One of our medical practice clients contacted us regarding a breach of Protected Health Information (PHI) by their billing company. The client received a letter from the billing company’s attorney stating that 60 of the client’s patients had their information breached when the billing company’s file server was compromised. The PHI included treatment reports, name,...
referralMD has a very interesting article and infographic on paper based referrals. They take a look at HIPAA violations as well. Courtesy of: referralMD
We are at an inflection point regarding HIPAA enforcement. For years we have talked about HIPAA regulations including the HIPAA Security Rule, HITECH Act, small scale HIPAA audits and the HIPAA Omnibus Rule but true HIPAA enforcement has eluded us. Are we at a fork in the road where HIPAA enforcement and compliance with HIPAA...
Here is a list of common HIPAA violations that we find while performing a HIPAA Risk Assessment: Using Dropbox to store PHI Everyone loves Dropbox! Dropbox is simple, easy to use and convenient. It makes backing up and sharing data very easy. Unfortunately Dropbox is NOT HIPAA compliant. So use Dropbox for personal use but...
Austin, TX — (SBWIRE) — 03/25/2014 — HIPAA Secure Now! (HSN) was voted best vendor at the ASCII IT SMB Success Summit held in Austin, TX. The ASCII event was well attended by Managed Service Providers (MSPs). HSN was represented by Art Gross HSN President and CEO and Patrick Felicetta HSN National Partner Relations. Gross...
When it comes to complying with the HIPAA Security and Omnibus Rules, there is a lot of confusion as to what needs to be done. And if you look at the amount of work it can be overwhelming; security risk assessment, employee training, policies and procedures, business associates, breach notification, encryption, disaster recovery to name...
We have been writing about the permanent HIPAA audit program that will be put in place in 2014. Details of the program are starting to be released. The full text can be access by going to: Agency Information Collection Activities; Proposed Collection; Public Comment Request Here are some of the highlights: Number of Organizations A...
The HIPAA Omnibus Rule made major changes to how Business Associates are regulated under HIPAA. How can I tell if my cloud vendor is HIPAA compliant? One of the most frequent questions that we get asked by clients: How can I tell if my cloud vendor is HIPAA compliant? A lot goes into being HIPAA...
HealthITSecurity.com has a very good article called What the HIPAA Omnibus Rule meant for healthcare in 2013 They give a good overview of the HIPAA Omnibus Rule and its impact. What I found even more interesting is some of the comments by OCR regarding their plans for 2014. It gives clear insight into the permanent...
U.S. Department of Health & Human Services’ (HHS) Office of Civil Rights (OCR) has produced a series of videos. The videos are targeted at both providers and patients. The message is clear, providers have the responsibility to protect patient information. Patients are educated on their rights and told to file a complaint if they feel...
Recent Comments