HIPAA violation fines
, , , ,

Will we see reduced HIPAA fines

Are reduced HIPAA fines on the way? In 2019 we wrote an OCR letter that discussed the possible reduction of HIPAA fines. We were all for it - read about it here - OCR Caps HIPAA FInes. It looks like OCR is ready to change the annual fee structure.…
NIST Cybersecurity
, , , ,

New HIPAA guidance is on the way, here’s the good and the bad.

New HIPAA Guidance Years ago, at a HIPAA conference in DC hosted by NIST, they announced an update to 800-66 would be coming. Almost 10 years later, we now have a draft copy of this paper - 800-66r1. Why is this significant? 800-66 was the…
, , , , ,

OCR announces 11 more HIPAA ROA violations

Eleven more fines, are you next? OCR recently announced that 11 more entities were fined for failing to provide timely access to patient records following a patient complaint. This list included mental health practitioners, dentists, and more.…
, , , ,

HIPAA and your password policy – are you compliant?

HIPAA and your password. Thanks to NIST, who in 2017 changed their recommended password policy in publication 800-63B, the change/do not change debate has been ongoing. If you aren't familiar with the publication, here's a short news video…
MCG databreach healthcare
, , , ,

The lawsuits are flowing in the MCG Health breach. Here’s why it’s bad for you.

Vendor Risk MCG Health is a health information services company providing clinical guidelines to hospitals and other care facilities nationwide. They recently reported a breach that had occurred back in 2020, and already lawsuits from their…
, , , ,

Facebook is collecting your health information. Should you care?

Facebook is bad for your health! A report published this week by the website Newsbusters revealed some disturbing information about Facebook. The news organization ran a battery of tests against 100 US hospitals and discovered a third of them…
HIPAA law changes
, , , ,

Get ready for major HIPAA changes

HIPAA Changes Ahead In January of 2021, we reported on an amendment to the HITECH act by congress that intended to advance HIPAA compliance and enforcement. The idea was to incentivize Covered Entities to adopt best practices for cybersecurity…
, , , ,

The hospital attack that wasn’t

How Boston Children's dodged an attack This past week the FBI released details on a cyberattack against Boston Children's Hospital in November of last year. Prior to the attack, CISA and others sent alerts out to the healthcare community warning…
Active shooter training
,

Do you prefer security or privacy? You can’t have both.

What's Happening in Our Schools I was reading the FBI feeds recently following the horrific events in Texas last week. As more information comes to light, it's beginning to look (once again) like the warning signs were there, and here again,…
Zero Trust Network Security
, , , ,

Changing trust by default

Traditional trust-based networking is undergoing a massive paradigm shift, affecting you if it hasn't already. If you think you're losing your freedoms, no place will that be more evident than in your work environment. This stripping of your…
HIPAA Security Rule
, ,

HIPAA Help: What Are the 3 Standards of the HIPAA Security Rule?

Between August 2020 and July 2021, there were 706 healthcare data breaches. This involved exposure to over 500 records and healthcare data for 44,368,781 people. That represents an average of 58.8 breaches of about 3.70 million records a month. All…
, ,

Key Advantages of Online HIPAA Training

As you probably already know, HIPAA is a federal law that created national standards to protect sensitive information from being disclosed without a patient's permission. Therefore, HIPAA compliance is not an option if you're a medical…
, ,

Clever Tricks a Healthcare Provider Can Use to Simplify Their HIPAA Reporting

Last year healthcare providers across the country paid right around $12 million for HIPAA violations.  These types of privacy violations are one of the biggest threats to the financial success of any healthcare provider Luckily, most…
, , ,

Empower Your Employees With a Comprehensive, Live Training Program

The most common cause of a HIPAA violation is a lack of risk assessment and remediation. One of the biggest risks that is often forgotten is employee error and mishaps.  Luckily, there is an easy way to cut these risks almost entirely;…
HIPAA-Compliant Smart AI
, , , , , ,

How HIPAA-Compliant Smart AI Is Revolutionizing Healthcare

HIPAA-compliance means keeping patient information secure and respecting their privacy. HIPAA is much more than a standard practice, it is an ethical matter.  Every aspect of healthcare must be in compliance with HIPAA, even the technology.  This…