Healthcare Information Security

HIPAA and Compliance News

Study Shows OCR HIPAA Compliance, Breach Recovery Lacking

by

The Office for Civil Rights (OCR) has room for improvement in several health data security areas, including its HIPAA compliance and ability to follow up on PHI data breaches, according to two separate reports from the Office of Inspector General...

Alleged HIPAA Violations in Lawsuit Against D.C. Hospitals

by

A class-action lawsuit has been filed against MedStar Georgetown University Hospital and George Washington University Hospital for potential HIPAA violations related to patients being able to receive copies of their medical records. Four individuals...

What Will the Upcoming OCR HIPAA Audits Entail?

by

While the upcoming HIPAA audits from the Office for Civil Rights (OCR) have continued to be delayed, it seems as if they are finally moving forward. Healthcare organizations of all sizes need to ensure that they are prepared for a potential investigation...

HIPAA Regulations and Family Medical History

by

HIPAA regulations are meant to keep individuals’ PHI secure and out of the hands of unauthorized users. In previous weeks, HealthITSecurity.com has discussed how PHI should be handled in numerous situations, and in which situations it is...

Breaking Down HIPAA: PHI Security in Patient File Disposal

by

PHI security is an integral part in protecting patient privacy and confidentiality. As such, HIPAA provides ample guidance on how covered entities may maintain PHI security via the HIPAA privacy rule. The HIPAA privacy rule seeks to provide covered...

Breaking Down HIPAA Regulations in Emergencies

by

While HIPAA regulations are something that all covered entities need to incorporate in daily operations, it is not always simple to understand how those federal regulations apply to certain situations. For example, when there is potentially a...

A Legal Breakdown of HIPAA, NAIC Cybersecurity Guidelines

by

It is critical for healthcare covered entities of all sizes to carefully monitor HIPAA regulations, ensuring that they remain compliant and are keeping sensitive data secure. As healthcare cybersecurity becomes an increasingly important issue,...

Notice of Privacy Practices for PHI: Breaking Down HIPAA

by

A notice of privacy practices (NPP) for PHI is a critical part of the HIPAA Privacy Rule that covered entities of all sizes need to understand. This piece of communication is also essential for the relationship between a health plan or provider...

Ind. Practice Fined $750K in OCR HIPAA Settlement

by

An Indiana radiation oncology practice agreed to a HIPAA settlement of $750,000 with the Office for Civil Rights (OCR) after alleged HIPAA violations from a 2012 incident. Cancer Care Group, P.C. notified OCR on August 29, 2012 of an ePHI data...

HIPAA Compliance, Data Breaches Top Summer Stories

by

The health data security world is constantly changing, as technology evolves and healthcare organizations work to maintain HIPAA compliance and keep pace with potential threat factors. The past few months have further proven that fact, and shown...

Breaking Down the HIPAA Administrative Simplification Rules

by

The HIPAA Administrative Simplification Rules are an important aspect of HIPAA operating rules and standards. These provisions required the Department of Health and Human Services (HHS) to not only adopt national standards for certain types of...

Reminders for HIPAA Compliance with Business Associates

by

Maintaining HIPAA compliance is clearly a top priority for covered entities. With technology evolving, third-party partnerships are also becoming more common, which means that more healthcare organizations are likely working with business associates....

Majority of Providers Confident in HIPAA Compliance Policies

by

Even with recently large-scale health data breaches being announced, the majority of healthcare providers report that they are confident in their own HIPAA compliance policies, according to a recent survey by Scrypt. A total of 769 healthcare...

Reminders on HIPAA Enforcement: Breaking Down HIPAA Rules

by

HIPAA enforcement is an important aspect of The HIPAA Privacy Rule, and also one that no covered entity actually wants to be a part of. However, it is essential that healthcare organizations of all sizes understand the implications of an audit...

HHS Releases Overview on HIPAA Regulations

by

The Department of Health and Human Services (HHS) recently released an overview of the basics of HIPAA regulations, and what covered entities must keep in mind as they work toward remaining compliant. The HHS guidance discusses the HIPAA Privacy...

How Do HIPAA Regulations Affect Judicial Proceedings?

by

HIPAA regulations are designed to keep healthcare organizations compliant, ensuring that sensitive data - such as patient PHI - stays secure. Should a healthcare data breach occur, covered entities or their business associates will be held accountable,...

How to Implement Strong HIPAA Technical Safeguards

by

Having strong HIPAA technical safeguards is essential for healthcare organizations of all sizes. However, it is also critical that those safeguards are not the only data security measure that covered entities rely on to keep data protected. Jeffrey...

How the Patient Safety Rule Ties into HIPAA Regulations

by

There are many essential aspects to HIPAA regulations, and how covered entities and their business associates must work to remain compliant. The Patient Safety and Quality Improvement Act of 2005 (PSQIA) is another important regulation to understand,...

No HIPAA Violation for Employees Retaining PHI, Says Court

by

Former hospital employees who retained PHI following their termination at an Arkansas hospital did not commit a HIPAA violation, according to an Arkansas court decision. Pam Howard previously worked at the Division of General Surgery of the University...

AHA: Prohibit Health Plan Identifiers in HIPAA Transactions

by

The Department of Health and Human Services (HHS) should prohibit Health Plan Identifiers (HPID) and Other Entity Identifiers (OEID) when used within a HIPAA transaction, according to the American Hospital Association (AHA). The AHA submitted...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks