Publication

2019 HIPAA Compliance Survey Report

Richard P. Kusserow | October 2019

For the first time, a national HIPAA compliance survey conducted by SAI Global, in collaboration with Strategic Management Services, LLC, explored the current state of HIPAA compliance. Our goal was to better understand the nature and level of commitment that healthcare organizations have made to HIPAA compliance in 2019.

The report covers a wide range of topics such as:

  • HIPAA program structure, responsibility and oversight
  • Program operations
  • Business Associate Agreements (BAA) management
  • Program assessment and priorities
  • Investigations, breaches, and disciplinary action and interactions with enforcement

The national survey was conducted among 352 respondents located in different states within the United States and representing various provider types. Over half of respondents reported being associated with a hospital or health system, with 9% working with a physician/group practice and 7% connected with a clinic or ambulatory surgery center. The remaining respondents were dispersed over a variety of health care provider types, health plans, and business associates (i.e., device manufacturer, pharmaceutical company, etc.). The range of entities represented by respondents evidences that HIPAA compliance is an issue that cuts equally across the entire healthcare spectrum.

Note: Figures within the survey have been rounded and may or may not equal 100% due to weighting, rounding, and inclusion of “other” responses. Alternatively, in the case of multiple response questions, percentages may add to more than 100%.

Strategic Management compliance consultants have over 40 years of experience providing research, analysis, and program support for privacy and security rule compliance. Call us at (703) 683-9600 or contact us online for a tailored assessment of your organization’s particular needs.

About the Author

Richard P. Kusserow established Strategic Management Services, LLC to assist health care organizations develop, implement and assess compliance programs. Mr. Kusserow has worked with health care organizations to conduct compliance program effectiveness evaluations, deliver advisory services, develop policies and procedures and deliver compliance and internal investigations training.