Healthcare Information Security

HIPAA Compliance

Kromtech Security Discovers Health Data Breach of 150K Patients

October 12, 2017 - Kromtech Security researchers found a potential publicly accessible Amazon S3 repository that may have led to a health data breach impacting over 150,000 individuals, according to a company report. “Patient Home Monitoring” is the company reportedly connected to the database, which contained 316,363 PDF reports in the form of weekly blood test results. Weekly blood test results,...


More Articles

AHIMA: Patient Data Access Through Patient Portals Increases

by Elizabeth Snell

Eighty-two percent of consumers took advantage of patient data access through a patient portal in 2016, an increase from less than 5 percent who did so in 2013, according to a study from the American Health Information Management Association...

How Health Data Security Relates to Healthcare Biometrics

by Elizabeth Snell

Increasing government initiatives for improved health data security and privacy have helped aid to the growth of the healthcare biometrics market, according to a recent MarketsandMarkets report. More healthcare facilities are looking to combat...

Reviewing OCR HIPAA Guidance to Maintain Compliance

by Elizabeth Snell

Covered entities should not be afraid to regularly review OCR HIPAA guidance and ensure that they remain compliant, even as they add new technologies into the daily workflow, according to OCR Senior Advisor for HIPAA Compliance and Enforcement...

EHRA: Health Data Sharing Not Aided with Regulatory Penalties

by Elizabeth Snell

Advocating for penalizations for providers and EHR developers is the wrong approach for encouraging health data sharing, according to a recent EHR Association (EHRA) blog post. Written in response to a Health Affairs post by former ONC Chief...

How HIPAA Rules Apply with Law Enforcement Investigations

by Elizabeth Snell

HIPAA rules are meant to protect patient information, but what happens when there is a law enforcement investigation? Are police officers allowed to demand PHI without a warrant? That issue was brought forth in August 2017 when video was released...

Mount Sinai St. Luke’s Sued Following HIPAA Violation

by Elizabeth Snell

New York-based Mount Sinai St. Luke’s Hospital is being sued for faxing patient PHI to the patient’s employer, a reported HIPAA violation that has already resulted in an OCR HIPAA settlement. The Law Offices of Jeffrey Lichtman represent...

Kentucky HIPAA Violation Case Ruling Held by Appeals Court

by Elizabeth Snell

A Kentucky hospital was found to have acted lawfully when it fired a nurse for committing a HIPAA violation, according to the Kentucky Court of Appeals. The Appeals Court held a lower court’s dismissal of the nurse’s claim that her...

OCR: Staff Training Key for Data Security, Avoiding Scams

by Elizabeth Snell

Healthcare organizations should ensure they are implementing strong staff training measures to maintain data security in the wake of Hurricane Harvey, according to the August OCR Cybersecurity Newsletter. Potential scammers may try and take advantage...

HHS Reviews HIPAA Rules Following Hurricane Harvey

by Elizabeth Snell

Healthcare providers can face numerous challenges during natural disasters, including adhering to HIPAA rules while working to provide proper patient care through an emergency. HHS recently released a bulletin to help guide covered entities through...

Recent Aetna Data Breach Leads to Class Action Lawsuit

by Elizabeth Snell

A federal class action lawsuit was recently filed against Aetna after it reportedly experienced a data breach that may have affected thousands of individuals. The Legal Action Center, AIDS Law Project of Pennsylvania, and Berger &...

AHA Urges Reduced Data Sharing Barriers in HIPAA Regulations

by Elizabeth Snell

Having reduced data sharing barriers in current HIPAA regulations is just one way Congress can help reduce the regulatory burden on hospitals, health systems and patients, according to the American Hospital Association (AHA). AHA highlighted...

How HIPAA Regulations Can Ease Information Blocking

by Elizabeth Snell

Even with more healthcare organizations adopting EHRs and working through the Meaningful Use program, covered entities still struggle with health information exchange. However, HIPAA regulations could be a boon to providers, according to former...

Top 4 Key Concerns in Healthcare Mobile Security Options

by Elizabeth Snell

It can be daunting to choose the right mobile tools to help a healthcare organization stay innovative. It can be even more daunting though to ensure that mobile security remains a top priority and that PHI stays secure. Healthcare IT leaders...

Texas Healthcare Privacy, Security Focus in Recent Partnership

by Elizabeth Snell

Texas covered entities will now have assistance in working toward healthcare privacy and security compliance measures through a recent partnership between the Texas Health Services Authority (THSA) and Third Rock Incorporated. THSA will...

Most Wired Org Focuses on Multi-Level Healthcare Data Security

by Elizabeth Snell

The American Hospital Association’s Hospital & Health Networks (H&HN) Most Wired rankings showed that more organizations are finding successful ways to balance innovation and healthcare data security. St. Luke’s University...

5 Lessons Learned in OCR HIPAA Settlements

by Elizabeth Snell

Healthcare organizations cannot assume that they will never experience a data breach or data security incident. Failure to update safeguards or audit controls could also lead to an OCR HIPAA settlement, which could be paired with a high fine...

HHS Updates HIPAA Breach Reporting Tool, Empowers Consumers

by Elizabeth Snell

The recently updated HIPAA Breach Reporting Tool (HBRT) will highlight recent healthcare data breaches and help consumers learn how such incidents are investigated, according to OCR. The agency explained in a statement that the new HBRT “features...

AHIMA Focuses on HIPAA Compliance in New Patient Data Form

by Elizabeth Snell

AHIMA released a new form that streamlines the patient data request process and also maintains HIPAA compliance. Patient have the right to request access to their own information under HIPAA regulations, but are sometimes confused about the process....

ONC Stresses Improved Patient Data Access Measures

by Elizabeth Snell

Healthcare organizations need to improve their processes for patient data access measures, as this will reduce consumer burden and also help entities coordinate better care, according to an ONC report. ONC explained in Improving the Health Records...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks