Health Care Compliance Brief

Health IT Leadership’s Role in Patient Data Security and Privacy

Healthcare IT Today

JANUARY 26, 2024

This leaves us with the big question of what role Health IT leadership plays in ensuring the security and privacy of patient data , and what strategies can leaders employ to address emerging cybersecurity threats. Health IT leaders must partner with business leaders to establish and enforce security policies.

Compliance

Compliance Ransomware

Security and Privacy Hurdles Plaguing AI-Driven Health Services

Healthcare IT Today

OCTOBER 25, 2023

Sriram Rajagopalan , Enterprise Agile Evangelist at Inflectra Today’s most significant risk regarding security and privacy issues in health services is consumers’ need for more awareness of personal health information. What do I mean? In such cases, the HCP/HCO becomes the covered entity.

HIPAA

HIPAA Licensing Doctors Nurses

New Framework for Assessing the Privacy, Security, and Safety of Digital Health Technologies

HIPAA Journal

MAY 6, 2022

The American College of Physicians (ACP), American Telemedicine Association (ATA), and the Organization for the Review of Care and Health Applications (ORCHA) have collaborated to produce a new framework for assessing the digital health technologies used by healthcare professionals and patients.

HIPAA

HIPAA Telemedicine Health Insurance Governance

HHS opens investigation into Change Healthcare cyberattack

Healthcare Dive

MARCH 14, 2024

The Office for Civil Rights will focus on whether protected health information was breached and if UnitedHealth complied with privacy and security requirements.

ViVE 2023: Hospitals, health tech companies face shortages in data privacy, security talent. Recruiting 'outsiders' could be one fix

Fierce Healthcare

MARCH 27, 2023

ViVE 2023: Hospitals, health tech companies face shortages in data privacy, security talent. Recruiting 'outsiders' could be one fix dmuoio Tue, 03/28/2023 - 00:26

Hospitals

HHS urges patient education on privacy basics

Healthcare It News

OCTOBER 19, 2023

Department of Health and Human Services Office of Civil Rights has released two new patient privacy resources that healthcare organizations can use to educate patients about reducing their risks of a breach of their protected health information when using telemedicine technologies.

HIPAA

HIPAA Telemedicine Governance

Sharing hospital website user data with 3rd parties is common, study shows

Healthcare It News

APRIL 18, 2024

A new statistical analysis of 90 distinct hospital websites, drawn from a nationally representative sample of 100 community hospitals, finds that those providers – when they had privacy policies available for consumption – were inadequate in how they accurately disclosed the use of third-party tracking technologies to consumers.

Hospitals

Hospitals HIPAA

Skyflow Secures $45M to Expand Health Data Privacy Vault – HLTH21

HIT Consultant

OCTOBER 19, 2021

What You Should Know: – Skyflow , a Palo Alto, CA-based customer data privacy company, today announced a $45M Series B financing round led by Insight Partners. What if privacy had an API? Skyflow started with a very simple question: What if privacy had an API?” said Anshu Sharma, co-founder and CEO at Skyflow.

Compliance

Privacy and Security — Protecting Patients’ Health Information

NEJM

NOVEMBER 18, 2022

medical privacy provisions, the HIPAA Privacy and Security Rules, provide patients with important protections and place obligations on providers, but they have limitations. The most comprehensive U.S.

HIPAA

Study: Popular women's health apps don't meet basic privacy, security standards

Mobi Health News

MAY 11, 2022

Only 16 displayed a privacy policy, and three collected data before consent. The researchers found 20 of the 23 apps reviewed shared data with third parties.

ONC pubs Common Agreement v2.0, with regs for FHIR exchange

Healthcare It News

APRIL 22, 2024

The Office of the National Coordinator for Health IT and the Sequoia Project on Monday announced the launch of Common Agreement Version 2.0, WHY IT MATTERS ONC and Sequoia say the seven designated Qualified Health Information Networks under TEFCA can now adopt and begin implementing the new version, CA v2.0, Enterprise Taxonomy:

Public Health

Public Health Governance

Sensitive Data Requires Great Responsibility: The Importance of ‘Privacy and Security by Design’ in Healthcare

HIT Consultant

DECEMBER 22, 2023

For companies entrusted with managing and protecting patients’ personal information, ensuring the privacy of that data must be the highest priority. These companies are called to act as vigilant guardians, especially when you consider that secure and accurate data can literally save lives.

Compliance

Compliance Health Insurance HIPAA

HHS issues guidance on the use of online tracking tools in healthcare CRM

Healthcare It News

DECEMBER 2, 2022

Department of Health and Human Services issued a bulletin to highlight the obligations on covered entities and business associates under HIPAA's Privacy, Security and Breach Notification Rules when using online tracking technologies. Specifically, the Bulletin provides insight and examples of: Tracking on webpages.

