Paul Kim

Paul Kim


Contact  |  View Bio  |  RSS

Latest Publications


WEBINAR: Breach, Enforcement and Beyond: HIPAA Breach Notification Analysis and OCR Enforcement Activities

The Office for Civil Rights of the US Department of Health and Human Services revised the breach notification regulations last year in order to make the analysis of whether a breach occurred more objective. In addition, OCR...more

9/18/2014 - Breach Notification Rule Data Breach Data Protection Enforcement Enforcement Actions HHS HIPAA OCR

HIPAA Security Risk Analyses

As noted in Paul Kim and Hannah Whitman Clark's article regarding HIPAA Security Risk Analyses, CEs and BAs are required to review and update their risk assessments only under certain conditions after completing their initial...more

4/1/2014 - Data Protection HIPAA PHI Risk Assessment

Security Rule Compliance: The Importance of Performing Regular Risk Analyses

It is likely that you are familiar with the HIPAA Security Rule’s mandate that covered entities and business associates document the decision making process that led to the selection of their means to achieve security for...more

4/1/2014 - Data Breach Data Protection ERISA PHI Risk Assessment

A Calm Before the Storm: Updates on CMS Audit Activity

In February 2014, CMS made two announcements that affect future Medicare audits. First, CMS instructed RACs to stop issuing post-payment additional documentation requests (ADRs) after February 21 and instructed MACs to stop...more

3/7/2014 - Audits CMS Document Requests Healthcare MACs Medicare RACs

RAC Relief (Sort Of)

CMS announced that it would reduce the number of additional documentation requests (ADRs) available to its Recovery Audit Contractors (RACs). ...more

5/21/2013 - CMS Recovery Audit Contractor Required Documentation

5 Results
View per page
Page: of 1