Group health plan sponsors have a legal obligation under HIPAA to protect personal health information. Failing to assure compliance with this important law can have unintended consequences including security breaches, OCR investigations, and the erosion of employee trust.
This article, published in Benefits Magazine and written by Laurie DuChateau, Buck’s U.S. Compliance Consulting Practice Leader, discusses areas of common struggle for plan sponsors while touching on best practices and lessons learned from HIPAA compliance reviews.