Healthcare Information Security

HIPAA Compliance

HIMSS14 session preview: Meaningful use risk assessments

by Nicole Freeman

As healthcare data breaches continue to occur, providers are often reminded that staff training and encryption are key to securing patients’ protected health information (PHI). These are not the only processes necessary to safeguard information,...

Vendors to showcase secure solutions at HIMSS14

by Nicole Freeman

As HIMSS14 in Orlando gets closer, vendors are announcing their participation and product showcases. Patient data security continues to be a focal point in the healthcare industry, and companies are eager to share their HIPAA-compliant offerings....

ONC, OCR publicize HIPAA Digital Privacy Notice Challenge

by Patrick Ouellette

After providing four approved notice of privacy practices (NPP) templates in September, the Office of the National Coordinator for Health Information Technology (ONC) and the Office for Civil Rights (OCR) are focusing on digital NPPs and recently...

HIPAA requires providers using Skype to have BAAs

by Nicole Freeman

As expanding technology gives doctors new ways to contact patients and share their information HIPAA compliance questions continually pop up. Do the products being used protect patient data? Are additional safeguards required to comply with HIPAA?...

Healthcare attorney highlights HIPAA Omnibus changes

by Patrick Ouellette‘s recent webcast, “HIPAA Omnibus Rule compliance tips and best practices“, provided a variety of takeaways from presenter and Dunkiel Saunders healthcare attorney Eileen Elliott. One of the biggest developments...

HHS amends CLIA regulations to allow direct patient access

by Patrick Ouellette

After being delayed back in September, the Department of Health and Human Services (HHS) has released amendments in the Federal Register to the Clinical Laboratory Improvement Amendments of 1988 (CLIA) regulations to give patients direct access...

Valley Hospital uses remote IT support to augment security

by Patrick Ouellette

In an ideal world, healthcare IT users would be able to walk down the hall and discuss any sort of clinical, technical or compliance issues with their organization’s on-site staff. But because many big healthcare networks span across many...

Register now for Feb. 5 HIPAA Omnibus Rule webcast

by Patrick Ouellette will be holding a webcast, “HIPAA Omnibus Rule compliance tips and best practices“, on February 5 at 1 p.m. EST to help further clarify changes to the HIPAA privacy and security rules that went into effect in...

Cybersecurity pro Nicholas Percoco joins KPMG LLP

by Patrick Ouellette

Cybersecurity pro Nicholas Percoco has been named Director of KPMG LLP’s Information Protection group, according to Dark Reading. Percoco will bring great experience with research on mobile devices and data breach statistics to KPMG. KPMG...

Redspin service combines HIPAA and PCI DSS analyses

by Nicole Freeman

Redspin, Inc., an IT security assessments and testing provider, has announced a new service that combines HIPAA Security Risk and PCI DSS 3.0 Gap Analyses. Reports are created through single-process analysis of data collection and policy review,...

MedAllies receives accreditation from EHNAC, DirectTrust

by Nicole Freeman

MedAllies, a provider of Direct services, has received full accreditation from Direct Trusted Agent Accreditation Program (DTAAP) for Certificate Authority (CA), Registration Authority (RA), and Health Information Service Provider (HISP) from and...

Webinar offers tips on HIPAA compliance, breach management

by Nicole Freeman

Yesterday, SDG and Cyber Data-Risk hosted a webinar on changes to the definition of a data breach, and how HIPAA-covered entities and their associates can prevent breaches and their subsequent penalties. While federal regulation requires health...

Coalfire launches HIPPAcentral compliance platform

by Nicole Freeman

Coalfire has announced the launch of its compliance exchange, HIPAAcentral, which allows covered entities, business associates (BAs), and subcontractors to maintain, exchange, and manage healthcare compliance data. HIPAAcentral offers risk management...

Will OCR leadership changes affect healthcare organizations?

by Patrick Ouellette

The 2014 Office for Civil Rights (OCR) HIPAA audit plans have yet to be publicized, but what does the fact that the OCR leadership is in a state of flux mean to these audits as well as OCR’s overall guidance and leadership? Not too much...

Surescripts CEO Harry Totonis to step down in March

by Nicole Freeman

Surescripts has announced that President and CEO Harry Totonis is resigning from his position in March 2014. The news is of interest to the healthcare IT community because Surescripts is one of multiple authorized health information service...

Layered Tech guides start-ups on HIPAA compliance

by Nicole Freeman

Layered Tech, a cloud services and managed hosting provider, announced today it will work with Dallas-based healthcare investor Health Wildcatters. Layered Tech will offer HIPAA guidance for startup companies taking part in Health Wildcatters’...

HHS releases proposed rule on HIPAA, mental health reports

by Patrick Ouellette

Almost a year after issuing an Advance Notice of Proposed Rulemaking (ANPRM) in the Federal Register, the Department of Health and Human Services (HHS) has released a proposed rule based on comments regarding the HIPAA Privacy Rule and the National...

HHS proposes new CHP HIPAA compliance requirements

by Nicole Freeman

The Department of Health and Human Services (HHS) is seeking comments on a proposed rule to certify controlling health plans (CHPs) for HIPAA compliance. Under the rule, a CHP would be required to document its HIPAA compliance, and face penalty...

OCR Director’s USCIS nomination: Points of clarification

by Patrick Ouellette

There have been varying reports lately about Office for Civil Rights (OCR) Director Leon Rodriguez’s pending nomination to eventually be the new director of the United States Citizenship and Immigration Services (USCIS) by President...

OCR Director Leon Rodriguez’s departure would leave void

by Patrick Ouellette

A few federal government employees were put in position to play musical chairs of sorts this week and the potential upheaval would have a major impact on healthcare IT security in 2014. President Barack Obama nominated Office for Civil Rights...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks