Healthcare Information Security

ePHI

Records Containing PHI Stolen from TX Orthaepedic Facility

December 22, 2016 - On December 15th, Oak Cliff Orthopaedic Associates announced a theft involving records containing personal PHI from the years 2006 to 2007. According to a report from Oak Cliff, the Lewisville Police Department has since located and returned the stolen records. The data potentially accessed included patients’ names, addresses, and office medical records. Oak Cliff also noted “in...


More Articles

DoD Wants Army EHR Security Audit, Security Protocol Review

by Elizabeth Snell

The Department of Defense plans to investigate whether or not the Army implemented effective security protocols to protect electronic health records through an EHR security audit, set to be performed in August 2016. The DoD Inspector General...

Maryland Court Dismisses CareFirst Data Breach Lawsuit

by Elizabeth Snell

Plaintiffs in a class action lawsuit filed after the CareFirst data breach from last year failed to demonstrate sufficient standing, according to a Maryland district court. Pamela Chambliss and Scott Adamson claimed in their case against CareFirst...

HHS Clarifies HIPAA Regulation Patient Right of Access Costs

by Jacqueline Belliveau

While HIPAA regulations state that patients have a right of access to their own health information, many individuals are left wondering just how much it will cost them to view their own PHI.  Fortunately, the Department of Health and Human...

Will Healthcare Data Encryption be Impacted by NIST Guide?

by Jacqueline Belliveau

Healthcare providers and other covered entities under HIPAA regulations may have a new resource on healthcare data encryption standards from the National Institute of Standards and Technology (NIST). NIST released the final draft of “NIST...

How HIPAA Regulations Support Quality Assessment Activities

by Elizabeth Snell

HIPAA regulations are designed to support the exchange of electronic health information in quality assessment/quality improvement and population-based activities, according to the Office of the National Coordinator for Health IT (ONC). In the...

OIG: Healthcare Security Vulnerabilities at CA Facilities

by Elizabeth Snell

The Office of Inspector General (OIG) found high-risk security vulnerabilities, some of which included healthcare security issues, at three California Medicaid managed-care organizations (MCOs). The vulnerabilities raise concern over system integrity...

NY Cancer Institute ePHI Security Audit Shows Proper Policies

by Elizabeth Snell

An ePHI security audit of the Roswell Park Cancer Institute found that the organization has a strong information security program, but could still improve in its risk assessment ability, ePHI access controls, and certain technical safeguard implementations....

PHI Security Compromised in Healthcare Data Breaches

by Elizabeth Snell

Two healthcare data breaches compromised patients’ PHI security. When healthcare organizations fail to adhere to HIPAA requirements, patients’ PHI security can become compromised. Whether employees improperly dispose of medical records...

PHI Security Concerns Could Stop Hospital System ​Sale

by Stephanie Reardon

Eighteen members of the California Democratic Congressional Delegation have written a letter to Attorney General, Kamala D. Harris in an attempt to block Prime Healthcare from purchasing the Daughters of Charity Health system. These members of...

Laptop with PHI Stolen from Oregon Employee’s Car

by Elizabeth Snell

A personal laptop containing PHI was stolen from an Oregon health employee’s car while they were attending a work-related conference. Patients at an Oregon healthcare facility were notified this week that their protected health information...

PHI of 2,000 Minn. Patients Accidentally Sent to Dumpsters

by Elizabeth Snell

Patients’ PHI was potentially exposed after a Minnesota facility improperly disposed of sensitive documents. A Minnesota health system is notifying approximately 2,000 patients that their protected health information (PHI) might have been...

How Long Can Healthcare Data Breaches Affect Facilities?

by Elizabeth Snell

Healthcare data breaches can affect organizations long after the security issue was discovered and patients were notified of the problem. Healthcare data breaches are unfortunately becoming a common scenario for hospitals, health systems and...

Why Healthcare Providers Should Consider Data Encryption

by Elizabeth Snell

Healthcare Data Encryption is a crucial tool for providers as they implement BYOD policies and work to strengthen their EHR systems. Healthcare data encryption is becoming an increasingly hot topic, especially as more providers implement EHRs...

HIPAA Technical Safeguards: A Basic Review

by Elizabeth Snell

It’s critical to review the requirements of HIPAA technical safeguards to ensure that your healthcare organization is compliant and able to keep PHI safe. While no healthcare organization can guarantee that a data breach will never take...

Patient Privacy, HIPAA Violation Case Argued in Calif. Court

by Elizabeth Snell

A California medical center has gone to court over accusations that it violated patient privacy by releasing a patient’s private medical information. Patient privacy rights and HIPAA compliance are taking center stage in a California court,...

HIPAA Compliance Will Be Reviewed in OIG 2015 Work Plan

by Elizabeth Snell

The OIG released its 2015 work plan, which includes a review of hospitals’ contingency planning and if they are HIPAA compliant. The US Department of Health and Human Services Office of Inspector General (OIG) will bring a greater...

Five HIPAA Omnibus Compliance Myths

by Elizabeth Snell

The HIPAA Omnibus Rule was significant for the healthcare industry. Many of the rule’s stipulations drastically affected how covered entities, business associates (BAs) and subcontractors handle risk management and breach notification....

PHI Put At Risk after Fla. Community Center ID Theft

by Elizabeth Snell

A non-profit system of health clinics in Florida reported this week that it experienced a data breach that put patients’ PHI at risk. Jessie Trice Community Health Center announced that it was attacked by “an identity theft criminal...

Va. OB-GYN Exposes PHI in Data Breach

by Elizabeth Snell

A Virginia medical facility notified patients of a data breach after an individual took documents containing PHI. Montgomery Obstetrics & Gynecology (Montgomery OB-GYN) notified patients last week that it had experienced a data breach that...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks