2021, Governance, Health Insurance and HIPAA - Health Care Compliance Brief

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

HIPAA Journal

MARCH 15, 2023

The United States Department of Justice has agreed to settle alleged False Claims Act violations with Jelly Bean Communications Design LLC and manager Jeremy Spinks related to the failure to protect HIPAA-covered data. FHKC is a state-created entity that offers health and dental insurance to children in Florida between the ages of 5 and 18.

Health Insurance

Health Insurance HIPAA Due Diligence Fraud

Language Barriers: Protecting Your Organization From A Hidden HIPAA Threat

Healthcare IT Today

SEPTEMBER 28, 2023

The following is a guest article by Bill Young, Director of Healthcare & Life Sciences at SYSTRAN Keeping patient data confidential and secure remains a major healthcare challenge today, more than 25 years after the introduction of the 1996 Health Insurance Portability & Accountability Act or HIPAA.

HIPAA

HIPAA US Department of Health and Human Services Governance Health Insurance

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

HIPAA Journal

DECEMBER 1, 2022

Stanley Street Treatment and Resources Discloses October 2021 Data Breach. STAR), has recently announced a data breach that occurred more than a year ago in October 2021. An unauthorized individual was found to have gained access to its network and downloaded files containing the protected health information of 45,785 patients.

Health Insurance

Health Insurance Ransomware HIPAA Governance

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The initial notice to the Maine attorney general was submitted on October 8, 2021.

Ransomware

Ransomware Health Insurance HIPAA Licensing

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

HIPAA Journal

MARCH 23, 2022

New Jersey Brain and Spine (NJBS) has recently announced it was the victim of a cyberattack on or around November 16, 2021, that encrypted data on its network. and Dialyze Direct appeared first on HIPAA Journal. Patients Affected by Breach at Printing and Mailing Vendor. Highmark Inc.,

HIPAA

HIPAA Licensing Health Insurance Governance

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

Dental Health Management Solutions Notified Patients About Historic Data Breach

HIPAA Journal

MARCH 6, 2023

Cedar Park, TX-based Dental Health Management Solutions (DHMS), a provider of dental services to the government/military and private patients has recently announced – via its legal counsel – that the protected health information of certain patients was exposed in a 2021 hacking incident.

Electronic Medical Records

Electronic Medical Records HIPAA Licensing Nurses

SQA Regulatory Surveillance Summary 4 | Monthly Update 2021

SQA

JUNE 10, 2021

SQA Regulatory Surveillance Summary #4, 2021. Brazilian Regulators Update Economic Monitoring Requirements for Some Medical Devices, 26 March 2021. The new regulation takes effect on 01 April 2021. ANVISA: The Advances of 2020 in Regulatory Quality Improvement, 31 March 2021.

FDA

FDA COVID-19 COVID-19 Vaccine Compliance

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

HIPAA Journal

NOVEMBER 21, 2022

million being defrauded from Medicaid, Medicare, and private health insurance programs. According to the FBI, more than $43 billion was lost to these scams between June 2016 and December 2021, and in 2021 alone, the FBI Internet Crime Complaint Center received reports of losses of $2,395,953,296 to BEC scams.

Medicaid

Medicaid Medicaid Medicare Medicare

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

Healthcare Sees 60% YoY Increase in Cyberattacks

HIPAA Journal

NOVEMBER 17, 2022

Education was the most extensively targeted sector in Q3, experiencing an 18% rise in attacks, followed by government/military which saw a 20% increase. Healthcare was the third most targeted sector with an average of 1,426 attacks per month, but saw the second highest percentage increase in attacks, increasing by 60% from 2021.

