Skip to content Skip to navigation


Lahey Hospital and Medical Center Fined $850K for Potential HIPAA Security Violations

November 25, 2015  |  Heather Landi
Burlington, Mass.-based Lahey Hospital and Medical Center this week agreed to pay $850,000 to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules stemming from a 2011 security breach.

Black Book Research: IT Outsourcing Poised for Growth in Healthcare Payer Sector

November 23, 2015  |  Rajiv Leventhal
A new Black Book Research report estimates the demands of data security, population health and value-based benefits solutions—and revenue cycle modernization—will drive the payer IT outsourcing market in excess of $60 billion by the end of 2017.

Cloud Forward: CIOs Overcome IT Security Concerns

November 18, 2015  |  Heather Landi
Once viewed with trepidation, cloud computing is proving to be a viable technology in healthcare, driven by the need for cost savings, IT staffing challenges, better access to data and even patient engagement.

HITRUST’s Early Efforts to Collect, Share Cyber Threat Data Produces Mixed Results

November 17, 2015  |  Heather Landi
A review of the HITRUST Cyber Threat XChange (CTX), a program to help healthcare organizations collect and share cyber threat information, found that participation, so far, has been low and there are significant gaps in the collection and usability of cyber...

Washington Debrief: Medical Identity Theft a Concern for Congress; CMS Releases New FAQs on MU

November 16, 2015  |  Leslie Kriegstein, Interim Vice President of Public Policy, CHIME
Leaders of the Senate Finance and Health, Education, Labor and Pensions committees last week sought answers from the Obama administration on what’s being done to assist victims of medical identity theft.

EHNAC Accredits Two Data Registries for Handling PHI

November 16, 2015  |  Heather Landi
The Electronic Healthcare Network Accreditation Commission (EHNAC) has granted full accreditation status to two beta test participants, Alpha II, LLC and FIGmd, Inc., for its Data Registry Accreditation Program (DRAP).

Children’s Medical Clinics of East Texas Reports Data Breach of 16K Pediatric Patient Records

November 13, 2015  |  Heather Landi
Kaufman, Texas-based Children’s Medical Clinics of East Texas has notified families of patients that an employee improperly accessed patient health information, according to a breach notification letter posted on the clinic’s website.

White House Reveals Privacy and Trust Principles for Precision Medicine Initiative

November 13, 2015  |  Rajiv Leventhal
As part of its Precision Medicine Initiative (PMI) announced in January 2015, the White House’s interagency agency working group has developed privacy and trust principles for activities within the agenda.

Senators Probe HHS About Efforts to Mitigate Medical Identity Theft

November 12, 2015  |  Heather Landi
Citing the growing number of data breaches at healthcare organizations, four U.S. Senators are asking the Department of Health and Human Services (HHS) what the agency is doing to mitigate medical identity theft.

Mac McMillan Elected to Board of Trustees for CHIME’s Association for Executives in Healthcare Information Security

November 12, 2015  |  Heather Landi
Information security expert Mac McMillan, CEO of CynergisTek, has been elected to the board of trustees for the Association for Executives in Healthcare Information Security (AEHIS).

Study: Majority of Healthcare Orgs Risk HIPAA Non-Compliance with Consumer Messaging Apps

November 10, 2015  |  Rajiv Leventhal
Just 8 percent of healthcare institutions prohibit consumer messaging apps for employee communication, according to a recent study from Chicago-based Infinite Convergence Solutions, Inc.

Live from the HIMSS Connected Health Conference: Innovation Leaders Push for a More Connected Healthcare—and the Need for Better Data Protection

November 9, 2015  |  Rajiv Leventhal
On the first day of the HIMSS Connected Health Conference, leaders from various healthcare segments came together to push towards a unified goal: to better connect systems and people, and better protect patients' health information.


Subscribe to Privacy/Security