OCR enforcement activity is up. OCR completed proactive audits and reported significant gaps in compliance with HIPAA mandates including risk analysis and risk management. OCR also implemented a new structure for Civil Monetary Penalties in 2019. Hear how covered entities are responding to OCR scrutiny by updating security risk registers, business associate inventories, breach notification practices, and more. Specific examples will be provided for sticking points often uncovered in OCR audits.