By Matt Fisher – A recent settlement announcement from the U.S. Department of Health and Human Services Office for Civil Rights (“OCR”) highlights the need to evaluate web-based applications and storage solutions. Web-based or cloud solutions are viable options and tools for healthcare entities to utilize, but those tools need to evaluated for compliance with HIPAA security requirements.
Read More
By Art Gross – Now that the 2015 HIPAA Audits have begun, organizations are reevaluating their HIPAA compliance posture. This is a good thing being that an organization will have very little time to respond to pre-audit and audit inquiries from the Office of Civil Rights (OCR).
By Matt Fisher – Another HIPAA breach settlement announcement and another lesson from the Department of Health and Human Services Office for Civil Rights (“OCR”). Cornell Prescription Pharmacy (“Cornell”) is a single location pharmacy located in Colorado that will pay OCR $125,000 to resolve allegations of a variety of HIPAA violations. When the facts of the circumstances are described, it will likely raise questions as to why the settlement was so low.
OCR is ramping up their HIPAA privacy and security audit program for covered entities (CEs) and business associates (BAs). Delayed until 2015, the second round of HIPAA audits is expected to be more pragmatic and comprehensive.
Don’t Stop Compliance Efforts By Matt Fisher, Esq Twitter: @matt_r_fisher The new round of HIPAA audits expected to start this fall has been delayed. The…
OCR Warns Enforcement To Increase Dramatically By Matt Fisher, Esq Twitter: @matt_r_fisher Recent reports, statements and actions from the government emphasize the need for all…
HIPAA-HITECH Blue Ribbon Panel to Discuss Risk Analysis and Risk Management Live Web Event Thursday, May 29, 4:30 pm EDT/3:30 PM CDT HHS/OCR has signaled loud…
News from HHS HHS Press Release Two entities have paid the U.S. Department of Health and Human Services Office for Civil Rights (OCR) $1,975,220 collectively to…
HIPAA Enforcement Blind Spots By Mike Semel Blog: 4Medapproved.com/HITSecurity Twitter: @SemelConsulting HIPAA enforcement has increased in recent years, but the US Department of Health and…