Ransomware

Ransomware Governance Health Insurance HIPAA

San Diego Family Care Agrees to $1 Million Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

JUNE 16, 2022

The data breach that sparked the lawsuit was announced by the healthcare provider in May 2021 and was reported to the HHS’ Office for Civil Rights (OCR) as affecting 125,500 patients, although the total was later revised to 154,513 patients. Netgain Technologies reportedly paid a $2.3

Ransomware

Ransomware Health Insurance HIPAA Governance

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

HIPAA Journal

JULY 5, 2022

The types of data in the files varied from individual to individual and may have included names, addresses, telephone numbers, dates of birth, Social Security numbers, driver’s license numbers, treatment information, and/or health insurance information. A limited number of patients also had financial account information exposed.

Licensing

Licensing Electronic Medical Records Health Insurance Hospitals

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

Urology of Greater Atlanta Notifies Almost 80,000 Patients About August 2021 Data Breach. Urology of Greater Atlanta has now confirmed that it was the victim of a cyberattack that was detected on August 29, 2021. The VA concluded that there was a low risk of misuse of that information.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

One Brooklyn Health Dealing with Ongoing Cyber Incident

HIPAA Journal

DECEMBER 1, 2022

The investigation revealed files were exfiltrated from its network more than a year previously, on or around October 30, 2021. A review of the files exfiltrated from its system confirmed they contained patient names, Social Security numbers, health insurance information, demographic information, and limited medical information.

Electronic Medical Records

Electronic Medical Records Hospitals Health Insurance HIPAA

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

Innovaare Compliance

MARCH 24, 2024

Balancing AI-Driven Payment Integrity with Provider Relations A large health insurance company implemented an AI-powered payment integrity system to identify and prevent potential fraud, waste, and abuse in healthcare claims. They also streamlined their dispute resolution process to ensure quick and fair resolutions.

Fraud

Fraud Health Insurance Compliance Medicaid

4 Data Security Challenges for Healthcare Organizations in 2022

HIT Consultant

DECEMBER 21, 2022

million in 2021. In addition, Healthcare software providers and organizations must comply with HIPAA (Health Insurance Portability and Accountability Act). Ransomware plagued healthcare organizations in 2020 and 2021, and 2022. Data breaches. The average cost of the healthcare data breach was $9.6 Ransomware.

Ransomware

Ransomware HIPAA Health Insurance Governance

Healthy Data Management: How IT Assists Healthcare Institutions

Healthcare IT Today

DECEMBER 15, 2023

Confidentiality Laws and regulations govern the confidentiality of medical data. In Europe, this is GDPR (General Data Protection Regulation), in America, it’s HIPAA (Health Insurance Portability and Accountability Act). AWS solutions require software compatible with HIPAA standards.

Electronic Medical Records

Electronic Medical Records Doctors HIPAA Hospitals

Healthy Data Management: How IT Assists Healthcare Institutions

HIT Consultant

DECEMBER 18, 2023

Confidentiality Laws and regulations govern the confidentiality of medical data. In Europe, this is GDPR (General Data Protection Regulation), in America, it’s HIPAA (Health Insurance Portability and Accountability Act). AWS solutions require software compatible with HIPAA standards.

Electronic Medical Records

Electronic Medical Records Doctors HIPAA Pharmaceutical Industry

2021 HIPAA “Wall of Shame” Healthcare Data Breaches Up 7.5%

Compliancy Group

JANUARY 25, 2022

With at least six weeks before final numbers are in, the Department of Health and Human Services HIPAA Breach Reporting Tool website is reporting 713 major healthcare data breaches in 2021, an increase of more than 7.5 By the Numbers: Major Healthcare Data Breaches Increase in 2021. million records in 2021.

HIPAA

HIPAA Ransomware Governance Fraud

Is Sharing EHR Passwords a Problem?

AIHC

NOVEMBER 3, 2021

To obtain more information about mitigating the risk of a HIPAA violation, please consult with legal counsel or a HIPAA Security Consultant. These themes range from techniques regarding the location of computers to the usage of firewall software to protect health information. Violating HIPAA law 104-191 can be costly.

HIPAA

HIPAA Compliance Electronic Medical Records Governance

Part 2: Who Regulates Healthcare AI?

