The Center for Children’s Digestive Health has paid the U.S. Department of Health and Human Services (HHS) $31,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a corrective action plan, according to HHS.
CCDH is a small, for-profit health care provider with a pediatric subspecialty practice that operates its practice in seven clinic locations in Illinois.
HHS reports that in August 2015, the HHS Office for Civil Rights (OCR) initiated a compliance review of the Center for Children’s Digestive Health following an initiation of an investigation of a business associate, FileFax, Inc., which stored records containing protected health information (PHI) for the healthcare provider. While Center for Children’s Digestive Health began disclosing PHI to Filefax in 2003, neither party could produce a signed Business Associate Agreement (BAA) prior to Oct. 12, 2015, according to HHS. Additionally, neither party could produce a signed BAA prior to Oct. 2015, HHS stated.
HHS also has issued guidance regarding business associate agreements, which can be found here.
Get the latest information on Cybersecurity and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.
U.S. Senators Joni Ernst (R-IA) and Mazie Hirono (D-HI), both members of the Senate Armed Services Committee, reintroduced this week the Veterans E-Health and Telemedicine Support Act of 2017 (VETS Act), bipartisan legislation that aims to expand telehealth services provided by the Department of Veterans Affairs (VA).
The number of reported breach incidents in healthcare grew by 22 percent in 2016 from 269 breach incidents in 2015 to 328 last year, according to Symantec’s 2017 Internet Security Threat Report (ISTR).
The Sequoia Project is celebrating its fifth anniversary this month by announcing that its various interoperability initiatives have grown by health organization participants, by geographic reach, and by the sheer number of health records exchanged electronically.
Seventy-two percent of employee say they would share sensitive, confidential or regulated company information under certain circumstances and 68 percent of healthcare employees report that they share confidential or regulated data on occasion, according to the Dell End-User Security Survey.