By Mona Abutaleb – The high-stakes threat landscape healthcare organizations operate in today demands that IT partners and hosting providers go beyond HIPAA compliance. It’s time to demand HITRUST CSF certification as well.
Read More
By Art Gross – The terms protected health information (PHI) and personally identifiable information (PII) are often used interchangeably. But while they may sound like the same thing, there are differences that set them apart, and that is especially true when it comes to HIPAA.
By Matt Fisher – The spotlight continues to shine brightly on HIPAA, especially as an excuse, when it comes to professional athletes responding to questions around COVID vaccine status. The most recent string of erroneous responses started strongly over the summer when NFL training camps kicked into gear.
By Art Gross – Health IT is an always evolving realm, with new tools coming to market as fast as we can master the old ones. With the advancement of technology comes a need for new software and security to maintain these systems.
By Susan Walberg JD MPA CHC – As I have written in previous articles about HIPAA and health-tech, many apps in the marketplace have been largely unregulated with respect to the privacy and security of healthcare data. In order for healthcare-related apps to be regulated, for the most part, they needed to be covered under HIPAA.
The Federal Trade Commission issued a policy statement affirming that health apps and connected devices that collect or use consumers’ health information must comply with the Health Breach Notification Rule, which requires that they notify consumers and others when their health data is breached.
By Matt Fisher – The Office for Civil Rights announced its twentieth HIPAA right of access settlement on September 10, 2021, which continues the initiative that has been a primary focal point of enforcement for the past couple of years.
By Matt Fisher – A common area of HIPAA that receives a lot of attention by organization is the Security Rule. The focus is driven by the requirement to implement various policies, procedures, and processes to secure the protected health information in each organization’s possession.
By Susan Walberg JD – Healthcare apps have become increasingly prevalent, with people using them for counting steps, monitoring their calories, or linking to various medical devices, to name just a few examples. Since the COVID outbreak, however, and the explosion of telehealth as a healthcare option, these apps have proliferated at an insane rate.