New Guidance Proves Cloud Services Are Business Associates
By Mike Semel – Itβs over. New guidance from the federal Office for Civil Rights (OCR) confirms that cloud services that store patient information must comply with HIPAA.
Read MoreMike Semel
Health IT Issues that Deserve a Second Read β August 2016
One of the ways that HITECH Answers is different from other media sites is the sense of community. The thought leaders in our community are good about sharing their thoughts on the issues of today. Here are the top read and shared guest posts of August.
The 7 HIPAA Audit Items the Feds Selected
By Mike Semel – The Office for Civil Rights announced that the new permanent audit program has started. On July 11 letters were sent BY E-MAIL (check your junk mail folders!) to 167 health plans, health care providers, and health care clearing houses (all HIPAA Covered Entities) notifying them that they have to send in documentation for a βdesk audit.β They will have 10 days to send in the required materials for review.
Security & Compliance are Executive Responsibilities
By Mike Semel – By the time you read the ransom note it is too late for your patients/clients, your organizationβs reputation, and maybe your career. But it doesnβt have to be. You can deal with Security and Compliance at the executive level now, and invest adequate attention and resources.
The FTC is the New Sheriff in Town
By Mike Semel – Donβt believe βWeβre from the government and we are here to help you.β After a data breach in 2006 the FTC settled with ChoicePoint for $ 10 million and a 20-year monitored compliance program. Twenty-Years! In 2012 a company that had a HIPAA data breach was forced out of the state for two years by the Minnesota Attorney General.
Ignoring HIPAA Law Costly for Hospital
By Mike Semel – Once you become aware of a HIPAA data breach it is not a good idea to sweep it under the rug, especially when that is breaking the law and anyone who finds out can report you. Just because they are free and easy doesnβt mean you should use just any Internet file sharing service for storing patient information.
Security By Walking Around
By Mike Semel – When we think Cyber-Security we logically think about technology tools to block North Korean or Chinese hackers from breaking into our networks. Those breaches make the news because they are so unique. What is much more common are users doing stupid things that neutralize your investment in security tools.
RIP Your HIPAA Rights Arenβt Buried With You
By Mike Semel – Just because you die your medical information isnβt free for the taking. The HITECH Act of 2009 says that your HIPAA privacy rights continue for 50 years past your death, providing safeguards but also questions, confusion, and frustration.
HIPAA Enforcement Goes Beyond OCR
HIPAA Enforcement Blind Spots By Mike Semel Blog: 4Medapproved.com/HITSecurity Twitter: @SemelConsulting HIPAA enforcement has increased in recent years, but the US Department of Health and…