Assessment 4 Instructions: Recommendations and Action Plans
Prepare a final risk report (5-7 pages) that identifies privacy and security-related risks from throughout the quarter.
Include evidence-based recommendations; action plans; and best practices, policies, and procedures to support the
recommendations and action plans.
Throughout this course you have examined health care’s legal landscape, considering security and privacy
safeguards set forth by the Health Insurance Portability and Accountability Act (HIPAA). The HIPAA standards
protect the security and privacy of health information. Health care organizations are responsible to ensure proper
controls are in place to make data available, but also to protect patients. Privacy and security violations must be
identified; preventive policies and procedures need to be put in place to mitigate risks related to those violations.
Health care organizations often use risk reports to identify, assess, and monitor risks throughout the organization.
In this final assessment, the risk management director has asked you compile a report based on all of your findings
throughout the quarter. The director has an executive meeting with various stakeholders and would like to discuss
recent risk issues identified throughout the hospital. In addition to identifying the risks, you will also make evidence based recommendations and develop action items for identified privacy and security risks.
Demonstration of Proficiency
By successfully completing this assessment, you will demonstrate your proficiency in the course competencies
through the following assessment scoring guide criteria:
Competency 3: Analyze the relationship between privacy and security in health care.
Create evidence-based recommendations to avoid privacy and security violations identified in audit
results.
Competency 4: Analyze legal and ethical implications related to Health Information Management.
Develop action plans to accompany recommendations.
Describe best practices, policies, and procedures that directly support the recommendations and
action plans.
Summarize the use of HIPAA standards and legal and ethical implications relating to the
recommendations and action plans.
Competency 5: Communicate effectively in a professional and ethical manner.
Create a clear, well-organized, professional final risk report that is generally free of errors in grammar,
punctuation, and spelling.
Follow APA style and formatting guidelines for citations and references.
Preparation
To successfully prepare to complete this final course assessment:
Review these three Vila Health media pieces:
Vila Health: Identifying Risks.
Vila Health: Privacy.