Will you be at the 22nd HCCA Annual Compliance Institute April 15-17, 2018 in Las Vegas? With over 150 sessions in 3 days, the decision on which sessions to attend can be overwhelming so you need a game plan. We have scoured the conference agenda and have come up with 10 sessions that we believe you must absolutely attend.
Sessions to attend on Monday, April 16
Office of Inspector General (OIG) Update (9:00 am)
Make attendance at the OIG’s update session a priority. Begin the conference by going to hear Daniel Levinson, Inspector General, Department of Health and Human Services provide an update from the OIG. Listen to the latest happenings at the OIG and how they are handling the fight against healthcare fraud, waste and abuse, and the resulting fines from these. Learn more about exclusions and sanctions, risks posed by vendors and how you can manage these risks. As you know, the OIG also develops free educational resources and resource guides to assist the healthcare sector with their compliance programs. At last year’s conference Daniel Levinson announced the release of a resource guide developed by the OIG, to measure the effectiveness of compliance programs. You never know what valuable information you’ll garner from this session so be sure to attend!
Healthcare Fraud Enforcement from the Trenches: The Top Government Enforcement Priorities in the Healthcare Space (11:00 am)
One of the presenters of this session will be Assistant US Attorney, Todd Swanson, from the US Attorney’s Office. Along with his partner, Todd will be speaking about recent updates in the False Claims Act case law and litigation; the top government enforcement trends affecting healthcare; and tips on compliance that healthcare providers can use to help them remain compliant with regulations and prevent costly and disruptive government investigations. This is a session you’ll want to attend as no one wants to be investigated and fined by the government.
HIPAA Enforcement/Update (11:00 am)
Understanding HIPAA and remaining compliant can be a challenge as is evident from the frequency of reports of healthcare organizations paying fines for breaches to HIPAA. That is why you need to attend this session to hear Iliana Peters from the Office of Civil Rights (OCR) speak on current trends in HIPAA enforcement, including lessons learned from settlement agreement cases, and also provide information on recent important guidance from the OCR. Hopefully you can pick up some tips from other people’s mistakes so you won’t fall into the trap of inadvertently breaching HIPAA.
Managing Organizational Risk: The Mighty Triad of Compliance, Internal Audit, and Risk Management (11:00 am – 12:00 pm)
Risk management in healthcare is huge and can become unwieldy if you do not approach it properly, leaving you open to breaches and fines. Some organizations are still carrying out risk management and compliance in silos which is not ideal. Attend this session to get valuable information on how to ‘marry’ audit, compliance and risk management, moving from silos to integrated risk management; how to define the roles and responsibilities for each; and discuss the many audit tools that are available to help you manage risk. Getting a firm grip on risk management and integrating with audit and compliance can be a huge advantage to your organization.
Maybe You Can’t go to Europe, but that does not mean it won’t come to you: The GDPR Implications for US Healthcare Providers (1:30 pm – 2:30 pm)
If you are in healthcare compliance then you should have heard about the European Union General Data Protection Regulation (EU GDPR) which becomes enforceable on May 25, 2018. After this date, you can be fined for non-compliance. Although this regulation is in the EU, US healthcare organizations are not exempt as with the interconnectivity of healthcare, these data privacy laws will have a reach beyond Europe. This regulation is new, and many persons may not fully understand all the implications, so this session is a must. Go to this session and learn about the regulations and how they apply to health care providers in the US; the similarities and differences between HIPAA and GDPR; and tips on preparing for the GDPR so you can be in compliance by the May 25, 2018 effective date. Now is a good time to start looking at your practices and whether they are compliant with GDPR.
The Revised Substance Use Disorder Privacy Regulations of 42 CFR Part 2 (3:00 – 4:00 pm)
The opioid crisis is one of the key issues currently affecting healthcare in the US with healthcare providers fighting to find a way to effectively handle the situation. Federal regulations 42 CFR Part 2 which governs the confidentiality of records of patients seeking treatment for substance use disorders, has been updated for the first time in 30 years. This session will provide you with an overview of Part 2; discuss revised patient consent requirements and other significant changes from the final rule. Some of the practical compliance challenges being encountered by Part 2 providers will also be explored.
Sessions to attend on Tuesday, April 17
General Session: Update from CMS (8:40 am – 9:00 am)
Kimberly Brandt, Principal Deputy Administrator for Operations, CMS, will update the conference on all that has been happening at the CMS. Things are constantly changing at the CMS – from new Medicare cards to new payment models, special enrollment periods, and data submission systems. You definitely need to attend this session to keep abreast of all that’s going on and ensure that you keep on top of all that is required of you from the CMS and prevent endangering your Medicare and Medicaid payments.
Telemedicine and Digital Health: Compliance Hot Topics for 2018 and Beyond (11:00 – 12:00 pm)
Telemedicine and digital health are becoming increasingly prevalent in healthcare and brings with them various issues including in compliance. This session will provide you with valuable information on 2018 hot topics in telehealth law and compliance and what you as compliance professionals can do to keep up with an area that is constantly changing. New telehealth billing rules, multi-state provider enrollment, e-prescribing, e-consults, texting patients, and key telemedicine fraud and abuse rules, are all areas that will be discussed. You will also receive a 2018 toolkit containing checklists, charts, and resources to help you on your way.
Unforeseen Vulnerabilities in Healthcare Mergers and Acquisitions (1:00 – 2:00 pm)
Healthcare mergers and acquisitions are the rule of the day as organizations struggle to maintain profitability and improve upon the services they provide. However, mergers and acquisitions have the potential to wreak havoc on your compliance, IT, and risk management efforts as you try to blend different systems, such as your policy management system, into one. Attend this session to gain useful insight on how to overcome these hurdles. You will be provided with steps that your organization can take before and after an acquisition, identify and address security and compliance risks after a merger, formulate action plans for security plan implementation, and establish a framework for pre-merger due diligence steps.
Sessions to attend on Wednesday, April 18
Ensuring your Vendors Comply with your Compliance Requirements/Plan (10:00 – 11:45 am)
Vendor and third-party compliance is a key area in healthcare compliance that some organizations have yet to get a good handle on. Healthcare organizations are held responsible for the actions of their vendors and third-party associates especially with regards to how they handle patients’ information. Breaches by third-party associates and vendors have left healthcare organizations with massive fines from the OIG and OCR. Attend this session to learn some key components of a compliance program with respect to vendors and third-party associates, review recent fines and penalties, and garner tips that you can use to enhance your existing compliance program.
So, that’s the 10 sessions we believe you must attend at this year’s HCCA Compliance Institute. Some will be occurring concurrently so split them among yourselves if you are a part of a group from the same organization. If you are on your own, then choose the one that most applies to the needs of your organization. Whatever you do, have fun!