Healthcare Information Security

HIPAA Compliance

Amazon HIPAA Compliance Lead Search Indicates Healthcare Focus

January 17, 2018 - An Amazon job posting for a HIPAA Compliance Lead potentially indicates that the technology company is looking to expand into the healthcare space. The individual hired for the healthcare privacy and security position will help Amazon in a “new initiative,” the posting stated. “You will work alongside product managers, software developers, bizdev, and legal teams to ensure...


More Articles

CT Supreme Court Rules Patients Can Sue Over PHI Disclosure

by Elizabeth Snell

There is a duty of confidentiality between a physician and patient, and patients have the right to sue should unauthorized PHI disclosure take place, according to the Connecticut Supreme Court. In Byrne v. Avery Center for Obstetrics & Gynecology,...

Potential WV Health Data Breach from Laptop Theft Affects 43K

by Elizabeth Snell

West Virginia-based Coplin Health Systems recently reported a possible health data breach after it discovered that a laptop potentially containing personal health information was stolen. The device was stolen from an employee’s automobile...

Kathryn Marchesini Named New ONC Chief Privacy Officer

by Elizabeth Snell

The Office of the National Coordinator (ONC) announced through an internal email that Katheryn Marchesini, JD, had been appointed to the ONC Chief Privacy Officer position. National Coordinator Donald Rucker, MD explained that Marchesini is an...

CMS Stresses Security in Healthcare Texting Clarification

by Elizabeth Snell

The Centers for Medicare and Medicaid Services (CMS) explained in a recent Survey and Certification letter that healthcare texting, specifically texting patient information to members of the care team, is only allowed through a secure platform....

Healthcare Ransomware, Medical Device Security Key 2018 Trends

by Elizabeth Snell

With 2017 winding down, healthcare providers cannot become lackadaisical in their approach to cybersecurity. The New Year will likely not bring brand new data security issues, but rather show why there needs to be a heightened focus on healthcare...

MA Reaches Settlement Following Medicaid Data Breach

by Elizabeth Snell

New Hampshire-based Multi-State Billing Services (MSB) must pay $100,000 and improve its security practices per a consent judgment from the Massachusetts attorney general’s office. The settlement stems from a Medicaid data breach where...

$2.3M OCR Settlement Reached for 21st Century Oncology Data Breach

by Elizabeth Snell

Cancer care services provider 21st Century Oncology (21CO) recently agreed to a $2.3 million OCR settlement, following a 2015 data breach. OCR found in its investigation that 21CO impermissibly disclosed the PHI of 2,213,597 of its patients and...

Healthcare Phishing, Computer Viruses Top Cyber Attack Methods

by Elizabeth Snell

Healthcare organizations should consider increasing their cybersecurity measures as 83 percent of physicians report they have experienced a cybersecurity attack, according to research from Accenture and the American Medical Association (AMA)....

Understanding HIPAA Data Sharing Policies for Better Patient Care

by Elizabeth Snell

Access to electronic health data can help public health agencies work toward improving patient care and addressing community health challenges, according to recent research. However, confusion over HIPAA data sharing policies and how electronic...

AHIMA Notes Cybersecurity Prep, HIPAA Compliance as Focus Areas

by Elizabeth Snell

All healthcare organizations can work on improving their privacy and security by focusing on their cybersecurity preparation, HIPAA compliance, and staying people-oriented, according to a recent blog post on the Journal of AHIMA. AHIMA’s...

CareFirst Data Breach Case Moves to US Supreme Court

by Elizabeth Snell

A petition for writ of certiorari was recently filed with the US Supreme Court, pushing the CareFirst data breach case forward. CareFirst wants its case reviewed, which could potentially reignite the debate over how plaintiffs need to establish...

What Should Entities Expect with OCR HIPAA Enforcement?

by Elizabeth Snell

There have been nine OCR HIPAA enforcement settlements so far in 2017, highlighting the need for covered entities and business associates to focus on audit controls, risk management, and business associate agreements. While there has been a new...

How HIPAA Information Sharing Regulations Impact the Opioid Crisis

by Elizabeth Snell

With the opioid crisis recently declared a nationwide public health emergency, OCR issued guidance on how HIPAA regulations allow providers to participate in information sharing in an effort to improve patient care. There are often misunderstandings...

Kromtech Security Discovers Health Data Breach of 150K Patients

by Elizabeth Snell

Kromtech Security researchers found a potential publicly accessible Amazon S3 repository that may have led to a health data breach impacting over 150,000 individuals, according to a company report. “Patient Home Monitoring” is...

AHIMA: Patient Data Access Through Patient Portals Increases

by Elizabeth Snell

Eighty-two percent of consumers took advantage of patient data access through a patient portal in 2016, an increase from less than 5 percent who did so in 2013, according to a study from the American Health Information Management Association...

How Health Data Security Relates to Healthcare Biometrics

by Elizabeth Snell

Increasing government initiatives for improved health data security and privacy have helped aid to the growth of the healthcare biometrics market, according to a recent MarketsandMarkets report. More healthcare facilities are looking to combat...

Reviewing OCR HIPAA Guidance to Maintain Compliance

by Elizabeth Snell

Covered entities should not be afraid to regularly review OCR HIPAA guidance and ensure that they remain compliant, even as they add new technologies into the daily workflow, according to OCR Senior Advisor for HIPAA Compliance and Enforcement...

EHRA: Health Data Sharing Not Aided with Regulatory Penalties

by Elizabeth Snell

Advocating for penalizations for providers and EHR developers is the wrong approach for encouraging health data sharing, according to a recent EHR Association (EHRA) blog post. Written in response to a Health Affairs post by former ONC Chief...

How HIPAA Rules Apply with Law Enforcement Investigations

by Elizabeth Snell

HIPAA rules are meant to protect patient information, but what happens when there is a law enforcement investigation? Are police officers allowed to demand PHI without a warrant? That issue was brought forth in August 2017 when video was released...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks