OCR Settles Three HIPAA Right of Access Cases With Dental Practices
The HHS Office for Civil Rights (OCR) resolved three HIPAA right of access cases with three dental practices. The resolutions bring OCR’s total number of cases to 41 since it launched the HIPAA...Sponsored by SecureLink an Imprivata Company
Healthcare Cybersecurity Starts with Identity and Access Security
Healthcare organizations are under attack, and the third-party vendors they work with have become a common threat vector. To mitigate risk and avoid potential health data breaches, HIPAA-covered...OCR Settles Improper PHI Disposal Case, Resolves Potential HIPAA Violation
The HHS Office for Civil Rights (OCR) settled a case with New England Dermatology and Laser Center (NEDLC) to resolve a potential HIPAA violation involving improper protected health information (PHI)...Sponsored by SecureLink an Imprivata Company
Growing Body of Data Shows High Healthcare Breach Risk
It’s no secret that the healthcare industry has a cybersecurity crisis. Week after week, new headlines appear detailing new hacks, millions of dollars in ransoms, and PHI that’s been taken...Clearwater Acquires TECH LOCK, Expands Cybersecurity, HIPAA Compliance Services
Clearwater, a cyber risk management and HIPAA compliance solutions vendor, completed its acquisition of TECH LOCK, which will allow the company to provide 24/7 managed detection and response (MDR)...Oklahoma State University Agrees to $875K OCR Data Breach Settlement
Oklahoma State University – Center for Health Sciences (OSU-CHS) agreed to pay the HHS Office for Civil Rights (OCR) $875,000 in a data breach settlement. OSU-CHS also agreed to implement a...Sponsored by SecureLink an Imprivata Company
How Identity Management IGA Secures Protected Health Information
Patient care isn’t just about meeting a patient's medical and physical needs. It involves keeping the digital identity of the patient protected. Think of it this way — patients have two...How New Federal, State Laws Impact Healthcare Data Privacy
Along with HIPAA’s requirements for safeguarding protected health information (PHI), HIPAA-covered entities also must pay close attention to the patchwork of federal and state data privacy laws that dictate how different types of...Common HIPAA Administrative Safeguards Under The HIPAA Security Rule
Under the HIPAA Security Rule, covered entities must implement physical, technical, and administrative safeguards to safeguard electronic protected health information (ePHI). These safeguards help...CHI, MGMA Respond to OCR’s RFI On Recognized Security Practices Under HITECH
The Connected Health Initiative (CHI) and the Medical Group Management Association (MGMA) both responded to the HHS Office for Civil Rights’ (OCR) request for information (RFI) surrounding...Common HIPAA Physical Safeguards Under The HIPAA Security Rule
HIPAA physical safeguards are an essential aspect to any covered entity’s PHI security, but could easily be overlooked. Technical safeguards and administrative safeguards could easily be pushed to...What is the HIPAA Privacy Rule?
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) established national standards for the security and privacy of protected health information (PHI). HHS issued the HIPAA Privacy Rule and the HIPAA Security Rule to...Misconceptions About HIPAA, Interoperability, Information Blocking
Since HIPAA was signed into law more than 25 years ago, misconceptions surrounding its purpose, reach, and limitations have persisted. The COVID-19 pandemic exacerbated those misconceptions—multiple public figures cited HIPAA as a...SuperCare Health Faces Lawsuit After Data Breach Impacts 318K
California-based SuperCare Health is facing a lawsuit in the wake of a July 2021 data breach. SuperCare recently disclosed the incident to 318,379 individuals, making it one of the largest reported...EHNAC, HITRUST Partner to Promote Security, Privacy Standards
The Electronic Healthcare Network Accreditation Commission (EHNAC) and HITRUST announced a partnership to enhance security and privacy requirements under the Trusted Network Accreditation Program...HIPAA Technical Safeguards: A Basic Review
While no healthcare organization can eliminate the possibility of facing a data breach, implementing HIPAA technical safeguards can go a long way toward mitigating cyber risk. Under the HIPAA Security...Deadline to Report PHI Breaches Impacting Less Than 500 People Nears
Under the HIPAA Breach Notification Rule, covered entities must report all protected health information (PHI) breaches to HHS. If the breach impacted more than 500 individuals, covered entities must...What Is a HIPAA Business Associate Agreement (BAA)?
HIPAA-covered entities are required to enter into business associate agreements (BAAs) with any third party that handles protected health information (PHI). As the cyber threat landscape evolves and data privacy and security concerns...Sponsored by SecureLink