By Marla Durben Hirsch – Providers continue to be confused as to how to dispose of their trash without running afoul of HIPAA. But the stakes are now higher – because it’s often the provider’s trash collector that’s exposing the patient data that’s in the garbage.
Read More
By Matt Fisher – The OCR did not wait long into 2017 to issue its first settlement for a HIPAA related breach. The honor for Presence Health came only nine days into the year.
Significant changes to EHNAC accreditation programs to align with OCR Phase II Protocol, HIPAA privacy and security consistency, DirectTrust’s new release of Certificate and HISP Policies.
By Art Gross – In a cruel twist of fate, health care entities are being phished using an OCR (HHS Office of Civil Rights) email as the bait. Here is the context: HHS/OCR is the governmental entity in charge of enforcing the HIPAA statutes.
By Matt Fisher – When it comes to HIPAA compliance, no stone can be left unturned. The most recent HIPAA settlement announced by the OCR continues the trend of using settlement agreements to highlight specific areas of HIPAA for compliance.
By Lisa Eramo – In the coming months, physician practices may find themselves thrust into the HIPAA spotlight thanks to an Office for Civil Rights’ email announcement in August that it would soon target data breaches affecting fewer than 500 individuals.
By Chris Apgar – The Office of Civil Rights is in the midst of the latest round of HIPAA audits. If your organization is a business associate (BA) or a covered entity (CE) and it’s not already prepared, you have a challenge facing you.
By Jim Johnson – With the first round of HIPPA Audits behind us, the Office of Civil Rights indicated back in March that it would finally launch the long-awaited round 2 of HIPAA audits in 2016.
By David Harlow – The latest OCR HIPAA guidance on cloud computing will probably not satisfy those who keep calling for an overhaul of HIPAA because it dates from an era when health records were kept on cuneiform tablets.