HIPAA Compliance

HIPAA Compliance


OCR Releases New HIPAA Guidance on Ransomware

July 22nd, 2016

​In 2015, Ransomware cost the US Healthcare industry nearly 6 billion dollars. Even more concerning is that there has been a 300% increase in ransomware attacks in 2016, according to a recent report from the U.S. Government.


A Patient’s Right to Access Medical Records

June 15th, 2016

Most medical practices, healthcare organizations, and clinicians are very familiar with HIPAA rules and regulation. However, the law can be extensively complicated and is often a source of confusion and misinterpretation. According to the Office for Civil Rights (OCR), one of the most common complaints and frequently misunderstood parts of the law involves a patient’s right to access their personal medical records.


Keeping Your Patients Medical Data Safe

May 17th, 2016

Cyber criminals and hackers are targeting the healthcare industry at staggering rates, and huge profits are being made on the black market from patient’s PHI (personal healthcare information). PHI is said to be ten times more valuable than credit card information because it contains highly sensitive data such as social security numbers, birth dates, addresses, credit card information, telephone numbers, Medicare numbers, and prescriptions.


Phase 2 of HIPAA Audit Program Now Underway

March 28th, 2016

On March 21, 2016, The HHS Office for Civil Rights (“OCR”) announced that the Phase 2 of HIPAA audits are now underway. The purpose of the audits is to assess the compliance of covered entities and business associates with HIPAA Privacy, Security and Breach Notification Rules.


7 Most Common HIPAA Violations That Can Cost Your Practice

February 17th, 2016

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was established to set national standards for the confidentiality, security, and transmissibility of personal health information. Violations of this Act can result in substantial fines to a practice ranging from $100 to $1.5 million.


Are you too BIG or too SMALL to have a breach?

March 12th, 2015

Regardless of whether or not you are a big company or a small company, you can still be subjected to a breach.  Today’s hackers are professionals.  Hackers have one thing in mind, “YOU”, not you as a person, but you, who has information that will benefit only “THEM”. 
Hackers are looking...


Safeguarding Confidential Information is not just a HIPAA Obligation

July 30th, 2014

What if one of your friends asks you questions about your current job duties, and what it is your organization does. What information would you share? Should you only be concerned with HIPAA obligations?

Safeguarding Confidential Information is not just a HIPAA Obligation
Throughout your career you may be asked questions about...


The Security Risk Analysis: An Essential Step Towards HIPAA Compliance

November 11th, 2013

This article was written by Karen Pass, Senior Compliance Specialist with MedSafe.
There are many important elements to implementing an effective HIPAA Program, but none are more important than completing a security risk analysis. Conducting a risk analysis will give your practice an accurate and thorough assessment of the potential risks...


1 2