By Matt Fisher – A Shakespearean Tangle: The current state of medical data is very complicated. The amount of medical data being created is exploding all of the time. The explosion is being facilitated by the always increasing number of ways of creating it and a broadening array of people or entities how want access to it.
Read More
By Art Gross – The Computer Fraud and Abuse Act CFAA is not a very widely known piece of federal legislation but could help companies that have been victims of employee or ex-employee theft of digital information. According to an article over at Fox Rothschild LLP the CFAA can be used to help companies that have had employees or ex-employees steal or access unauthorized information.
By Kirk J Nahra – By now, most people have felt the effects of the HIPAA Privacy Rule (from the Health Insurance Portability and Accountability Act). HIPAA has set the primary standard for the privacy of healthcare information in the United States since the rule went into effect in 2003.
By Art Gross – The Department of Health and Human Services Office of Inspector General has issued a report that is critical of the Office for Civil Rights. OIG concluded that OCR is not fulfilling its responsibility to enforce HIPAA regulations that safeguard protected health information (PHI) and to ensure that organizations protect patient’s privacy.
By Matt Fisher – The Office of the Inspector General HHS recently released the review results from its assessment of the Office for Civil Rights oversight of the HIPAA Compliance Rule. Not too surprisingly, the OIG found weaknesses in the way in which OCR oversees compliance with the HIPAA Privacy Rule.
By Steve Spearman – Access controls are mechanisms that appropriately limit access to resources. Having and maintaining access controls are a critical and required aspect of HIPAA compliance, They also help authenticate and ensure the integrity of your EHR,
By Nicole Lewis, iHealthBeat – A study from Dell, in collaboration with research firm TNS, found that 96% of mid-size health care organizations surveyed are using or are considering moving health care information to cloud computing.
By Matt Fisher – After waiting with bated breath for almost a year, the day when full scale HIPPA audits will start is almost here. During a keynote address the the HIPAA Security Conference co-hosted by the HHS Office for Civil Rights and the National Institute of Standards and Technology (“NIST”), OCR Director Jocelyn Samuels revealed that the day when audits will start is getting closer.
The switch to ICD-10 is mandatory for organizations covered by the HHIPAA, known as “HIPAA-covered entities.” Organizations not covered by the HIPAA, or “non-covered entities,” are not required to transition to ICD-10, but are strongly encouraged to do so. Non-covered entities include property and casualty insurance carriers, including auto insurers and workers’ compensation plans.