HIPAA

HIPAA Compliance

WebMD Ignite collaborates on data privacy in omnichannel outreach

Healthcare It News

OCTOBER 24, 2023

Healthcare organizations can now prevent protected health information collected by their marketing channels from reaching destinations where organizations do not have a business associate agreement, according to WebMD Ignite and Freshpaint. At the same time, protecting privacy and security are also paramount.

HIPAA

HIPAA Hospitals Public Health Governance

Rethinking culture in healthcare cybersecurity strategy

Healthcare It News

JULY 31, 2023

Data privacy is about more than keeping personal information safe and secure, says Dr. Eric Liederman, Kaiser Permanente's director of medical informatics – it's an essential component for establishing trust with patients that healthcare organizations take personal safety seriously.

Ransomware

Ransomware Health Insurance HIPAA Governance

Why HHS’ Cybersecurity Concept Paper Falls Short for Healthcare

Healthcare IT Today

JANUARY 12, 2024

For example, in the healthcare industry, we have to abide by HIPAA — a law that helps protect the privacy and security of people’s health information. We can’t serve our patients if we don’t ensure that protected health information (PHI) is kept private.

Ransomware

Ransomware Hospitals HIPAA Health Insurance

HITECH Compliance

AIHC

APRIL 10, 2024

Checklist for Individual & Small Group Practices Written by: Nancie Lee Cummins, CFE, CHA, CIFHA, OHCC, CHCM, CHCO, CORCM This article provides an overview of Health Information Technology for Economic and Clinical Health Act (HITECH) and basic checklist of policies and procedures for compliance of smaller health care organizations.

Compliance

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records

Diabetes WA reports hack and more briefs

Healthcare It News

APRIL 5, 2024

Following this incident, Diabetes WA said it will "further reinforce our technology security measures to protect us from potential future attacks." My Health Record enables access to NHI Te Whatu Ora recently announced that it has enabled access to more health information on its latest My Health Record platform.

COVID-19

COVID-19 Medicare Medicare Hospitals

Navigating the Interoperability Maze: 3 Key Challenges for Healthcare Providers and Payers

Healthcare IT Today

FEBRUARY 21, 2024

Healthcare organizations often operate on disparate electronic health record (EHR) systems, each with their own unique structure and data format. Data Security and Privacy Concerns: The sensitive nature of healthcare data raises significant concerns about data security and patient privacy.

Compliance

Compliance HIPAA Hospitals

Protecting the Consumer at the Heart of DTC Precision Medicine

Bill of Health

OCTOBER 27, 2023

By Adithi Iyer In my last piece , I discussed the hypothetical successor of 23andme — a tissue-based direct-to-consumer testing service I’ve called yourtissueandyou — and the promise and perils that it might bring in consumer health information and privacy. Consumer protections for this type of information are, in a word, complicated.

HIPAA

HIPAA FDA Informed Consent Health Insurance

New healthcare privacy challenges as online data tracking, sharing methods evolve

Healthcare It News

NOVEMBER 16, 2022

This past June, a John Doe plaintiff who was a patient at Baltimore-based Medstar Health System filed a class action complaint against Meta Platforms in the U.S. Meanwhile, in August, Novant Health disclosed a data breach related to the Java tracking script that may have affected 1.3 And several major U.S. million individuals.

US Department of Health and Human Services

US Department of Health and Human Services HIPAA Hospitals Governance

HIPAA Compliance for Behavioral Health Billing

Medisys Compliance

APRIL 24, 2024

Introduction As a behavioral health provider, protecting your patients’ privacy must be your top priority. The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that safeguards the privacy of individuals’ health information, including mental health and substance abuse treatment records.

HIPAA

HIPAA Compliance Medical Billing Outsourcing Medical Billing

HIPAA Security Rule and Security Risk Assessments in Healthcare

HealthIT Answers

MARCH 28, 2024

By Art Gross - While HIPAA is all about protecting patient privacy, the Privacy Rule is just one of five areas of regulation. When it comes to annual requirements, the other heavy hitter is the Security Rule, which focuses on securing technology.

HIPAA

HIPAA Compliance

Improving Cybersecurity and Increasing Accountability in 2024

HealthIT Answers

DECEMBER 14, 2023

Our annual predictions for 2024 continues with Privacy, Security, Compliance. Check back as we cover AI, value-based care, interoperability, privacy, security, access, and equality. The post Improving Cybersecurity and Increasing Accountability in 2024 appeared first on Health IT Answers.

Compliance

Mitigating Risk and Reducing Costs with Smart Healthcare Records Management

Healthcare IT Today

DECEMBER 21, 2023

The following is a guest article by Mitchell Perry, VP Compliance & Security at Access In the ever-evolving landscape of healthcare IT in US healthcare frameworks, integrating electronic health records (EHRs) has become a cornerstone for providers.

Records Management

Records Management Regulatory Compliance Compliance HIPAA

HIMSS24 Cyber Forum keynote stresses collaboration on standards

Healthcare IT News - Telehealth

MARCH 11, 2024

Constitution as one of the original agencies," she told top healthcare cybersecurity leaders there to discuss the best cybersecurity practices and strategies to secure data and ultimately protect healthcare delivery. The latest project NCCoE is taking up looks at both the security and privacy of genomic data.