AIHC

JUNE 14, 2023

The Federal Drug Administration & AI The Food & Drug Administration (FDA) released a discussion paper in 2019 and then an action plan on January 21, 2021 regarding Artificial Intelligence and Machine Learning, or AI/ML. NIST published prior documents related to AI. Parts 160 and 164, Subparts A, C, and E).

FDA

FDA HIPAA Compliance Regulatory Compliance

Is the Violation Right of Access or Information Blocking? Part 1 of 2

AIHC

MARCH 14, 2023

an AIHC member and Volunteer on the CEU Education Committee The right of access and information blocking are both related to the access and exchange of health information, but they are different in several key ways. HIPAA Privacy/Security and Compliance Officers and Health Information Management professionals need to know the difference.

HIPAA

HIPAA Malpractice Compliance Compliance Officers

Digital Health in the Metaverse: Three Legal Considerations

Healthcare Law Blog

MAY 31, 2022

The FTC’s increasing interest in health information that sits outside of HHS/OCR’s reach is likely to only expand in light of health-related metaverse use cases. The healthcare system in the United States is governed by an expansive network of state and federal laws, including the aforementioned HIPAA regulations.

FDA

FDA HIPAA Medicare Medicare

OIG Issues Final Information Blocking Enforcement Rule and Highlights the Potential for Referrals to the FTC and FCA Liability

Health Care Law Brief

JULY 25, 2023

Unlike developers, exchanges, and networks, the Act does not empower OIG to directly assess penalties for non-compliance against health care providers. [6] At a recent health care conference , HHS officials stated that they anticipate the provider disincentive rules to be published this fall. 1] See 21st Century Cures Act, Pub.

HIPAA

HIPAA Payment Systems Compliance Licensing

5 Key Challenges Preventing Innovation in Digital Health

HIT Consultant

AUGUST 21, 2023

Added to this complexity, regulations around the privacy and security of information, such as the Health Insurance Portability and Accountability Act [HIPAA] in the US, and GDPR throughout the EU must be adhered to. million patients affected by data breaches in 2021 alone.

FDA

FDA Telemedicine Health Insurance Hospitals

Americans Grew Digital Health-Data Muscles in the Pandemic – New Insights from the Pew Charitable Trusts

Health Populi

AUGUST 5, 2021

As digital health industry stakeholders will be convening at the 2021 annual HIMSS conference in Las Vegas and digitally, this report is well-timed to give us a level-set on just “where” U.S. health citizens are with respect to their medical information. One pillar of that trust is privacy. Patients in the U.S.

COVID-19

COVID-19 Federal Policy Doctors Public Health

Healthcare APIs: 3 Ways APIs Differ in Healthcare vs. Enterprise

HIT Consultant

OCTOBER 13, 2021

million in 2021 and is expected to reach $390.9 million in five years— health IT developers need to take several facts into account while mapping out their API strategy. To contribute to and benefit from the healthcare API market—which is globally estimated to be worth $277.4 1) APIs in healthcare are more complex than in enterprise.

Due Diligence

Due Diligence Health Insurance HIPAA Governance

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

AIHC

NOVEMBER 29, 2023

Health Care from a Global Perspective, 2022: Accelerating Spending, Worsening Outcomes indicates that in 2021 the U.S. percent of the gross domestic product (GDP) on healthcare, which was almost two times the average of other high-income countries, while the health outcomes in the U.S. Why this Trend of Value-Based Care?

Medicare

Medicare Medicare Medicaid Medicaid

GAO: HHS Should Establish Mechanism for Obtaining Feedback on HIPAA Data Breach Reporting Process

HIPAA Journal

JUNE 28, 2022

The Government Accountability Office (GAO) has recommended that the Department of Health and Human Services (HHS) establish a feedback mechanism to improve the effectiveness of its data breach reporting process. OCR is the main enforcer of compliance with the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA

HIPAA Compliance Health Insurance Governance

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

AIHC

NOVEMBER 29, 2023

Health Care from a Global Perspective, 2022: Accelerating Spending, Worsening Outcomes indicates that in 2021 the U.S. percent of the gross domestic product (GDP) on healthcare, which was almost two times the average of other high-income countries, while the health outcomes in the U.S. Why this Trend of Value-Based Care?

