Healthcare Information Security

HIPAA Compliance

Study Shows OCR HIPAA Compliance, Breach Recovery Lacking

by Elizabeth Snell

The Office for Civil Rights (OCR) has room for improvement in several health data security areas, including its HIPAA compliance and ability to follow up on PHI data breaches, according to two separate reports from the Office of Inspector General...

HIPAA Regulations and Family Medical History

by Elizabeth Snell

HIPAA regulations are meant to keep individuals’ PHI secure and out of the hands of unauthorized users. In previous weeks, HealthITSecurity.com has discussed how PHI should be handled in numerous situations, and in which situations it is...

Fitbit Announces New HIPAA Compliance Safeguards

by Elizabeth Snell

Fitbit, Inc. recently announced that it now has HIPAA compliance safeguards in place to ensure that Fitbit Wellness customers can stay aligned with federal compliance standards. Fitbit Wellness is a “business-to-business offering that provides...

Breaking Down HIPAA Regulations in Emergencies

by Elizabeth Snell

While HIPAA regulations are something that all covered entities need to incorporate in daily operations, it is not always simple to understand how those federal regulations apply to certain situations. For example, when there is potentially a...

Notice of Privacy Practices for PHI: Breaking Down HIPAA

by Elizabeth Snell

A notice of privacy practices (NPP) for PHI is a critical part of the HIPAA Privacy Rule that covered entities of all sizes need to understand. This piece of communication is also essential for the relationship between a health plan or provider...

Patient Privacy Advocated for in AAPS Amicus Brief to SCOTUS

by Sara Heath

Patient privacy and security are at the center of the recent Supreme Court case Gobeille vs. Liberty Mutual Insur. Co. The case will determine whether states have the right to access patient information obtained by self-funded insurance providers....

HIPAA Compliance, Data Breaches Top Summer Stories

by Elizabeth Snell

The health data security world is constantly changing, as technology evolves and healthcare organizations work to maintain HIPAA compliance and keep pace with potential threat factors. The past few months have further proven that fact, and shown...

Breaking Down the HIPAA Administrative Simplification Rules

by Elizabeth Snell

The HIPAA Administrative Simplification Rules are an important aspect of HIPAA operating rules and standards. These provisions required the Department of Health and Human Services (HHS) to not only adopt national standards for certain types of...

Reminders for HIPAA Compliance with Business Associates

by Elizabeth Snell

Maintaining HIPAA compliance is clearly a top priority for covered entities. With technology evolving, third-party partnerships are also becoming more common, which means that more healthcare organizations are likely working with business associates....

Majority of Providers Confident in HIPAA Compliance Policies

by Elizabeth Snell

Even with recently large-scale health data breaches being announced, the majority of healthcare providers report that they are confident in their own HIPAA compliance policies, according to a recent survey by Scrypt. A total of 769 healthcare...

How to Implement Strong HIPAA Technical Safeguards

by Elizabeth Snell

Having strong HIPAA technical safeguards is essential for healthcare organizations of all sizes. However, it is also critical that those safeguards are not the only data security measure that covered entities rely on to keep data protected. Jeffrey...

How the Patient Safety Rule Ties into HIPAA Regulations

by Elizabeth Snell

There are many essential aspects to HIPAA regulations, and how covered entities and their business associates must work to remain compliant. The Patient Safety and Quality Improvement Act of 2005 (PSQIA) is another important regulation to understand,...

No HIPAA Violation for Employees Retaining PHI, Says Court

by Elizabeth Snell

Former hospital employees who retained PHI following their termination at an Arkansas hospital did not commit a HIPAA violation, according to an Arkansas court decision. Pam Howard previously worked at the Division of General Surgery of the University...

AHA: Prohibit Health Plan Identifiers in HIPAA Transactions

by Elizabeth Snell

The Department of Health and Human Services (HHS) should prohibit Health Plan Identifiers (HPID) and Other Entity Identifiers (OEID) when used within a HIPAA transaction, according to the American Hospital Association (AHA). The AHA submitted...

HIPAA Regulations Not Data Exchange Barrier, Says Halamka

by Elizabeth Snell

HIPAA regulations can sometimes be used as an excuse for why healthcare organizations are unable to exchange information. Digital health information and health data sharing are increasingly necessary for the changing healthcare environment, according...

A Review of Common HIPAA Administrative Safeguards

by Elizabeth Snell

HIPAA administrative safeguards are a critical piece to the larger health data security puzzle that all covered entities must put together. The three types of safeguards are not only a federal requirement, but they all play an important role...

A Review of Common HIPAA Physical Safeguards

by Elizabeth Snell

HIPAA physical safeguards are an essential aspect to any covered entity’s PHI security, but could easily be overlooked. Technical safeguards and administrative safeguards could easily be pushed to the forefront of a covered entity’s...

A Review of Common HIPAA Technical Safeguards

by Elizabeth Snell

HIPAA technical safeguards are just one piece of the larger health data security plan that covered entities and their business associates must put together. However, it is a very important aspect. Over the next few weeks, HealthITSecurity.com...

Maintaining HIPAA Compliance While Preparing for HIPAA Audits

by Linda McReynolds, Esq. & Ronald Quirk, Esq.

Federal regulators are actively preparing to conduct extensive audits to determine business compliance with HIPAA privacy and security requirements. Covered businesses that handle PHI, i.e.,  individually identifiable health information...

HIPAA Compliance and Mental Health: Breaking Down HIPAA Rules

by Elizabeth Snell

HIPAA compliance is essential for covered entities and their business associates, but recent legislation has brought another issue to light: how can healthcare organizations stay HIPAA compliant when it comes to mental health? Some covered entities...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks