Recent Posts

Update: HIPAA and Same-sex Marriage

Understanding Spouse, Family Member, and  Marriage in the Privacy Rule The HIPAA Privacy Rule contains several provisions that recognize the integral role that family members, such as spouses, often play in a patient’s health care. For example, the Privacy Rule allows covered entities to share information about

Read more

Checklist: Safe Disposal of Patient Data

A covered entity or business associate must remain in accordance with HIPAA  164.310d(1), Physical Safeguards – security procedures need to include: “Device and media controls. Implement policies and procedures that govern the receipt and removal of hardware and electronic media that contain electronic protected health information into

Read more

Ensuring the Security of Patients’ Data

A survey from the Verizon Enterprise revealed that 46% of healthcare patient data breaches are attributed to lost or stolen devices containing electronic Protected Health Information (ePHI).  While many of these small healthcare practices are aware that patient data breaches hurt business, most of them can take

Read more

Does my healthcare practice need to be HIPAA/HITECH certified?

We mentioned earlier in one of our blog posts that we would get back to you about the HIPAA/HITECH “Certification” question that lot of  the healthcare practices are asking about …  Certification by a third-party is not required for Covered Entities and Business Associates unlike PCI or

Read more

60 Minutes to Social Media Success

  The first objection many healthcare practioners give about participating in social media is lack of time. We won’t kid you; social media can be  time consuming. But the reality is your patients, employees and business associates are finding time for social media so how long do

Read more

HIPAA/HITECH assessment for Healthcare Business Associates

The American Recovery and Reinvestment Act of 2009 ( Section 13411 of the HITECH Act) requires HHS to consider Healthcare Business Associates like the healthcare covered entities. Business associates are required to comply with the HIPAA Privacy and Security Rules and Breach Notification standards just like the

Read more

Meaningful Use EHR Incentive Audit

How to Prepare for Meaningful Use EHR Incentive Audit – Are you prepared for the ongoing CMS audit? – Do you maintain adequate documentation to prove meaningful use core, menu and CQM rules are met? – Is your security risk analysis and mitigation plan updated? Among other things, the

Read more

How to Develop HIPAA Security Awareness and Training for Healthcare Staff?

The purpose of the HIPAA security awareness and training program is to educate all workforce members including management on security policies and procedures of Protected Health Information (PHI). This updated training needs to be provided to all new employees and repeated annually for all employees. There are several

Read more

Full-time/Part-time Healthcare IT Auditors

Overview  EHR 2.0 is seeking a passionate and experienced IT auditor with a strong technical audit background. As a team member of growing healthcare security and compliance services division, the ideal candidate will be responsible for coordinating HIPAA assessment, implementing recommendations and providing other consulting services for

Read more

OCR/HHS HIPAA/HITECH Audit preparations for Healthcare Organisations

Among other things, the HITECH Act significantly strengthened HIPAA enforcement activities. In addition to increasing penalties, allowing enforcement by state attorneys general, requiring notices of breaches, and making business associates directly subject to penalties, the HITECH Act mandated that Office for Civil Rights of HHS conduct HIPAA

Read more
Page 8 of 14« First...678910...Last »