A recent HIPAA breach serves as a wake-up call for all businesses handling protected health information (PHI)—especially small and midsize organizations. On April 23, 2025 the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a $600,000 settlement with PIH Health, Inc., a California-based healthcare network. The reason? A phishing...
We’ve said it before and we’ll say it again: Having proactive measures in place is the key to safeguarding patient data. Cyber liability insurance serves as a crucial shield in the battle against cyberattacks, data breaches, and ransomware that can jeopardize the integrity and confidentiality of sensitive patient information. Why All Businesses Need Cyber Liability...
As a HIPAA-covered entity, it is crucial to understand the importance of protecting the privacy and security of patient personal health information (PHI). And a recent surge in litigation serves as a reminder that healthcare organizations must take adequate measures to safeguard PHI. Recent Cases In one recent case, a healthcare provider was sued for...
Health Care Cybersecurity Update on Guidance The National Institute of Standards and Technology (NIST) has provided updated guidance for the health care industry. Designed to help with electronically protected health information (ePHI), they have created a new draft titled Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide (NIST Special...
This year marks the 32nd anniversary of the signing of the Americans with Disabilities Act, known as ADA. This Act is in place to prohibit discrimination against any qualified individual. As outlined on the ADA National Network site, it ‘is a civil rights law that prohibits discrimination against individuals with disabilities in all areas of...
March 1st, 2022 is the deadline for breach reporting for HIPAA-covered entities and their business associates – and the date is fast approaching! The HIPAA Breach Notification Rule requirement means that HIPAA-covered entities, as well as any of their business associates, notify the appropriate parties, including the Office for Civil Rights (OCR) Secretary of Health...
The HIPAA Breach Notification Rule is a requirement put in place that requires HIPAA-covered entities and their business associates to “provide notification following a breach of unsecured protected health information.” The details provide an outline for how healthcare providers, hospitals, and physicians must notify the affected individuals, the Secretary of the U.S. Department of Health...
Recently the Department of Health and Human Services (HHS) along with the Office for Civil Rights (OCR) issued an announcement regarding extreme risk protection order (ERPO) laws and the disclosure of protected health information (PHI). This published model was created as a way to provide each state with a framework to consider as they implement...
Whether you choose to get a vaccine for COVID-19, it is your decision. We aren’t here to provide personal medical guidance or tell you what is right for you. But with regard to informing you about the healthcare landscape, well, that’s part of our program here at HIPAA Secure Now. And we would be remiss...
With romance in the air for the upcoming Valentine’s Day holiday, we thought we’d shine a light on the ways that HIPAA can be affected by love in the workplace and what rules are in place to address it. Are there ethical repercussions to dating your doctor? Can my significant other access my medical records?...
© 2025 · HIPAA Secure Now!
Recent Comments