Skip to content Skip to navigation

HIPAA

Awareness and Training: First Steps to Protecting Visual Privacy

May 13, 2016  |  Kate Borten, founder of The Marblehead Group consultancy
article
While technical controls are indeed essential for protecting your organization’s most sensitive data, they by no means should be your only approach to ensuring data privacy. This is especially true when it comes to “visual” privacy.

As Opioid Legislation Moves Forward, AHA, Other Organizations Call for Changes to Part 2 Privacy Rules

May 13, 2016  |  Heather Landi
news
Several healthcare organizations are pressing federal legislators to amend the privacy laws of 42 CFR Part 2 to enable providers to access a patient’s entire medical record in order to better coordinate care for patients with substance use disorders.

Sixth Annual Ponemon Survey: Criminal Attacks Cause 50% of Breaches

May 12, 2016  |  David Raths
article
Despite an increase in awareness about threats to patient data, the sixth annual survey of healthcare organizations by the Ponemon Institute suggests that the number and impact of data breaches are not declining.

Report: When It Comes to Healthcare Data Breaches, OCR Should “Prevent More than It Punishes”

May 5, 2016  |  Heather Landi
news
To help prevent medical data breaches, healthcare organizations should embrace cyber insurance and better communicate with each other about security strategies, yet federal agencies also need to step up their preventive measures, according to a new report.

Is Encryption a Safe Harbor From Data Breach Reporting? Not in Tennessee

May 4, 2016  |  David Raths
blog
A recent amendment to Tennessee’s data breach notification statute has eliminated a provision requiring notice only in the event of a breach of unencrypted personal information.

NATE, CommonWell Come Together for Interoperability Goals

May 3, 2016  |  Rajiv Leventhal
news
The National Association for Trusted Exchange (NATE) and CommonWell Health Alliance have announced that each would become a member of the other’s organization, agreeing to establish a complementary relationship with the goal of enhancing cross-vendor...

Orthopedic Clinic Pays $750K HIPAA Settlement For Disclosing PHI Without a Business Associate Agreement

April 22, 2016  |  Heather Landi
news
Raleigh Orthopaedic Clinic of North Carolina agreed this week to pay $750,000 to settle charges that it allegedly violated privacy rules by providing patients’ protected health information (PHI) to a business partner without first executing a business associate...

New York Presbyterian Hospital to Pay $2.2 Million for Disclosure of Patients’ PHI

April 22, 2016  |  Heather Landi
news
The Department of Health and Human Services (HHS), Office for Civil Rights (OCR) this week announced it had reached a $2.2 million settlement with New York Presbyterian Hospital (NYP) related to the unauthorized filming of two patients for an episode of “NY Med.”

Report: Healthcare Organizations Must Use Layered Endpoint Security to Combat Ransomware “Blitzkrieg”

April 20, 2016  |  Heather Landi
news
Securing vulnerable endpoints in an organization’s network is the first step in the battle against ransomware and is one part of a layered defense, according to a new report from the Institute for Critical Infrastructure Technology.

Survey: 96% of Health IT Leaders Feel Vulnerable to Data Threats, Yet Focus Remains on Compliance

April 14, 2016  |  Heather Landi
news
Many healthcare organizations seem to be taking a “business as usual” approach with regard to security spending, as a survey of senior healthcare IT professionals found meeting compliance requirements was a higher spending priority than preventing data breaches.

Healthcare Accounted for 39% of Data Breaches in 2015; High Value of Data Attractive to Cyber Criminals and Identity Thieves, Reports Say

April 13, 2016  |  Heather Landi
news
The largest number of data breaches in 2015 took place within health services, comprising 39 percent of all breaches last year, according to an Internet Security Threat Report from Symantec, which also reports that ransomware increased 35 percent in 2015.

FTC Launches New Web-Based Tool for mHealth App Developers

April 11, 2016  |  Heather Landi
news
The Federal Trade Commission (FTC) released a new web-based, multi-agency interactive tool for developers of health-related mobile apps to serve as guidance about applicable federal laws and regulations.

Pages

Subscribe to HIPAA