By Matt Fisher – Whenever an entity subject to HIPAA experiences a data breach, notification must be given to the Office for Civil Rights. Once OCR receives notification of a breach, an investigation will typically follow. That combination is a sure way for broader issues to be uncovered. That is the scenario that played out in the most recent settlement announced by OCR.
Read More
By Jim Tate – On the first day of his second term (January 20, 2025), President Trump signed Executive Order (EO) 14168, “Defending Women from Gender Ideology Extremism and Restoring Biological Truth to the Federal Government.”
By Matt Fisher – Ambient listening technology is growing in many areas and being incorporated into a lot of different applications. What does the ambient listening do? It automatically picks up conversations and other sounds around it to be processed for one purpose or another.
By Lance Reid – Who doesn’t love a plan? Leaders love plans to set a positive course for their businesses. I love plans, too. Sales plans. Cybersecurity plans. Employee development plans. Business continuity plans. Plans help executives and team leaders get on the same page and move forward in a common, predetermined direction.
By Susan Clark – In the Venn diagram of healthcare IT organizations, HIT nonprofits, and their workgroups, you’ll see many places where two, three, or more groups intersect.
By Matt Fisher – Apparently the Office for Civil Rights does still have older resolved HIPAA concerns in its hopper to release. The latest release about a civil monetary penalty continues the ongoing enforcement focus on the right of access.
By Matt Fisher – The Office for Civil Rights announced another cyber incident driven HIPAA civil monetary penalty on February 20, 2025. The settlement broke a one month lull in HIPAA enforcement announcements, though looking at the dates in the documents (all go back to the last quarter or so of 2024), it may not necessarily be an indication that enforcement of HIPAA remains an ongoing immediate priority.
By Beth Friedman – After attending more HIMSS Conferences than I can count, I can confidently say HIMSS’25 was the most dynamic yet. The energy was undeniable—packed sessions, buzzing exhibit halls, and a crowd that showed up ready to tackle healthcare’s biggest challenges.
By Lance Reid – Phishing attempts can happen at any time and to anyone within an organization. As threat vectors continue to multiply and AI becomes more powerful, attempts to extract information in order to instigate a hack or ransomware attack will only increase.