Medicare

Medicare Medicare Medicaid Medicaid

Cyberattacks Reported by Precision Imaging Centers, Marshall & Melhorn, and Atrium Health Wake Forest Baptist

HIPAA Journal

JULY 3, 2023

The compromised information varied from patient to patient and may have included first and last names, addresses, dates of birth, Social Security numbers, driver’s license numbers, government-issued identification numbers, health insurance information, medical conditions/diagnoses, and other health or medical information.

Health Insurance

Health Insurance Licensing Ransomware HIPAA

Editorial: Time to Stop Blocking a National Patient Identifier System

HIPAA Journal

FEBRUARY 24, 2023

In 1996, the Health Insurance Portability and Accountability Act (HIPAA) was signed into law and one of its requirements was for the Department of Health and Human Services (HHS) to develop a national patient identifier system. Rand Paul, is to stop government involvement in an individual’s healthcare. “As

HIPAA

HIPAA Governance Public Health Fraud

July 2022 Semi-Annual Health IT Market Review

HIT Consultant

JULY 28, 2022

The story began to change in late 2021 as steep inflation took center stage thanks to a near-perfect confluence of excess liquidity, demand acceleration, and supply constraints. Act I: Pre-COVID (Pre-2020) Act II: Post-COVID (2020 – 2021) Act III: Post-Inflation (2022 – ?). The private debt market is tightening.

US Department of Health and Human Services

US Department of Health and Human Services COVID-19 Health Insurance Telemedicine

Using AI Responsibly and Ethically in Healthcare

Healthcare IT Today

FEBRUARY 3, 2023

In 2021, healthcare data breaches impacted 45 million people. The Department of Health and Human Service’s (HHS) Office for Civil Rights received reports of 63 breaches of 500+ records in September 2022. increase from 2021. While AI will increase effectiveness and efficiency, some worry about the cost. Consider the numbers.

HIPAA

HIPAA Health Insurance Governance Licensing

PHI Compromised in Incidents at CorrectHealth, UF Health Shands, Peter Brasseler, & Gifted Healthcare

HIPAA Journal

SEPTEMBER 1, 2022

CorrectHealth Notifies 54,000 Patients About November 2021 Email System Breach. The breach was detected on November 10, 2021, with the investigation confirming several employee email accounts had been accessed by an unauthorized individual. UF Health Shands said the individual is no longer employed by UF Health Shands.

Ransomware

Ransomware Licensing Health Insurance HIPAA

Healthcare Considerations: Addressing Cyber Risk in the Healthcare Industry

HIT Consultant

MAY 9, 2023

During the month of the breach, a cybercriminal was able to access various confidential files, including patient data such as names, contact details, treatments, diagnoses, patient account numbers, their dentist’s names as well as billing details and health insurance data.

Ransomware

Ransomware Fraud Health Insurance HIPAA

Email Breaches Reported by Cardiac Imaging Associates & Centerstone of Tennessee

HIPAA Journal

OCTOBER 11, 2022

The investigation confirmed that several employee email accounts had been accessed by an unknown actor between November 4, 2021, and February 14, 2022. Those email accounts were discovered to contain the personal and protected health information of current and former Centerstone clients.

Licensing

Licensing HIPAA Health Insurance Medicaid

FTC Enforcement Highlights the Importance of Preserving Privacy in AI Development: How to Avoid AI Model Destruction

Health Law Advisor

MAY 5, 2022

While regulatory and enforcement mandates require consistency, transparency and precision in the acquisition and utilization of sensitive data, the current governing AI environment, especially in health care, is one of an incomplete, and sometimes contradictory, patchwork of laws and regulations.

