Healthcare Information Security

HIPAA Compliance

HIPAA Mandates Discussed, Comments Sought in EHNAC Program

by Elizabeth Snell

EHNAC released a draft of its accreditation program, including discussions on HIPAA mandates. The Electronic Healthcare Network Accreditation Commission (EHNAC) released the first draft of its latest accreditation program this week. The organization...

Should HIPAA Compliance Let Researchers Access Patients’ PHI?

by Elizabeth Snell

AMIA recommended that HIPAA compliance should allow researchers to gain access to patients’ PHI without their permission. Allowing health researchers to access patients’ PHI without their permission could be beneficial, according to the...

Top Tips for Keeping Patients’ Healthcare Data Protected

by Stephen Treglia

Instinctively, we think of our financial data as the most likely target of a cyber attack, while healthcare data is increasingly becoming more valuable. Healthcare data breaches have demonstrated a real appetite among cybercriminals for protected...

PHI Exposure Case of 1,500 Patients Settled

by Elizabeth Snell

Approximately 1,500 patients were notified of PHI exposure last May at a Missouri facility. Last May, more than 1,500 women in Missouri had their protected health information (PHI) compromised after their personal records blew out of a dumpster...

FTC Settles Personal Health Data Case

by Elizabeth Snell

The FTC recently settled a case over how an organization gathered patients’ personal health data. Healthcare providers, billing companies and other organizations that handle personal health data need to remain clear with patients exactly...

Are Medical Practices Prepared for OCR HIPAA Audits?

by Stephanie Reardon

The Office for Civil Rights of the Department of Health and Human Services will be conducting random HIPAA audits. Although a timeline has not yet been set, the Office for Civil Rights (OCR) of the Department of Health and Human Services (HHS)...

Six Ways to Stay HIPAA Compliant and Keep PHI Safe

by Jay Atkinson

As your organization’s CIO, do you know whether your business is HIPAA compliant or if it has access to protected health information (PHI)? If you don’t know the answers, it’s critical for you to find out.  Non-compliance...

Why HIPAA Administrative Safeguards Are Crucial

by Elizabeth Snell

HIPAA administrative safeguards are designed to manage the selection, development, implementation, and maintenance of security measures. These measures keep electronic protected health information (ePHI) safe and help manage a...

Stolen PHI Leads to Medical Identity Theft in Detroit

by Elizabeth Snell

Patients’ PHI was stolen from two Detroit-area hospitals. The thieves allegedly used the information to file false tax returns. Approximately 1,400 people had their protected health information (PHI) stolen from two metro Detroit hospitals,...

Breaking Down OCR’s HIPAA Bulletin

by Elizabeth Snell

Last week, the Department for Health and Human Services (HHS), Office for Civil Rights (OCR) released a bulletin outlining how healthcare organizations can abide by HIPAA in various emergency situations – including the current...

Walgreens HIPAA Violation Upheld in Indiana Court

by Elizabeth Snell

An Indiana Court of Appeals upheld the ruling that Walgreens can be held liable for its employee being part of HIPAA violations. A healthcare provider was still found to be liable for HIPAA violations committed by an employee, according to an...

HIPAA Physical Safeguards: A Basic Review

by Elizabeth Snell

Healthcare IT security administrators can also have a difficult time when it comes to ensuring that HIPAA physical safeguards are always followed. As technology continues to evolve, so does the healthcare industry. Laptops, tablets and cell phones...

How MyHealthDirect Achieved HITRUST Certification

by Elizabeth Snell

Healthcare organizations of all sizes work diligently to ensure that they remain HIPAA-compliant while also providing high-quality patient care. There are security, privacy, and regulatory guidelines that must be adhered to, and implemented in...

Will HIPAA Compliance be Affected by Ebola?

by Elizabeth Snell

Healthcare organizations need to ensure they remain HIPAA compliant while still keeping the public properly informed about the Ebola virus. The Ebola virus has been making national headlines for months, and healthcare organizations have been...

HIPAA Technical Safeguards: A Basic Review

by Elizabeth Snell

It’s critical to review the requirements of HIPAA technical safeguards to ensure that your healthcare organization is compliant and able to keep PHI safe. While no healthcare organization can guarantee that a data breach will never take...

Patient Privacy, HIPAA Violation Case Argued in Calif. Court

by Elizabeth Snell

A California medical center has gone to court over accusations that it violated patient privacy by releasing a patient’s private medical information. Patient privacy rights and HIPAA compliance are taking center stage in a California court,...

HIPAA Compliance Will Be Reviewed in OIG 2015 Work Plan

by Elizabeth Snell

The OIG released its 2015 work plan, which includes a review of hospitals’ contingency planning and if they are HIPAA compliant. The US Department of Health and Human Services Office of Inspector General (OIG) will bring a greater...

Doctors Can Be Sued for HIPAA Negligence, Says Conn. Court

by Elizabeth Snell

The state Supreme Court ruled that physicians can be sued for HIPAA negligence if it violates certain regulations. Patients can sue a medical office for HIPAA negligence if it violates regulations that dictate how healthcare organizations must...

Five HIPAA Omnibus Compliance Myths

by Elizabeth Snell

The HIPAA Omnibus Rule was significant for the healthcare industry. Many of the rule’s stipulations drastically affected how covered entities, business associates (BAs) and subcontractors handle risk management and breach notification....

HITRUST Common Security Framework: Tips for Healthcare Facilities

by Elizabeth Snell

The HITRUST Common Security Framework (CSF) is an important tool that healthcare organizations of all sizes can use in their approach to regulatory compliance and risk management. But what exactly are the basics of the CSF program, and what can...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks