How to Pass a HIPAA Desk Audit

Duration 60 Mins
Level Intermediate
Webinar ID IQW19J1031

Topics covered in this seminar include:

  • What events lead to an OCR investigation
  • Examples of fines and penalties
  • What is “Willful Neglect”
  • HIPAA Desk Audit vs. a full HIPAA Audit
  • How your organization will be informed of an impending audit
  • Documents that will be requested
  • Notice of Privacy Practice content requirements
  • Providing the Notice of Privacy Practice
  • Complying with a patient’s Right to Access
  • Breach Notification Timelines and Requirements
  • Security Risk Analysis and Risk Management Requirements
  • HIPAA Desk Audit reporting processes
  • Protecting your business partners

Overview of the webinar

This is an actionable class that gives specific guidance on how to prepare for, and pass, an Office for Civil Rights (OCR) Desk Audit.

Using the materials from this class you will be able to perform a gap analysis of your current readiness for a HIPAA Desk Audit and lay the groundwork for passing an in-depth, on-site audit. Attending this class can potentially save your organization hundreds of thousands of dollars in federal fines.

Who should attend?

  • Physician Owners
  • Compliance Officers
  • HIPAA Privacy Officer
  • HIPAA Security Officer
  • Practice Managers
  • Information Systems Manager
  • Chief Information Officer
  • General Counsel/lawyer
  • Office Manager
  • Medical Billing Companies
  • Any Business Associates that accesses protected health information
  • IT companies
  • Practice Management Consultants

Why should you attend?

After completing this seminar, you will gain a better understanding of:

  • The four ways you can get audited
  • The price of neglecting HIPAA compliance
  • Documents requested during a desk audit
  • Checklist for passing an OCR desk audit

Faculty - Mr. Mark Norby

Mark Norby brings more than 18 years of combined HIPAA and healthcare IT experience from positions within the private sector and as a government contractor. As a Certified HIPAA Professional (CHP) and Certified Information Systems Auditor (CISA), Mr.Norby has helped hundreds of hospitals and clinics throughout the U.S. with HIPAA compliance and IT improvements. His clients have ranged in size from 200+ bed hospitals to single provider practices. 


As the Chief Information Officer of the largest outpatient clinic in Wyoming, Mr. Norby oversaw the selection and implementation of numerous IT initiatives including electronic health records, practice management systems, laboratory information software and pharmacy management systems. Mr. Norby currently provides HIPAA consulting and training services for HealthInsight, a nonprofit, community-based health care consulting organization dedicated to improving health and health care. 

For group or any booking support, contact: