Healthcare organizations face increasingly complex privacy and security issues as they cope with new technology, but many organizations are still struggling with the basics of establishing a compliance program.
A natural place to begin is a code of conduct, and policies and procedures, says Frank Ruelas, MBA, principal of HIPAA College in Casa Grande, Ariz.
Compliance officers in small organizations may be responsible for compliance with all regulations. In larger organizations, one or more individuals may be specifically responsible for HIPAA compliance. Regardless of organization structure, basic principles apply.
Read more in the July issue of Briefings on HIPAA .