Healthcare Information Security

HIPAA Compliance

What Does Increased Patient Access Mean for HIPAA Compliance?

July 21, 2016 - More individuals than ever before now have electronic access to their own health information, according to a recent report from the American Hospital Association (AHA). However, organizations are required to offer patient access as part of their HIPAA compliance measures. With increased electronic access, covered entities must ensure that they are still adhering to all aspects of the HIPAA...


Articles

Desk Audits Begin for OCR Phase Two HIPAA Audits

by Elizabeth Snell

The Office for Civil Rights (OCR) officially launched phase two of its HIPAA audit program earlier this week, sending out notification letters to selected covered entities. The letters were sent out on July 11, according to an OCR email, with...

Ensuring HIPAA Compliance Before a Potential HIPAA Audit

by Clyde Bennett of Aldridge Health

Businesses and healthcare providers are facing increasing pressure to meet and maintain HIPAA compliance standards. The Office for Civil Rights (OCR) announced it will be performing a new round of random audits throughout 2016. Before 2016, 98...

Are Insurance Companies Liable for Possible HIPAA Violations?

by Elizabeth Snell

An appellate court recently ruled that an insurance company was required to defend a hospital in a class-action complaint that the hospital in question was responsible for potential HIPAA violations. The Travelers Indemnity Company of America...

OCR HIPAA Settlements Highlight PHI Disclosure, Compliance

by Elizabeth Snell

Understanding the proper safeguards when it comes to HIPAA compliance, following proper PHI disclosure methods, and implementing comprehensive business associate agreements are all key areas to keeping data secure, according to the 2016 OCR HIPAA...

HIPAA Minimum Necessary Standard Discussed in Hearing

by Elizabeth Snell

The National Committee on Vital and Health Statistics’ (NCVHS) subcommittee on privacy, confidentiality, and security held a hearing last week to help the Department of Health and Human Services (HHS) develop better guidance on the HIPAA...

How Do HIPAA Rules, Patient Privacy Apply in Emergencies?

by Elizabeth Snell

No healthcare organization wants to compromise patient privacy, and HIPAA rules were designed to ensure that this does not occur.   Covered entities of all sizes should understand how the HIPAA Privacy Rule applies in various situations....

Patients Allege Genetics Company Violated HIPAA Regulations

by Jacqueline Belliveau

Four patients have alleged that a genetic testing company violated HIPAA regulations after it initially refused to provide them with their complete genetic test results, reported an official press release from the American Civil Liberties Union,...

Is Patient Privacy Violated with New Wellness Program Rules?

by Jacqueline Belliveau

The recent revisions to the Americans with Disabilities Act (ADA) and the Genetic Information Nondiscrimination Act (GINA) violate patient privacy regulations, announced the American Society of Human Genetics (ASHG) in an official press release....

Earlier HIPAA Audits Help Healthcare Data Breach Prevention

by Elizabeth Snell

Utilizing better communication, implementing a universal HIPAA audit certification system, and embracing cyber insurance are just some of the recommendations for better healthcare data breach prevention recently put forth by the Brookings Institution....

Maintaining Healthcare Security Compliance in the Cloud

by Bill Kleyman

The evolution of the cloud has seen many healthcare organizations evolve from private, to public, and now to hybrid cloud platforms. In reality, almost every cloud environment within a pubic cloud has some sort of connection back to the central...

Understanding the Gray Areas in HIPAA Compliance

by Gene Fry of Scrypt

Several weeks have passed since the HHS Office for Civil Rights (OCR) announced the launch of phase two of its HIPAA audit program. No surprises, then, that HIPAA compliance is a topic that’s receiving a lot of attention right now....

OCR HIPAA Settlement Costs New York Hospital $2.2M

by Jacqueline Belliveau

A recent Office of Civil Rights (OCR) HIPAA settlement agreement states a New York-based hospital must pay $2.2 million after it allowed unauthorized filming of patients, according a Department of Health and Human Services (HHS) press release....

Orthopedic Provider Agrees to $750,000 OCR HIPAA Settlement

by Jacqueline Belliveau

The Raleigh Orthopaedic Clinic, P.A. of North Carolina has agreed to pay approximately $750,000 in OCR HIPAA settlement fines after an alleged healthcare data breach in 2013 involving a business associate, reported the Department of Health and...

Why It’s Important to Define Business Associate Agreements

by Sara Heath

In the healthcare industry, there is often so much that needs to be accomplished that one single hospital or clinic cannot do it alone, which is why they often enlist the help of business associates. As a way to protect any sensitive health information...

AHA Calls for Revisions in Healthcare Data Privacy Rule

by Jacqueline Belliveau

Federal regulation 42 CRF Part 2 (Part 2), a law that governs the healthcare data privacy of behavioral health information, should better align with HIPAA regulations to boost care coordination and health information exchange, according to a...

HIPAA Compliance Knowledge Growing Amongst Healthcare Pros

by Sara Heath

Healthcare organizations are doing more to remain HIPAA compliant compared to two years ago, says NueMD’s 2016 HIPAA Survey Update. The survey looked at HIPAA compliance trends amongst 927 healthcare professionals as a follow-up to a similar...

$1.5M HIPAA Settlement Fine for North Memorial Health Care

by Sara Heath

North Memorial Health Care of Minnesota will pay approximately $1.5 million in HIPAA settlement fines after it failed to identify its business associates, the Department of Health and Human Services (HHS) reports. Healthcare business associates...

HHS Reviews HIPAA Regulations for Workplace Wellness Programs

by Jacqueline Belliveau

A recent Department of Health and Human Services (HHS) blog post by Jocelyn Samuels, the Director of the Office for Civil Rights, discusses how HIPAA regulations apply to wellness programs that are part of an employee-sponsored group health plan....

Using a ‘Layered’ Approach for Health Data Security

by Elizabeth Snell

As technology has continued to evolve, healthcare data security has also needed to change in order to keep pace and keep sensitive information secured. That is why Illinois-based Riverside Healthcare has adopted security in layers, ensuring that...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks