This post is updated with an official company statement below Adult & Pediatric Dermatology of Concord, MA has agreed to pay a $150,000 HIPAA fine as a result of a HHS Office of Civil Rights (OCR) investigation. The 12 physician practice was investigated by OCR after they reported a loss of an unencrypted thumb drive...
Morristown, NJ — (SBWIRE) — 12/10/2013 — HIPAA Secure Now! (HSN) announced today a low cost HIPAA security service aimed at organizations with 10 or fewer employees. The new service called the HIPAA Basic Service includes a thorough HIPAA / Meaningful Use risk assessment, HIPAA security training / compliance testing for all employees and 1...
The Office of the National Coordinator for Health Information Technology (ONC) has published a list of the top 10 Myths of Security Risk Analysis. The complete list can be found here: http://www.healthit.gov/providers-professionals/top-10-myths-security-risk-analysis The first myth is one we get asked about all the time. 1.) The security risk analysis is optional for small providers. False....
Nobody thinks complying with the HIPAA Security and Omnibus Rules are easy. Both HIPAA regulations are hundreds of pages long, require a lot of understanding, planning, policies and technology to be in full compliance. It should be noted that there is a huge difference between not complying, trying to comply and being in full compliance...
Leon Rodriguez, director of the U.S. Department of Health & Human Services’ (HHS) Office for Civil Rights (OCR), spoke this week at the HIMSS Privacy and Security Forum in Boston. Rodriquez gave some interesting insight into where HIPAA enforcement is going. The permanent audit program is scheduled to be in place the beginning of 2014....
September 23, 2013, the official date that HIPAA Omnibus regulations are enforced. One of the results of the new HIPAA Omnibus Rule is that it has raised awareness of HIPAA regulations. Existing covered entities (hospitals, physicians, dentists, chiropractors) and business associates (IT companies, medical billing, law firms, etc.) are scurrying around in efforts to be...
Here is a secret that compliance experts have known for a long time: It is very difficult to be 100% compliant with HIPAA regulations Of course, you have probably seen claims like these: Buy our product and we will make you HIPAA compliant Compliance in a box! Be HIPAA compliant in 30 days! Snake oil...
Big HIPAA penalties and fines make great news headlines. Recently the managed care company WellPoint Inc. agreed to pay a $1.7 million fine to settle potential HIPAA violations. False sense of security Large fines make headlines and show that violating HIPAA regulations can be very expensive. Unfortunately it can have an opposite effect as well....
One of the requirements of the HIPAA Security Rule is to audit access to Protected Health Information (PHI). Auditing is the recording of access to PHI. It usually includes: who accessed PHI, when was PHI accessed and what PHI was accessed? Many EHRs and all certified EHRs for Meaningful Use have the ability to audit...
Pilot Program Last year the Department of Health and Human Services’ Office for Civil Rights (OCR), which enforces HIPAA, conducted 115 HIPAA compliance audits. The program is being looked at as a pilot project that will eventually be used to put in place a permanent audit program. According to a HealthcareInfoSecurity interview with OCR’s Susan...
© 2025 · HIPAA Secure Now!
Recent Comments