With the LayerCompliance platform, getting your risk analysis, tailored policies and procedures and annual compliance training is just a few clicks away.
*Actual number of clicks may vary.
Click to answer yes or no questions about current compliance practices in your office. Once you click submit, your documents – including tailored policies and procedures for HIPAA and OSHA/Infection Control – are generated and stored in your compliance binder.
Click on the LayerCompliance training platform to access unlimited, self-paced online modules and track your staff’s completion.
Click to login to the LayerCompliance dashboard every month to complete compliance tasks using the easy-to-follow checklist format.
No need for multiple binders. Easily access your policies, task lists and training for OSHA, HIPAA, CPR Management and Health Care Billing compliance programs from one dashboard.
Stop searching through pages of regulations to determine which ones apply to your organization. With straightforward yes or no questions, the LayerCompliance platform generates tailored policies and procedures that fit your compliance program needs based on your answers.
Have more than one location? Perform different services at each? Not a problem. With LayerCompliance, you can manage multiple clinic locations from one dashboard and keep everyone on task.
Can’t remember when a staff member’s CPR certification is set to expire? Worried that you have missed a compliance deadline? Through the LayerCompliance dashboard, users receive automatic notifications of important tasks that need to be completed.
No need to rely on paper checklists. LayerCompliance generates simple, easy-to-follow digital checklists, which allow you to track what has been completed and what is still due for each compliance program– all at your own pace.
"[We] chose [LayerCompliance] because of its discernible expertise in the field of HIPAA-HITECH compliance, the ease of use and user friendliness of its solution and demonstrated earnestness in working to meet our department’s needs."
‐ Public Health Agency
Having a HIPAA Security Risk Analysis accounts for half of the MIPS "Promoting Interoperability" category base score*.
Your HIPAA Risk Analysis needs to be completed no later than December 31 in order to attest.
* In order to receive the 50% base score, you have to submit a “yes” for the security risk analysis measure, and at least a 1 in the numerator for the numerator/denominator of the remaining measures. For more specific information on MIPS requirements, please visit the CMS website at: https://www.cms.gov/Medicare/Quality-Payment-Program/Resource-Library/2018-Promoting-Interoperability-Fact-Sheet.pdf
The Merit-based Incentive Payment System (or MIPS) is one of two tracks under the Quality Payment Program, which moves Medicare Part B providers to a performance-based payment system.
Under MIPS, there are four performance categories that affect your future Medicare payments. Each performance category is scored by itself and has a specific weight that is part of your MIPS Final Score. The MIPS payment is based on your Final Score.
The four performance categories and their scores are:
A security risk analysis is required for a base score under the “Promoting Interoperability” category. Clinicians must fulfill the requirements of a base score measure to earn any score in the Promoting Interoperability score.
Under MIPS, clinicians must “Conduct or review a security risk analysis in accordance with the requirements in 45 CFR 164.308(a)(1), including addressing the security (to include encryption) of ePHI data created or maintained by certified electronic health record technology (CEHRT) in accordance with requirements in 45 CFR 164.312(a)(2)(iv) and 45 CFR 164.306(d)(3), and implement security updates as necessary and correct identified security deficiencies as part of the MIPS eligible clinician’s risk management process.”
Just answer straightforward yes or no questions about your practice and the LayerCompliance platform will generate a HIPAA security risk analysis that identifies potential risks to electronic protected health information. The risk analysis is stored in your digital binder and available* online when you need it.
* All information must be entered into LayerCompliance before the HIPAA Risk Analysis is generated.