Matthew Fisher

HIPAA and Ransomware: OCR Guidance

By Matt Fisher – After promising to provide guidance and insight for a breaking issue, the OCR came out with ransomware guidance under HIPAA. One major issue for debate was whether a ransomware attack constitutes a HIPAA breach. The guidance provides insight into where OCR is coming from and what it expects the industry to do in response to a ransomware attack.



Fraud Takedown: Same Old Song, Expanding Dance

By Matt Fisher – It seems as though multiple times per year the Department of Justice, HHS, or some other enforcement agency announces the largest sweep or takedown of health care related fraud. A joint Department of Justice and HHS announcement on June 22, 2016 is the latest example.



Reminder of Brave New Business Associate World

By Matt Fisher – Potentially lost in the week leading up to the July 4th holiday weekend, the OCR announced its latest HIPAA related breach settlement. The settlement is one of the first directed at a business associate and serves as a pointed reminder that business associates may be directly liable for the breaches that they may cause.



How Much Is That Medical Record In The Window?

By Matt Fisher – A patient contacts their physician’s office and asks for a copy of their medical record. The expected response would seem to be obvious. Sure, we will copy the record and send it to your shortly. Not only will the record be sent, but it will be sent in an easily accessible format and exactly as requested.


Mobile Health Apps: Much to Consider

By Matt Fisher – Mobile apps are a topic of frequent discussion in the healthcare field these days. Questions include what regulatory requirements apply, are the apps trustworthy, is information kept safe and secure, and others. The question of what regulations apply in particular leaves many confused and uncertain as to what needs to be done.