Governance

Governance HIPAA Compliance Health Insurance

The Pendulum Swings Both Ways: State Responses to Protect Reproductive Health Data, Post-Roe

Health Law Advisor

JUNE 17, 2022

Specifically, the Texas Human Life Protection Act of 2021 (“TXHLPA”) would create a felony offense against any person who “knowingly performs, induces, or attempts an abortion.” [2] HIPAA Background. 7] Generally, HIPAA preempts contradictory state law (e.g., 7] Generally, HIPAA preempts contradictory state law (e.g.,

HIPAA

HIPAA ADA Regulatory Compliance Health Insurance

The Most Common HIPAA Violations You Should Avoid

HIPAA Journal

JANUARY 2, 2023

The settlements pursued by the Department of Health and Human Services’ Office for Civil Rights (OCR) are for egregious violations of HIPAA Rules. Settlements are also pursued to highlight common HIPAA violations to raise awareness of the need to comply with specific aspects of HIPAA Rules.

HIPAA

HIPAA Compliance Hospitals Medicare

The Value of an Enterprise Active Data Archive Begins with Patient Safety

HIT Consultant

DECEMBER 26, 2021

Government mandates were an impetus for change, starting with the Health Information Technology for Economic and Clinical Health (HITECH) Act, enacted as part of the American Recovery and Reinvestment Act (ARRA) of 2009 to “promote the adoption and meaningful use of health information technology” (Office of Civil Rights (OCR), 2017).

Due Diligence

Due Diligence Compliance HIPAA Nurses

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

Language Barriers: Protecting Your Organization From A Hidden HIPAA Threat

Trending Sources

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

Dental Health Management Solutions Notified Patients About Historic Data Breach

SQA Regulatory Surveillance Summary 4 | Monthly Update 2021

Is Your Organization HITECH Compliant?

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

Is Your Organization HITECH Compliant?

Healthcare Sees 60% YoY Increase in Cyberattacks

San Diego Family Care Agrees to $1 Million Settlement to Resolve Class Action Data Breach Lawsuit

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

One Brooklyn Health Dealing with Ongoing Cyber Incident

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

4 Data Security Challenges for Healthcare Organizations in 2022

Healthy Data Management: How IT Assists Healthcare Institutions

Healthy Data Management: How IT Assists Healthcare Institutions

2021 HIPAA “Wall of Shame” Healthcare Data Breaches Up 7.5%

Is Sharing EHR Passwords a Problem?

Part 2: Who Regulates Healthcare AI?

Is the Violation Right of Access or Information Blocking? Part 1 of 2

Digital Health in the Metaverse: Three Legal Considerations

OIG Issues Final Information Blocking Enforcement Rule and Highlights the Potential for Referrals to the FTC and FCA Liability

5 Key Challenges Preventing Innovation in Digital Health

Americans Grew Digital Health-Data Muscles in the Pandemic – New Insights from the Pew Charitable Trusts

Healthcare APIs: 3 Ways APIs Differ in Healthcare vs. Enterprise

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

GAO: HHS Should Establish Mechanism for Obtaining Feedback on HIPAA Data Breach Reporting Process

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

Cyberattacks Reported by Precision Imaging Centers, Marshall & Melhorn, and Atrium Health Wake Forest Baptist

Editorial: Time to Stop Blocking a National Patient Identifier System

July 2022 Semi-Annual Health IT Market Review

Using AI Responsibly and Ethically in Healthcare

PHI Compromised in Incidents at CorrectHealth, UF Health Shands, Peter Brasseler, & Gifted Healthcare

Healthcare Considerations: Addressing Cyber Risk in the Healthcare Industry

Email Breaches Reported by Cardiac Imaging Associates & Centerstone of Tennessee

FTC Enforcement Highlights the Importance of Preserving Privacy in AI Development: How to Avoid AI Model Destruction

The Pendulum Swings Both Ways: State Responses to Protect Reproductive Health Data, Post-Roe

The Most Common HIPAA Violations You Should Avoid

The Value of an Enterprise Active Data Archive Begins with Patient Safety

Stay Connected