Archive for the HIPAA/HITECH Compliance Assurance Category

HIPAA Fine for Lack of Timely Breach Notification 

The U.S. Department of Health and Human Services, Office for Civil Rights (OCR), has announced the first Health Insurance Portability and Accountability Act (HIPAA) settlement of 2017 based on the untimely reporting of a breach of unsecured protected health information (PHI).  Presence Health has agreed to settle

Read more

HIPAA Compliance 2016 Year in Review

Planning for the upcoming year is a chance to review the main developments in Healthcare IT HPAA Compliance from 2016 that will affect providers, business associates, and patients. Priorities remain to uphold confidentiality, integrity, and availability of patient data, factoring in the latest proceedings in technological and

Read more

Eye Associates of Pinellas HIPAA Compliance

Eye Associates of Pinellas is the latest victim of HIPAA Compliance violation. Practice reported an incident of the data breach of their patient data at the hands of a third party vendor. The Eye Associates of Pinellas, located in Florida recently issued a statement to its patients

Read more

HHS’s First Step to MACRA Legislation

Administration takes first step to implementing legislation modernizing how Medicare pays physicians for quality On April 27th, 2016, The Department of Health and Human Services  issued a proposal to align and modernize how Medicare payments are tied to the cost and quality of patient care for hundreds

Read more

Office of Inspector General: OCR should strengthen its oversight of covered entities’ compliance with the HIPAA privacy standards.

OIG has recently completed a study of OCR’s HIPAA audit program and published the following recommendations: (1) OCR should fully implement a permanent audit program (2) OCR should maintain complete documentation of corrective action (3) OCR should develop an efficient method in its case-tracking system to search

Read more

Is patient protected health information safe if a Covered Entity has a dispute with their Business Associate?

How do you ensure Electronic protected health information (ePHI) is safeguarded when a contract between a Covered Entity and a Business Associate ends? Especially when there is a dispute. A Business Associate Agreement between a Covered Entity and their Business Associate must clearly spell out the following

Read more

Does my healthcare practice need to be HIPAA/HITECH certified?

We mentioned earlier in one of our blog posts that we would get back to you about the HIPAA/HITECH “Certification” question that lot of  the healthcare practices are asking about …  Certification by a third-party is not required for Covered Entities and Business Associates unlike PCI or

Read more

How to Develop HIPAA Security Awareness and Training for Healthcare Staff?

The purpose of the HIPAA security awareness and training program is to educate all workforce members including management on security policies and procedures of Protected Health Information (PHI). This updated training needs to be provided to all new employees and repeated annually for all employees. There are several

Read more

Vote for EHR 2.0 submission for creating online privacy practice notice

EHR 2.0’s team is participating in ONC challenge to create online notice of privacy practice entry.  Our online application requires only few minutes of customization by Covered Entities to create notice of privacy practices that they could provide to their patients via mobile, web or other end-user

Read more

HIPAA Security Vulnerability

What is the Heartbleed bug? The Heartbleed bug is a serious vulnerability in the popular OpenSSL cryptographic software library. OpenSSL is an implementation of the SSL/TLS encryption protocol used to protect the privacy of Internet communications between two parties.  Many websites and applications like email, Instant messaging

Read more
Page 1 of 212

Subscribe for Updates