< >
  • Recent Health IT Security Articles

    • HIPAA Privacy Rule: Notice of Privacy Practices requirements

      The Department of Health and Human Services (HHS) has proven how important it considers the Notices of Privacy Practices (NPPs) as part of the HIPAA Privacy Rule by both offering sample NPPs last year and recently introducing its NPP challenge winners....

    • Appeals court: Sutter record exposure didn't violate CMIA

      The Third District Court of Appeal of California again ruled in favor of Sutter Medical Foundation on Monday, as the court maintained that Sutter had not violated the Confidentiality of Medical Information Act (CMIA). This was the second appellate d...

    • Johns Hopkins reaches preliminary privacy breach agreement

      More than a year after patients filed a potential class action lawsuit against Johns Hopkins Medicine following a privacy breach, the hospital has reached a preliminary $190 million settlement. For background, former Johns Hopkins gynecologist Nikit...

    • Developing a health IT security program with new technology

      Jim Drewett, Lahey Health IT Security Director has been at the organization for 24 years, back when PCs were first becoming popular, and has also watched the healthcare industry evolve from a risk management standpoint. Drewett has served in a vari...

    • Amazon: HIPAA, BA scope should be narrowed for research

      Amazon is the latest organization to publicly refer to HIPAA as a barrier to business initiatives. Paul Misener, Amazon’s vice president for global public policy, recently said that HIPAA impedes research in front of a House Energy and Commerce subco...

    • VA accused of using HIPAA to block waiting list disclosures

      Are there instances where federal privacy laws are misused and actually end up being detrimental to the patient? According to a recent Washington Post report, some believe the Department of Veterans Affairs (VA) is using HIPAA as a mechanism to preven...

    • Reviewing the qualities of a healthcare privacy officer

      A common mistake in healthcare is to lump privacy and security as one unit, as each require their own areas of expertise. Similar to IT security professionals, there are some basic qualities that a privacy officer should have to best serve their rol...

    • Mass. eHealth adoption growing, but privacy concerns remain

      The 2014 Massachusetts eHealth Institute (MeHI) Provider and Consumer Health IT Research Study provided a helpful look into how Massachusetts healthcare providers and consumers perceive healthcare IT adoption. The study showed that consumers and p...

    • Do third parties regularly access consumer health data?

      Consumer-generated healthcare data privacy doesn't appear to have caused too many ripples in the general public's consciousness to this point. But a recent California Healthcare Foundation report looks at how personal health information is tracked and ...

    • Rady Children's Hospital boosts data security training

      Rady Children's Hospital of San Diego suffered a human error-based data breach in June that affected 14,121 patients and the hospital's administrators have since reported some steps taken to prevent a future occurrence. During a San Diego City Counc...

  • News Archives

    no, thanks

    Sign up for our free HealthITSecurity.com newsletter and stay up to date with tips and advice on:

    • HIPAA
    • BYOD
    • Data Security
    • VDI
    • Cloud Security

    Our privacy policy