OCR Alert - phony postcard

  • 1.  OCR Alert - phony postcard

    Posted 08-06-2020 03:08 PM

    Alert: Postcard Disguised as Official OCR Communication

    August 6, 2020

    OCR has been made aware of postcards being sent to health care organizations disguised as official OCR communications, claiming to be notices of a mandatory HIPAA compliance risk assessment.  The postcards have a Washington, D.C. return address, and the sender uses the title "Secretary of Compliance, HIPAA Compliance Division." The postcard is addressed to the health care organization's HIPAA compliance officer and prompts recipients to visit a URL, call, or email to take immediate action on a HIPAA Risk Assessment.  The link directs individuals to a non-governmental website marketing consulting services.


    The postcard below is not from HHS/OCR.

     Phoney OCR Postcard


    HIPAA covered entities and business associates should alert their workforce members to this misleading communication.  This communication is from a private entity – it is NOT an HHS/OCR communication.  Covered entities and business associates can verify that a communication is from OCR by looking for the OCR address or email address on any communication that purports to be from OCR.  The addresses for OCR's HQ and Regional Offices are available on the OCR website at https://link.zixcentral.com/u/2e07fc79/ZtZRohTY6hG10VTShnsoMg?u=https%3A%2F%2Fwww.hhs.gov%2Focr%2Fabout-us%2Fcontact-us%2Findex.html, and all OCR email addresses will end in @hhs.gov.  If organizations have additional questions or concerns, please send an email to: OCRMail@hhs.gov.

    Suspected incidents of individuals posing as federal law enforcement should be reported to the Federal Bureau of Investigation.

    Carl Russell
    Compliance Analyst, CHPC
    Delta Dental of Idaho

    Anything I say is my sole opinion and not of my company.
    19th Annual CEI Virtual Conference

  • 2.  RE: OCR Alert - phony postcard

    Posted 08-06-2020 03:47 PM

    Thanks Carl! What will they come up with next?


    Best Regards,

    Scot Lovejoy   

    Scot Lovejoy RPh. CHC CHPC

    Chief Pharmacy Officer

    Compliance Officer

    Agadia_itself (625x184) (625x184) (100x29)

    9 Campus Drive, Suite 200

    Parisippany, N.J. 07054

    (O) 973-540-8400  x227

    (C) 973-570-3803

    (F) 973-540-8440

     PTO Aug 17th – 28th


    Confidentiality Notice:  This e-mail is intended only for the person(s) to whom it is addressed and may contain information that is confidential, proprietary, privileged or otherwise protected from disclosure.  If you are not an intended recipient, please (i) do not read, copy or use this communication, or disclose it to others, (ii) notify the sender immediately by replying to the message, and (iii) delete the e-mail from your system.  Thank you.

    No copyright infringement intended.



    19th Annual CEI Virtual Conference

  • 3.  RE: OCR Alert - phony postcard

    Posted 08-07-2020 09:33 AM
    ​It's legal, but it's tacky!

    Lisa Stallings
    Corporate Responsibility Officer
    Catholic Health Initiatives

    19th Annual CEI Virtual Conference

  • 4.  RE: OCR Alert - phony postcard

    Posted 08-07-2020 09:48 AM
    It reminds me of the mail one may get where across the front of the envelope in large letters and on the sheets inside the envelope you see:
    IRS Dept of Taxpayer Auditing and Enforcement

    ...then in small letters at the bottom of the envelope or at the footer of the sheets inside the envelope:

    "The IRS Dept of Taxpayer Auditing and Enforcement is a private, for profit business. Not affiliated with any department or agency of the the U.S. Government"

    -------------Frank "Snake Bite Leader" Ruelas--------------
    ► We don't fail unless we quit! ◄
    Bill Wong's Resource Folder: https://bit.ly/BillWong
    NEXT UP:
    Stay tuned...

    ░ Pass the Exam Group for 2020 ░
    Melissa Singleton - Jan - CHPC
    Julie Clutter - Jan - CHPC
    Tanisha Grant - Feb - CHC
    Lisa Bibby - Jan - CHPC
    Kelly Puida - Mar - CHPC
    Christina Serrano - Mar - CHC
    Rachel Anderson - May - CHC
    Melissa Alexander - June - CHC
    Theresa Veazey - June - CHC
    Barbara Zubeck - June - CHPC
    Patricia Radatz - June - CHC
    Anthony Fleming - July - CHC
    Laura Chaney - July - CHC
    James Maruyama - July - CHC
    Namrita Notani - July - CHC

    19th Annual CEI Virtual Conference