By Art Gross – Deven McGraw, deputy director of HHS OCR has announced that the department’s plans for initiating onsite audits is currently on hold and will remain so until more than 200 desk audits have been completed.
Read More
By Art Gross – According to an article over on tripwire, a covered entity is facing serious penalties after the Office for Civil Rights issued them a hefty fine for their failure to comply with audit procedures including review, modification and termination of users’ access.
By Matt Fisher – While home on paternity leave taking care of my baby daughter, I’ve had a fair amount fo time to think about different issues, which means I think about HIPAA.
By Marla Durben Hirsch – Providers continue to be confused as to how to dispose of their trash without running afoul of HIPAA. But the stakes are now higher – because it’s often the provider’s trash collector that’s exposing the patient data that’s in the garbage.
By Matt Fisher – The OCR did not wait long into 2017 to issue its first settlement for a HIPAA related breach. The honor for Presence Health came only nine days into the year.
Significant changes to EHNAC accreditation programs to align with OCR Phase II Protocol, HIPAA privacy and security consistency, DirectTrust’s new release of Certificate and HISP Policies.
By Art Gross – In a cruel twist of fate, health care entities are being phished using an OCR (HHS Office of Civil Rights) email as the bait. Here is the context: HHS/OCR is the governmental entity in charge of enforcing the HIPAA statutes.
By Matt Fisher – When it comes to HIPAA compliance, no stone can be left unturned. The most recent HIPAA settlement announced by the OCR continues the trend of using settlement agreements to highlight specific areas of HIPAA for compliance.
By Lisa Eramo – In the coming months, physician practices may find themselves thrust into the HIPAA spotlight thanks to an Office for Civil Rights’ email announcement in August that it would soon target data breaches affecting fewer than 500 individuals.