Home Tags HIPAA

Tag: HIPAA

DICOM file security: How malware can hide behind HIPAA-protected images...

Check out this interested article here. Photo by Owen Beard on Unsplash

Aetna Pays $1,000,000 to Settle Three HIPAA Breaches via DHHS OCR...

Aetna Life Insurance Company and the affiliated covered entity (Aetna) has agreed to pay $1,000,000 to the Office for Civil Rights (OCR) at the...

Orthopedic Clinic Pays $1.5 Million to Settle Systemic Noncompliance with HIPAA...

Athens Orthopedic Clinic PA ("Athens Orthopedic") has agreed to pay $1,500,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health...

New Health Apps Section on HHS.gov/HIPAA via OCR Listserv

On September 2nd, 2020, the OCR launched a new feature on HHS.gov, titled Health Apps.  This new webpage takes the place of OCR’s previous Health...

COVID-19 Cyber Threat Resources

April 30, 2020 Cyber-criminals may take advantage of the current COVID-19 global pandemic for their own financial gain or other malicious motives.  However, resources are...

Webinar Recording Now Available: OCR Update on HIPAA and COVID-19

The HHS Office for Civil Rights (OCR) hosted a webinar on April 24, 2020, for health IT stakeholders on HIPAA privacy and security issues...

Webinar: OCR Update on HIPAA and COVID-19 on 4/24 at 12pm...

The HHS Office for Civil Rights (OCR) is hosting a webinar for health IT stakeholders on HIPAA privacy and security issues related to COVID-19...

OCR Announces Notification of Enforcement Discretion to Allow Uses and Disclosures...

Today (April 2, 2020), the Office for Civil Rights (OCR) at the U.S Department of Health and Human Services (HHS) announced, effective immediately, that...

OCR Issues Bulletin on Civil Rights Laws and HIPAA Flexibilities That...

March 28, 2020 Today, the Office for Civil Rights (OCR) at the U.S Department of Health and Human Services (HHS) is issuing a bulletin to...

HIPAA Compliance Checklist from Comparitech

This article is a great 101 overview with some extra goodies on how to conduct a HIPAA compliance checklist.

Pandemics and Personal Data

Jared Walker of Zasio writes a great blog post on Pandemics and Personal Data

OCR Issues Guidance on Telehealth Video Technology: Recommends Business Skype...

March 17, 2020 Notification of Enforcement Discretion for Telehealth Remote Communications during the COVID-19 Nationwide Public Health Emergency We are empowering medical providers to serve patients...

What IG Pros Need to Know about the Coronavirus Outbreak via...

Check out an article I wrote for IG World regarding the Coronavirus for IG and Privacy professionals.

Data sharing and outbreaks: best practice exemplified via The Lancet

A great article that discusses how to share data during a health outbreak.

Important Notice Regarding Individuals’ Right of Access to Health Records via...

Notice issued on January 28th, 2020 On January 25, 2013, HHS published a final rule entitled “Modifications to the HIPAA Privacy, Security, and Enforcement Rules...

White Paper – Data Protection Law: An Overview by Congressional Research...

A publicly available 75-page PDF that covers the origins of privacy in the US and how privacy has evolved in the US from GLBA,...

OCR Imposes a $1.6 Million Civil Money Penalty against Texas Health...

Nov 7, 2019 The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) has imposed a $1,600,000 civil money...

Failure to encrypt mobile devices results in $3 million HIPAA settlement

A US health system is forced to settle as a result of not encrypting mobile phones. Check out the source or the report...

New HIPAA Security Risk Assessment Tool incorporates NIST framework

Version 3.1 of the HHS Security Risk Assessment (SRA) Tool features new functionality

Tropical Storm Barry: Limited Waiver of HIPAA Sanctions and Penalties During...

Severe disasters – such as Tropical Storm Barry – impose additional challenges on health care providers.  Health and Human Services (HHS) Secretary Alex Azar...

New HHS Fact Sheet on Direct Liability of Business Associates under...

The HHS Office for Civil Rights (OCR) has issued a new fact sheet that provides a clear compilation of all provisions through which a...

Indiana Medical Records Service Pays $100,000 to Settle HIPAA Breach

Medical Informatics Engineering, Inc. (MIE) has paid $100,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services,...

New HHS Checklist Helps First Responders Ensure Language Access and Effective...

Dec 11, 2018 Washington, DC – The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) has unveiled a plain language checklist to...

Yes, HIPAA Requires Medical Records to Be Emailed to Patients if...

Daniel Solove via Teachprivacy.com 11/29/2018 Have you ever asked your healthcare provider to send you medical records by email?  Most likely, you’ve received the reply:...