HIPAA Risk Analysis and MACRA/MIPS: What you need to know.

Did you know that having a HIPAA Security Risk Analysis accounts for half of the Merit-Based Incentive Payment System (MIPS) “Promoting Interoperability” category base score? *  

Did you know that your HIPAA Risk Analysis needs to be completed no later than December 31, 2018 in order to attest?

If you are concerned that your organization doesn’t have a HIPAA Security Risk Analysis, LayerCompliance can help.


The LayerCompliance platform provides an online, easy-to-follow checklist-driven HIPAA module that includes:

  • An annual assessment
  • HIPAA Security Risk Analysis (required for MACRA/MIPS reporting)
  • Tailored policies and procedure
  • Annual HIPAA staff training
  • On-going risk management

Documents, including your HIPAA security Risk Analysis, are stored in your digital compliance binder and can be easily accessed online.


At just $999 per location for UPAL members, you can easily purchase LayerCompliance by visiting us at  Plus, if you purchase the LayerCompliance platform, you get compliance modules for OSHA/Infection Control, CPR Management and Healthcare Billing policies in addition to HIPAA compliance.


Sign-up by November 31, 2018 and get an additional $100 off per location!



To learn more about the LayerCompliance platform, or to get started, visit our website at Or check out our two-minute product video at



The LayerCompliance Team



* In order to receive the 50% base score, you have to submit a “yes” for the security risk analysis measure, and at least a 1 in the numerator for the numerator/denominator of the remaining measures. For more specific information on MIPS requirements, please visit the CMS website at: