovered.  Ensure you give yourself enough time to carefully compile the report and drafts responses to questions including what actions were taken by your practice in response to the breach.  Do not wait until the last day!
The link to electronically submit a report (one per breach) is https://ocrnotifications.hhs.gov/.  If necessary, you can later submit a follow up with newly found information regarding a prior report by clicking the link and selecting “Addendum to Previous Report.”
For more information regarding the annual report, please see OCR’S website available here (http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/brinstruction.html)
Not sure if something constitutes a breach? Consult your Breach Notification Policy
(https://www.kirschenbaumesq.com/page/practice-compliance) and/or contact our office asap to discuss.  
Have questions or need assistance? Contact Jennifer at 516 747 6700 x. 302,
Jennifer@Kirschenbaumesq.com or Erica at 516 747 6700 x. 308,

I-STOP Implementation - Common Q&As

Looking for HIPAA and compliance forms?  
Click here to visit 
our website.

Have a question or comment for Jennifer?
Contact Jennifer at Jennifer@Kirschenbaumesq.com or  at (516) 747-6700 x. 302.