HIPAA

Understanding the OCR 90-Day Transition Period

By Art Gross – The Office for Civil Rights 90-day transition period commenced on May 12, 2023. As a HIPAA compliance company, we understand the importance of staying up-to-date with regulatory changes. Let’s delve into the transition period and its significance, and provide guidance on how your organization can ensure seamless compliance in this evolving landscape.

Read More

Privacy vs. Security Rule

By Art Gross – When it comes to HIPAA compliance, it’s easy to feel as if you’re being pulled in a million different directions at once. In part, this could be due to the fact that there are 4 different rules that go into HIPAA: the Privacy Rule, the Security Rule, the Breach Notification Rule, and the Omnibus Rule.


Physical Safeguards for HIPAA Compliance

By Art Gross – While it’s easy to get caught up in the many, many words of policies and procedures, how your space physically looks and functions are just as important. Physical safeguards play a vital role in achieving HIPAA compliance and keeping sensitive data out of the wrong hands.


HIPAA: Deficient or Miscast

By Matt Fisher – The development of new technology in healthcare and the massive expansion in sources of healthcare data have both created many complications when it comes to protecting and securing sensitive information about individuals.


Information Blocking Regulations Work in Concert with HIPAA Rules

By Rachel Nelson & Kathryn Marchesini – We often get asked about how ONC’s information blocking regulations and HHS’ Office for Civil Rights’ HIPAA Privacy, Security, and Breach Notification Rules interact with one another. To help clarify, ONC just released a few new information blocking FAQs that illustrate how the federal regulations interact.


HIPAA Security Policies

By Art Gross – In healthcare, it is crucial to ensure the security and privacy of electronic health records and all patient data with security policies. HIPAA provides guidelines for healthcare organizations and covered entities to follow in order to maintain the confidentiality, integrity, and availability of patient health information PHI, or ePHI.


Restructuring the OCR

By Art Gross – The Health and Human Services Office for Civil Rights is responsible for enforcing and protecting civil rights and privacy rights in the healthcare industry. With the increasing number of complaints and reviews regarding HIPAA and the HITECH Act, the OCR has recently undergone…


OCR Healthcare Report Released

By Art Gross – The OCR within the U.S. Department of Health and Human Services is responsible for enforcing compliance with HIPAA. As part of its mandate, the OCR annually releases a report on data breaches in the healthcare industry. The most recent report, which covers the year 2021, was recently released.