Healthcare Information Security


Health IT Privacy, Security Policies Discussed in ONC Plan

by Elizabeth Snell

The U.S. Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology (ONC) released the final version of its Federal Health IT Strategic Plan 2015–2020, and broke down the...

Breaking Down HIPAA: PHI Security in Patient File Disposal

by Sara Heath

PHI security is an integral part in protecting patient privacy and confidentiality. As such, HIPAA provides ample guidance on how covered entities may maintain PHI security via the HIPAA privacy rule. The HIPAA privacy rule seeks to...

Keeping Strong HIE Security Through Interoperability Push

by Sara Heath

HIE security is an important topic when it comes to the push for health IT interoperability. As more and more healthcare professionals are recognizing the need to exchange patient health information in order to increase care coordination,...

AHA Addresses Health Data Security Concern in VT SCOTUS Case

by Sara Heath

Amicus briefs in the Gobeille vs. Liberty Mutual Insur. Co. Supreme Court case continue as the American Hospital Association (AHA) recently contributed its thoughts on the matter. The organization submitted its brief on September 8, and...

Breaking Down the HIPAA Administrative Simplification Rules

by Elizabeth Snell

The HIPAA Administrative Simplification Rules are an important aspect of HIPAA operating rules and standards. These provisions required the Department of Health and Human Services (HHS) to not only adopt national standards for certain...

HIPAA Regulations Discussed in Latest Mental Health Bill

by Elizabeth Snell

A recently proposed mental health bill would potentially alter HIPAA regulations when it comes to individuals being treated for mental health conditions and their family members. Senator Bill Cassidy, M.D. (R-LA) and U.S. Senator Chris...

High-Profile Patients Prompt Internal Health Data Breaches

by Sara Heath

No matter the many safeguards against hacking and cyberattacks are put into place in hospital records, sometimes hospitals need to protect against their own employees’ nosiness as well. Such was the case for the Carilion Clinic, a...

Majority of Providers Confident in HIPAA Compliance Policies

by Elizabeth Snell

Even with recently large-scale health data breaches being announced, the majority of healthcare providers report that they are confident in their own HIPAA compliance policies, according to a recent survey by Scrypt. A total of 769...

UCLA Faces Lawsuit After Health Data Breach

by Sara Heath

UCLA Health System is facing a class action case in California federal court, following a health data breach that potentially affected 4.5 million patients, according to Law360. The plaintiff, Michael Allen, argues that UCLA Health...

AHA: Prohibit Health Plan Identifiers in HIPAA Transactions

by Elizabeth Snell

The Department of Health and Human Services (HHS) should prohibit Health Plan Identifiers (HPID) and Other Entity Identifiers (OEID) when used within a HIPAA transaction, according to the American Hospital Association (AHA). The AHA...

A Review of Common HIPAA Administrative Safeguards

by Elizabeth Snell

HIPAA administrative safeguards are a critical piece to the larger health data security puzzle that all covered entities must put together. The three types of safeguards are not only a federal requirement, but they all play an important...

HIPAA Compliance and Mental Health: Breaking Down HIPAA Rules

by Elizabeth Snell

HIPAA compliance is essential for covered entities and their business associates, but recent legislation has brought another issue to light: how can healthcare organizations stay HIPAA compliant when it comes to mental health? Some...

Which States Have a Data Breach Notification Law?

by Elizabeth Snell

Data breach notification is essential for organizations of all sizes, and those in the healthcare industry are no exception. In fact, the HIPAA  breach notification rule requires that covered entities and their business associates...

Judge Disagrees With Employee Firing Over HIPAA Violation

by Elizabeth Snell

A Montana judge recently ruled that a healthcare employee’s HIPAA violation did not preclude her from protection under the National Labor Relations Act (NLRA). The employee had accessed personal information on coworkers for her...

How Will New Research Bill Affect HIPAA Regulations?

by Elizabeth Snell

A proposed health research bill could potentially affect the current HIPAA regulations, as it would allow covered entities or business associates to use or disclose PHI for research purposes without patient consent. Called 21st Century...

HIPAA Regulations Create Communication Obstacle, Says Survey

by Elizabeth Snell

HIPAA regulations are a necessity for covered entities, but if a recent survey is any indication, they could also be creating issues for providers. The majority of surveyed providers – 61 percent – stated that HIPAA...

ONC Workgroup Talks HIPAA Regulations, Interoperability

by Elizabeth Snell

The Office of the National Coordinator (ONC) Health Information Technology (HIT) Privacy & Security Workgroup met earlier this month to further discuss the ONC Interoperability Roadmap, and members brought up concerns about HIPAA...

Breaking Down HIPAA: Health Data Encryption Requirements

by Elizabeth Snell

Health data encryption is becoming an increasingly important issue, especially in the wake of large scale data breaches like Anthem, Inc. and Premera Blue Cross. The HIPAA Omnibus Rule improved patient privacy protections, gave individuals...

The HIPAA Risk Assessment: A Journey, Not A Destination

by Elizabeth Snell

A HIPAA risk assessment can be an important tool in helping covered entities determine how they can best improve their overall privacy and security measures. With two large scale healthcare data breaches being announced already in 2015, it...

Breaking Down HIPAA Rules: HIE Security

by Elizabeth Snell

HIE security is an increasingly important issue, especially as the push for interoperability continues. We’ve previously discussed how the HIPAA Omnibus Rule made important impacts on several aspects of HIPAA rule, and how covered...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...