HIPAA

Skipping something as fundamental as a risk assessment can have devastating consequences. Excellus Health Plan is a case in point. The insurer paid $5.1 million in settlement after hackers breached its systems and exposed the data of 9.3 million patients.  The cause? Routine security practices—like monitoring and access reviews—had been overlooked.   Unfortunately, they’re not alone….

Data breaches may be inevitable for healthcare organizations. But implementing HIPAA safeguards can go a long way toward helping you protect confidential patient information. But what’s that got to with your website? A lot. Especially if you host or plan on hosting a website that stores or transmits protected health information. Your website isn’t just…

Let’s say you have built HIPAA-compliant software, trained your staff, and have a dedicated HIPAA compliance officer to oversee your compliance requirements.  But you can still get pulled up by the Office of Civil Rights (OCR) if your email isn’t HIPAA compliant! Is your email HIPAA compliant? This is what we are going to discuss…

A HIPAA awareness assessment revealed that over 50% of employees are not well-trained to handle PHI. 61% of employees failed a test on computer safety rules and 43% regularly divulged sensitive information.  Given the explosive nature and severity of these mishaps, IT leaders often find themselves struggling to calibrate their moves and set effective protocols…

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that protects patients’ sensitive health information. As a Business Associate (BA), you must comply with the HIPAA Privacy, Security, and Breach Notification rules. When you fail to do so, the HIPAA Enforcement Rule defines what follows. In this article, you will…