Healthcare Information Security

PHI

FTC sees no conflict with HHS in HIPAA jurisdiction

by Patrick Ouellette

In the Federal Trade Commission’s (FTC) eyes, its enforcement authority under the FTC Act doesn’t clash with the Department of Health and Human Services (HHS) role in regulating HIPAA. According to bna.com, the FTC voted 4-0 to reject...

UC Davis notifies 1,800 patients of email breach

by Nicole Freeman

UC Davis Health System is notifying 1,800 patients of a data breach stemming from a phishing scam, according to reports from The Sacramento Bee and News10.net. Three doctors’ email accounts were affected by the malicious software. The incident...

Horizon BCBS officials appear before NJ Senate panel

by Nicole Freeman

Officials from Horizon Blue Cross Blue Shield of New Jersey (Horizon BCBSNJ) came before a New Jersey Senate panel regarding their November 2013 data breach, according to a report from NJ.com. Two unencrypted laptops containing protected health...

Saint Francis Hospital (Conn.) announces 858-patient breach

by Patrick Ouellette

In alerting 858 patients that their paper records had been stolen from a doctor’s vehicle on December 27, Saint Francis Hospital and Medical Center was able to let them know of the breach quicker than many other organizations. But there are...

Exco In Touch completes HIPAA, NIST audit

by Nicole Freeman

Exco In Touch, a data capture vendor for healthcare providers, announced that it has successfully completed a HIPAA compliance audit using National Institute of Standards and Technology (NIST) guidelines. The NIST guidelines were published in...

Paper records stolen from CaroMont employee car

by Nicole Freeman

Paper records for 191 patients of CaroMont Regional Medical Center were stolen from an employee’s car in Dallas on December 16, according to a report from the Gaston Gazette. The records were part of a census report created by the hospital....

Redspin service combines HIPAA and PCI DSS analyses

by Nicole Freeman

Redspin, Inc., an IT security assessments and testing provider, has announced a new service that combines HIPAA Security Risk and PCI DSS 3.0 Gap Analyses. Reports are created through single-process analysis of data collection and policy review,...

Patient privacy questioned in DEA data request

by Nicole Freeman

The government’s use of warrantless subpoenas is coming under fire in a case between the American Civil Liberties Union (ACLU) and the state of Oregon, and the US Drug Enforcement Administration (DEA), according to a report from The Bulletin....

MedAllies receives accreditation from EHNAC, DirectTrust

by Nicole Freeman

MedAllies, a provider of Direct services, has received full accreditation from Direct Trusted Agent Accreditation Program (DTAAP) for Certificate Authority (CA), Registration Authority (RA), and Health Information Service Provider (HISP) from DirectTrust.org and...

Southwest General notifies 480 patients of data breach

by Nicole Freeman

Southwest General Health Center of Ohio is notifying more than 480 patients involved in an obstetrics study of a missing binder containing patient information, according to reports from Fox 8 Cleveland and Cleveland.com. The binder has been missing...

N.C. DHHS secretary apologizes for Medicaid data breach

by Patrick Ouellette

North Carolina Department of Health and Human Services (DHHS) secretary Aldona Wos apologized on Tuesday at a legislative committee meeting in response to last month’s Medicaid card breach that affected 48,752 patients. While apologetic,...

Webinar offers tips on HIPAA compliance, breach management

by Nicole Freeman

Yesterday, SDG and Cyber Data-Risk hosted a webinar on changes to the definition of a data breach, and how HIPAA-covered entities and their associates can prevent breaches and their subsequent penalties. While federal regulation requires health...

DirectTrust, EHNAC accredit DataMotion for HIPAA compliance

by Nicole Freeman

DataMotion, a health information service provider (HISP) providing cloud-based data delivery and email encryption, has been fully accredited by the Direct Trusted Agent Accreditation Program (DTAAP) for HISPs from DirectTrust.org and the Electronic...

Phoebe Putney Memorial notifies 6,777 patients of breach

by Nicole Freeman

The Phoebe Putney Memorial Hospital (PPMH) in Albany, Georgia is notifying 6,777 patients of a potential data breach after an unencrypted desktop computer was found missing on November 6, according to reports from WALB.com, WTVM.com and The Florida...

HIE privacy, security best practices: A review

by Nicole Freeman

Health information exchanges (HIEs) continue to play an important role in healthcare, allowing the quick, easy exchange of patient information between physicians, providers, hospitals, pharmacies, payers, and other healthcare professionals while...

Notices of stolen S.C. insurance data sent 2 months after theft

by Nicole Freeman

A South Carolina state-mandated health insurance program notified customers of a laptop theft two months after the theft was reported, according to GoUpstate.com. The laptop contained information from 3,432 customers who had used the program...

Surescripts CEO Harry Totonis to step down in March

by Nicole Freeman

Surescripts has announced that President and CEO Harry Totonis is resigning from his position in March 2014. The news is of interest to the healthcare IT community because Surescripts is one of multiple authorized health information service...

Kentucky auditor makes case for data breach notification law

by Patrick Ouellette

Most healthcare organizations are aware of breach notification requirements on a federal level, but most states have rules and regulations for notifying patients of a data breach. However, Kentucky is not one of those states and its auditor recently...

Laptop stolen from N.M. Oncology and Hematology Consultants

by Nicole Freeman

A laptop was stolen from an employee office at New Mexico Oncology and Hematology Consultants, Ltd. (NMOHC), according to a statement on their website. The theft was discovered on November 13, 2013, and was reported to the police. The laptop...

Layered Tech guides start-ups on HIPAA compliance

by Nicole Freeman

Layered Tech, a cloud services and managed hosting provider, announced today it will work with Dallas-based healthcare investor Health Wildcatters. Layered Tech will offer HIPAA guidance for startup companies taking part in Health Wildcatters’...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks