Healthcare Information Security

Patient Privacy News

OIG Report Finds CO Medicaid Data Security Controls Lacking

October 13, 2016 - Colorado’s Medicaid data security may have increased risk due to vulnerabilities found in the Colorado Department of Health Care Policy and Financing (HCPF) information systems according to a recent investigation by the Office for Inspector General (OIG). HCPF did not fully comply with Federal information system security requirements when it comes to safeguarding its Medicaid eligibility...


Will CMS Improve Patient Data Security with SSNRI?


One aspect to the Medicare Access and CHIP Reauthorization Act (MACRA) of 2015 could affect patient data security measures, as it requires healthcare organizations to remove Social Security Numbers (SSNs) from all Medicare cards by April 2019....

Considering Healthcare Data Privacy with Health Data Sharing


Information sharing is not without certain healthcare data privacy risks, but the potential rewards should be understood so individuals can make an educated choice when considering the trade off, according to Dr. Joseph Kvedar. In a recent blog...

How Patient Privacy is Affected by Patient Matching Proposal


Earlier this week, numerous healthcare organizations urged members of the House Committee on Appropriations to advance language in a legislative report that would assist in patient matching, which could potentially also affect patient privacy....

How are Healthcare Data Breach Victims Affected by Attacks?


The large fiscal cost to individual victims stemming from medical identity theft is just one of the key ways that healthcare data breaches affect patients, according to a recent report from the Institute for Critical Infrastructure and Technology...

Practice Fusion Health Data Privacy Case Gets FTC Final Order


A Federal Trade Commission (FTC) final order was recently approved, finalizing the FTC complaint against health data privacy concerns with Practice Fusion. The cloud-based EHR company had agreed to a settlement with the FTC in June 2016, over...

How Lagging Health Application Security Affects Consumers


Fitness trackers and online health or medical applications are increasing in popularity, with consumers often submitting sensitive personal health information into them. The health application security measures in place though, do not always...

ONC Joint HIT Committee Discusses HIPAA Regulation Report


Consumers falsely believing that their PHI is protected under HIPAA regulations, and an overall lack of clear rules as to how non-HIPAA covered entities handle sensitive information is a problem for overall economic growth, according to ONC Chief...

FTC Reverses Ruling, Says LabMD Lacked Data Security Measures


Medical testing laboratory LabMD, Inc. failed to employ proper data security measures to protect the sensitive consumer information it collected, according to a recent Federal Trade Commission final order. This reverses a previously announced...

ONC Report Highlights PHI Security Gaps in non-HIPAA Entities


The increase in certain technologies that collect and potentially share individuals’ health information, such as wearables and fitness trackers, could create issues when it comes to PHI security, according to the Office of the National...

HIPAA Privacy Rules Considered in Recent Mental Health Bill


The House of Representatives passed the Helping Families in Mental Health Crisis Act (H.R. 2646) last week, which has a provision stating that more clarity is needed around existing HIPAA privacy rules. It is important to reduce any confusion...

How Unvalidated Encryption Threatens Patient Data Security


Technology vendors building solutions for deployment in healthcare love to talk about encryption and how it can help patient data security. It’s the silver bullet that allows physicians and patients alike to embrace new apps and tools....

FDA Drafts Health Data Sharing Guidance for Medical Devices


According to recent draft guidance from the Food and Drug Administration (FDA), medical device manufacturers can look to new health data sharing guidelines to help relieve previous patient privacy concerns. “Although not generally required...

Health Data Privacy Concerns Discussed in FTC Settlement


A cloud-based EHR company has agreed to a settlement with the Federal Trade Commission (FTC) over allegations that it misled consumers and created potential health data privacy issues. Practice Fusion reportedly did not properly disclose to consumers...

Precision Medicine Initiative Security Framework Released


A Precision Medicine Initiative Security Framework was created to ensure that healthcare organizations of all sizes understand the security expectations that must accompany the Precision Medicine Initiative (PMI), according to the Department...

Health Data Privacy Concerns Arise with Precision Medicine


HIPAA regulations will not apply to the recently announced Precision Medicine Initiative (PMI), a key health data privacy concern, according to The World Privacy Forum. In a recent report, The World Privacy Forum explains that while PMI plans...

Is Patient Privacy Violated with New Wellness Program Rules?


The recent revisions to the Americans with Disabilities Act (ADA) and the Genetic Information Nondiscrimination Act (GINA) violate patient privacy regulations, announced the American Society of Human Genetics (ASHG) in an official press release....

Improving Patient Data Security with Data-Centric Technology


Healthcare organizations of all sizes are understandably concerned with patient data security, especially as technology continues to evolve and hackers grow more sophisticated. Healthcare data encryption is one key way that covered entities can...

Risk Adjustment Program Requires Healthcare Data Security


The Centers for Medicare and Medicaid Services (CMS) released a proposed rule that requires strong healthcare data security when it comes to the audit functions of its risk adjustment program. There will be a new system of records called “CMS...

AHA Calls for Revisions in Healthcare Data Privacy Rule


Federal regulation 42 CRF Part 2 (Part 2), a law that governs the healthcare data privacy of behavioral health information, should better align with HIPAA regulations to boost care coordination and health information exchange, according to a...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks