Healthcare Information Security

HIPAA Privacy Rule

Regular Employee Training Essential in Healthcare Cybersecurity

October 16, 2017 - Healthcare cybersecurity threats are constantly evolving, forcing covered entities and business associates to subsequently adjust their privacy and security measures to keep PHI secure. A key aspect to data security though is regular employee training. Health IT executives are increasingly concerned over their employees having a proper grasp of cybersecurity measures. The 2017 Level 3 Healthcare...


More Articles

AHIMA: Patient Data Access Through Patient Portals Increases

by Elizabeth Snell

Eighty-two percent of consumers took advantage of patient data access through a patient portal in 2016, an increase from less than 5 percent who did so in 2013, according to a study from the American Health Information Management Association...

How Health Data Security Relates to Healthcare Biometrics

by Elizabeth Snell

Increasing government initiatives for improved health data security and privacy have helped aid to the growth of the healthcare biometrics market, according to a recent MarketsandMarkets report. More healthcare facilities are looking to combat...

Reviewing OCR HIPAA Guidance to Maintain Compliance

by Elizabeth Snell

Covered entities should not be afraid to regularly review OCR HIPAA guidance and ensure that they remain compliant, even as they add new technologies into the daily workflow, according to OCR Senior Advisor for HIPAA Compliance and Enforcement...

EHRA: Health Data Sharing Not Aided with Regulatory Penalties

by Elizabeth Snell

Advocating for penalizations for providers and EHR developers is the wrong approach for encouraging health data sharing, according to a recent EHR Association (EHRA) blog post. Written in response to a Health Affairs post by former ONC Chief...

How HIPAA Rules Apply with Law Enforcement Investigations

by Elizabeth Snell

HIPAA rules are meant to protect patient information, but what happens when there is a law enforcement investigation? Are police officers allowed to demand PHI without a warrant? That issue was brought forth in August 2017 when video was released...

OCR Urges Disaster Recovery, Health Data Backup in Storm Prep

by Elizabeth Snell

As healthcare organizations prepare for potential natural disasters, it is essential that they have contingency plans in place that include a data backup plan and disaster recovery plan, according to a recent OCR release. Hurricane Irma is predicted...

Kentucky HIPAA Violation Case Ruling Held by Appeals Court

by Elizabeth Snell

A Kentucky hospital was found to have acted lawfully when it fired a nurse for committing a HIPAA violation, according to the Kentucky Court of Appeals. The Appeals Court held a lower court’s dismissal of the nurse’s claim that her...

OCR: Staff Training Key for Data Security, Avoiding Scams

by Elizabeth Snell

Healthcare organizations should ensure they are implementing strong staff training measures to maintain data security in the wake of Hurricane Harvey, according to the August OCR Cybersecurity Newsletter. Potential scammers may try and take advantage...

HHS Reviews HIPAA Rules Following Hurricane Harvey

by Elizabeth Snell

Healthcare providers can face numerous challenges during natural disasters, including adhering to HIPAA rules while working to provide proper patient care through an emergency. HHS recently released a bulletin to help guide covered entities through...

AHA Urges Reduced Data Sharing Barriers in HIPAA Regulations

by Elizabeth Snell

Having reduced data sharing barriers in current HIPAA regulations is just one way Congress can help reduce the regulatory burden on hospitals, health systems and patients, according to the American Hospital Association (AHA). AHA highlighted...

Staying HIPAA Compliant in Patient Health Data Access Process

by Elizabeth Snell

Last month, AHIMA released a new form designed to help both healthcare providers and patients better understand and utilize the patient health data access process. Patients have the right to their own information, but providers need to maintain...

Legislation Aims to Unite HIPAA Rules, Substance Use Records

by Elizabeth Snell

Congressmen Tim Murphy and Earl Blumenauer introduced legislation last week that would help align 42 Code of Federal Regulations Part 2 (Part 2) with HIPAA rules, ensuring that substance use disorder patients can receive proper care while their...

Medical Record Security Key Focus in Indiana Senate Bill

by Elizabeth Snell

Database owners are now required to ensure medical record security by safeguarding healthcare data stored in their systems, according to a recently updated Indiana bill. Senate Bill 549 changed the definition of “abandoned” medical...

NJ Gov. Seeks Ease in HIPAA Regulations for Opioid Fight

by Elizabeth Snell

New Jersey Governor Chris Christie will likely propose HIPAA regulations be loosened in cases of opioid overdoses, according to multiple news outlets. Christie spoke at Morristown Medical Center to the Partnership for a Drug Free New Jersey earlier...

Implementing HIPAA Technical Safeguards for Data Security

by Elizabeth Snell

The push for digital health records is not going to slow down anytime soon, and as recent cases of ransomware attacks show, healthcare organizations must create comprehensive data security measures. HIPAA technical safeguards are just one key...

OCR Newsletter Reviews Healthcare Cybersecurity Best Practices

by Elizabeth Snell

Even the most current and comprehensive security controls cannot guarantee that PHI security will never be compromised, which is why healthcare cybersecurity best practices should be regularly reviewed. OCR’s May cybersecurity newsletter...

Maintaining HIPAA Privacy through Increased Patient Access

by Elizabeth Snell

The HIPAA Privacy Rule is not something that covered entities or business associates can afford to ignore, even as technology continues to evolve and patients have increased access to their own records. AHIMA raised a key issue though in a recent...

NM Supreme Court to Review Alleged HIPAA Violation Case

by Elizabeth Snell

A New Mexico district court mostly denied a motion to dismiss a case alleging HIPAA violations last Friday, and the state Supreme Court will now consider HIPAA’s scope in relation to the case. District Judge Judith C. Herrera denied...

Mobile Security at Center of $2.5M OCR HIPAA Settlement

by Elizabeth Snell

The latest OCR HIPAA settlement was the first of its kind for a wireless health services provider, following allegations of ePHI disclosure due to a stolen laptop. Pennsylvania-based CardioNet provides remote mobile monitoring of and rapid response...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks