By Art Gross – The OCR within the U.S. Department of Health and Human Services is responsible for enforcing compliance with HIPAA. As part of its mandate, the OCR annually releases a report on data breaches in the healthcare industry. The most recent report, which covers the year 2021, was recently released.
Read More
By Art Gross – The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that was enacted in 1996 to protect the privacy and security of individuals’ health information. It established requirements for covered entities, such as healthcare providers, insurance companies, and…
By Matt Fisher – When a new form of technology hits the market, many people will rush to use it in an attempt to tap into the perceived new worlds being opened. Healthcare has experienced that rush many times, especially in the current age of technology explosion.
By Art Gross – Artificial intelligence is rapidly transforming many industries and healthcare is no exception. With the advent of AI, healthcare businesses may face different threats to their cybersecurity. As a result, they could find their business in possible violation of HIPAA rules and regulations.
By Matt Fisher – The early days of February 2023 saw two very different settlements announced related to healthcare data breaches. One arguably follows a well-known course and the other could be a sign of things to come.
By Art Gross – As technology advances, more healthcare providers adopt digital technologies. Therefore, HIPAA compliance in regard to text messages and chat services becomes increasingly important. The HIPAA Privacy Rule was created to protect the privacy of personal health information.
By Matt Fisher – Stop if you’ve heard this story before: a dental practice was unhappy with patient reviews left on Yelp, so responded. In responding, the practice disclosed patient information including names and diagnoses. That is the basic outline of the latest settlement announced by the OCR to resolve an alleged HIPAA violation.
By Art Gross – A security risk assessment must be conducted to maintain HIPAA compliance per the Security Rule. A security risk assessment is also referred to as an SRA. It is a requirement for government plans such as Medicare, Obamacare, and Medicaid.
The OCR at the U.S. Department of Health and Human Services issued a bulletin to highlight the obligations of HIPAA on covered entities and business associates under the HIPAA Privacy, Security, and Breach Notification Rules when using online tracking technologies.