By Ken Reiher – Conducting regular HIPAA security risk assessments helps CEs ensure compliance with HIPAA’s administrative, physical and technical safeguards, and helps expose areas where an organization’s protected health information could be at risk.
HIPAA Complaints, OCR Investigations, and Security Risk Analysis for Healthcare Delivery Organizations – A Common Thread
By Rich Curtiss – Many HIPAA covered entities (CEs) and business associates (BAs) may not be meeting the regulatory mandate as defined in §164.308(a)(1)(ii)(A) of the HIPAA Security Rule. This implementation specification requires that healthcare delivery organizations…
By Matt Fisher – With the holidays quickly receding, there was some time for reflection. When given that time (and honestly spurred to some degree by the HIPAA request for information), different issues about HIPAA wandered through my mind.
By Matt Fisher – The Office for Civil Rights is now seeking comments on whether certain aspects of the HIPAA privacy and security rules should be modified. The Request for Information is purely a solicitation of comments and ideas from the public on whether or how HIPAA could be modified.
Heard on the Hill: AHIMA and AMIA Call for Better Patient Access to Health Information in Congressional Briefing
By Rita Bowen – On Wednesday, December 5, 2018, I visited Capitol Hill with colleagues from AHIMA and the AMIA to address challenges around patient access to health information and to propose ways to modernize HIPAA to better support patient care.
By Matt Fisher – After a slow start to the year in terms of HIPAA settlement, the OCR is trying to finish the year with a bang. Since September 20, 2018, OCR has announced four different HIPAA settlements. The nature of the conduct underlying each settlement has varied widely.
By William A. Hyman – In the continued theme of easing burdens previously created, HHS now wants to know, via a Request for Information, how HIPAA rules “may impede the transformation to value-based health care” or “limit or discourage coordinated care among individuals and…
By Matt Fisher – Healthcare organizations are learning tough lessons that actions of employees can come back with serious consequences to the organization. When it comes to maintaining the privacy and security of patient data, no action comes without a consequence.
Attend the next HIPAA Chat …… On our last HIPAA Chat for the year, host David Harlow and his guest, national expert Art Gross, discuss the biggest topics of the year, and how you can better prepare yourself for security and compliance in 2019.
By Matt Fisher – Healthcare has become a hotbed for startups of all kinds from new provider models to insurance companies to health technology. No matter what area of healthcare is targeted by a startup, the desire is to proceed with innovation or disruption bolstered by a feeling that this idea will be the one to change healthcare.
By Art Gross – It’s no secret that employees violate security policies. Whether we’d like to admit it or not, there’s a good chance we have all violated a security policy once upon a time.
By Matt Fisher – An interesting argument was posed in a recent post on databreaches[.]net about a lack of enforcement actions from the Office for Civil Rights against small or medium-sized healthcare entities that do not appropriately report breaches to either OCR and/or the individuals impacted.
OUR STREAMING RADIO STATION
HealthcareNOW Radio – Past Episodes On Demand
Miss any episodes of your favorite HealthcareNOW Radio shows? Find them all on our SoundCloud Channel. Play or Download Here