Security | Compliance | Certification
866-276-8309 or info@ehr20.com

Archive for the Events Category

Colorado hospital failed to terminate former employee’s access to ePHI

Colorado hospital failed to terminate former employee’s access to ePHI

Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security rules requires all healthcare covered entities and their business associates to conduct security risk analysis of their IT infrastructure annually and with any change in process or system. As part of HIPAA rules, all covered entities and their business associates are required to have proper procedure in place to terminate any employees.
Pagosa Springs Medical Center (PSMC) has agreed to pay $111,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services and to adopt a substantial corrective action plan to settle potential HIPAA violations

Read more

Florida contractor physicians’ group shares protected health information with unknown vendor without a business associate agreement

December 8,2018 – Advanced Care Hospitalists PL (ACH) has agreed to pay $500,000 to the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) and to adopt a substantial corrective action plan to settle potential violations of the Health Insurance Portability

Read more

Allergy practice pays $125,000 to settle doctor’s disclosure of patient information to a reporter

November 26, 2018-Allergy Associates of Hartford, P.C.(Allergy Associates), has agreed to pay $125,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to adopt a corrective action plan to settle potential violations of the Health Insurance Portability and

Read more

Security Risk Analysis for 2018 MACRA/MIPA Reporting

The Medicare Access and CHIP Reauthorization Act of 2015 (MACRA) replaced three quality programs (the Medicare Electronic Health Record (EHR) Incentive program, the Physician Quality Reporting System (PQRS), and the Value-Based Payment Modifier (VM) with the Quality Payment Program. This one program will give Medicare physicians and clinicians a chance

Read more

Anthem Pays OCR $16 Million in Record HIPAA Settlement Following Largest U.S. Health Data Breach in History October 15, 2018

            Anthem Pays OCR $16 Million in Record HIPAA Settlement Following Largest U.S. Health Data Breach in History October 15, 2018 Anthem, Inc. has agreed to pay $16 million to the U.S. Department of Health and Human Services, Office for Civil Rights

Read more

Unauthorized Disclosure of Patients’ Protected Health Information

Unauthorized Disclosure of Patients’ Protected Health Information During “Boston Med” Filming Results in Multiple HIPAA Settlements Totaling $999,000 September 20, 2018 Today, the Department of Health and Human Services, Office for Civil Rights (OCR) announced that it has reached separate settlements with Boston Medical Center (BMC), Brigham

Read more

10 Things to Do and Know for MIPS Reporting Deadlines

Deadlines are fast approaching if you plan to submit data for the 2017 Merit-based Incentive Payment System (MIPS) performance period. Don’t wait until the last minute to submit your data. Submit early and often. The two key dates are: • March 16 at 8 pm Eastern time for group

Read more

Update on HIPAA Phase 2 Audits from HIPAA Conference 2017

Linda Sanches from Office for Civil Rights (OCR), U.S. Department of Health and Human Services, provided much anticipated updates on Phase 2 HIPAA audit activities at the annual HIPAA conference. NIST and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR), co-hosted the

Read more

Security Risk Analysis Requirements for Quality Payment Program (MACRA/MIPS)

The Quality Payment Program implements provisions of MACRA, the Medicare Access and CHIP Reauthorization Act of 2015, to reform Medicare Part B payments. The QPP improves Medicare payments by helping you focus on care quality and the one objective that matters most — making patients healthier. The

Read more

Improper faxing of sensitive patient data results in HIPAA penalties

St. Luke’s-Roosevelt Hospital Center Inc. (St. Luke’s) has paid the U.S. Department of Health and Human Services (HHS) $387,200 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a comprehensive corrective action plan. St. Luke’s

Read more

Subscribe

Upcoming Events

  1. HIMSS 19 Conference & Exhibition

    February 11 - February 15
  2. SOC 2 Requirements and Certifications

    February 13 @ 1:00 pm - 2:00 pm