Recent Posts

What we learnt from NIST sponsored HIPAA conference in DC

EHR 2.0 team had an opportunity to attend and learn from NIST sponsored HIPAA conference in DC on 22nd and 23rd of September.  It was a fun-filled event with 300 + live attendees and 200 + webcast attendees.  We have learned lot of things from the conference:

Read more

Top Health Industry Stakeholders react to HHS’s latest changes to MU Stage 2

There is industry wide concern in the ability of healthcare organizations to continue participating in the MU program. The latest changes to Stage 2, published on Sep 4 2014 Federal Register mandates the EHR reporting period in 2015 to be for 365 days. A long list of

Read more

Update: HIPAA and Same-sex Marriage

Understanding Spouse, Family Member, and  Marriage in the Privacy Rule The HIPAA Privacy Rule contains several provisions that recognize the integral role that family members, such as spouses, often play in a patient’s health care. For example, the Privacy Rule allows covered entities to share information about

Read more

Checklist: Safe Disposal of Patient Data

A covered entity or business associate must remain in accordance with HIPAA  164.310d(1), Physical Safeguards – security procedures need to include: “Device and media controls. Implement policies and procedures that govern the receipt and removal of hardware and electronic media that contain electronic protected health information into

Read more

Ensuring the Security of Patients’ Data

A survey from the Verizon Enterprise revealed that 46% of healthcare patient data breaches are attributed to lost or stolen devices containing electronic Protected Health Information (ePHI).  While many of these small healthcare practices are aware that patient data breaches hurt business, most of them can take

Read more

Does my healthcare practice need to be HIPAA/HITECH certified?

We mentioned earlier in one of our blog posts that we would get back to you about the HIPAA/HITECH “Certification” question that lot of  the healthcare practices are asking about …  Certification by a third-party is not required for Covered Entities and Business Associates unlike PCI or

Read more

60 Minutes to Social Media Success

  The first objection many healthcare practioners give about participating in social media is lack of time. We won’t kid you; social media can be  time consuming. But the reality is your patients, employees and business associates are finding time for social media so how long do

Read more

HIPAA/HITECH assessment for Healthcare Business Associates

The American Recovery and Reinvestment Act of 2009 ( Section 13411 of the HITECH Act) requires HHS to consider Healthcare Business Associates like the healthcare covered entities. Business associates are required to comply with the HIPAA Privacy and Security Rules and Breach Notification standards just like the

Read more

Meaningful Use EHR Incentive Audit

How to Prepare for Meaningful Use EHR Incentive Audit – Are you prepared for the ongoing CMS audit? – Do you maintain adequate documentation to prove meaningful use core, menu and CQM rules are met? – Is your security risk analysis and mitigation plan updated? Among other things, the

Read more

How to Develop HIPAA Security Awareness and Training for Healthcare Staff?

The purpose of the HIPAA security awareness and training program is to educate all workforce members including management on security policies and procedures of Protected Health Information (PHI). This updated training needs to be provided to all new employees and repeated annually for all employees. There are several

Read more
Page 8 of 15« First...678910...Last »