The document discusses conducting HIPAA security audits and sanctions for non-compliance. It notes that while oversight was initially limited, the government has now begun conducting audits and enforcing sanctions. It also discusses how the American Recovery and Reinvestment Act will impact HIPAA security and privacy practices through increased funding for health IT and changes to HIPAA laws. The document promotes a HIPAA risk analysis and educational seminar to help organizations assess risks and ensure compliance.