HIPAA

Study: Popular women's health apps don't meet basic privacy, security standards

Healthcare IT News - Telehealth

MAY 11, 2022

Enterprise Taxonomy:

Interoperability, are we getting anywhere?

HealthIT Answers

JANUARY 3, 2024

Check out all the coverage in AI, value-based care, population health, digital health, privacy, security, access, and equality. appeared first on Health IT Answers. Throughout the past weeks we have been asking the industry experts what they think we will see in 2024.

How a rushed California law will change the privacy and security landscape for mobile health apps

Mobi Health News

JULY 27, 2018

Greene, JD, MPH, a partner and co-chair of Davis Wright Tremaine’s health information practice, and former Senior Health Information Technology and Privacy Specialist at the HHS Office for Civil Rights, where he was responsible for applying the HIPAA Privacy, Security, and Breach Notification Rules to health IT.

HIPAA

Cybersecurity and HIPAA Overview Training for Healthcare Personnel

American Medical Compliance

APRIL 24, 2024

Understanding HIPAA Compliance The Health Insurance Portability and Accountability Act (HIPAA), enacted in 1996, is a critical regulation in the United States that sets the standard for protecting sensitive patient data. This Rule gives patients rights over their health information.

HIPAA

HIPAA Electronic Medical Records Compliance Health Insurance

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

HIPAA Journal

APRIL 23, 2024

According to the notification sent to the Maine Attorney General, the breach included names and Social Security numbers and affected 26,663 individuals. Island Ambulatory Surgery Center said it takes privacy and security seriously and has implemented measures to prevent similar incidents in the future.

Ransomware

Ransomware Fraud Licensing HIPAA

Feds Launches Investigation of Change Healthcare Cybersecurity Attack

HIT Consultant

MARCH 13, 2024

What You Should Know: – The Department of Health and Human Services’ Office for Civil Rights (OCR) has announced an investigation into the recent cyberattack on Change Healthcare , a subsidiary of UnitedHealth Group (UHG). In 2023, hacking accounted for 79% of the large breaches reported to OCR.

Ransomware

Ransomware HIPAA Compliance Health Insurance

Health Systems Grapple with AI Governance: Balancing Promise and Risk

HIT Consultant

FEBRUARY 15, 2024

What You Should Know: – Despite the increasing adoption of artificial intelligence (AI) in healthcare, a new survey reveals that very few health systems have formal policies in place to govern its use, particularly for generative AI. The Need for Governance: Only 16% of surveyed health systems have a formal AI governance policy.

Governance

Will 2024 See True Value-Based Care Transformation?

HealthIT Answers

DECEMBER 18, 2023

Check back as we cover AI, digital health, interoperability, privacy, security, access, and equality. appeared first on Health IT Answers. Throughout the next few weeks we will be asking the industry experts what they think we will see in 2024. The post Will 2024 See True Value-Based Care Transformation?

Securing Healthcare Data in AWS: Best Practices and Compliance

Healthcare IT Today

NOVEMBER 30, 2023

Hospital records contain sensitive data, including diagnostic details and sensitive personal health information. This information must be protected to avoid any legal implications and ensure compliance with privacy regulatory laws, like the Health Insurance Portability and Accountability Act (HIPAA). What is HIPAA?

Compliance

Compliance HIPAA Health Insurance Hospitals

Comparing HIPAA and NIST

Total HIPAA

NOVEMBER 1, 2023

In the ever-evolving landscape of data security and privacy, two key frameworks have emerged as significant players: HIPAA and NIST. HIPAA, particularly through its Security Rule, establishes standards for the protection of electronic protected health information (ePHI).

HIPAA

HIPAA Compliance Health Insurance Governance

FTC settles first case on privacy, security of genetic information with 1Health.io

Fierce Healthcare

SEPTEMBER 11, 2023

failed to protect sensitive genetic and health data of consumers and deceived them about its privacy and security practices. The FTC alleged 1Health.io

HIPAA Compliance for Email

HIPAA Journal

APRIL 5, 2024

Standards relevant to HIPAA compliance for email appear throughout the HIPAA Administrative Simplification Regulations – from the applicability and preemption standards of Part 160 (the General Requirements) to the privacy, security, and breach notification standards of Part 164.

HIPAA

HIPAA Compliance

Guarding Patient Privacy in the Age of AI Healthcare

HIT Consultant

NOVEMBER 27, 2023

Kevin Kirkwood, Deputy CISO, LogRhythm 2022 research from Morning Consult reveals that the healthcare field in particular has witnessed substantial enhancements in medical diagnoses, mental health evaluations, and the expeditious discovery of treatment options following the implementation of artificial intelligence (AI). In fact, 59% of U.S.

Compliance

Compliance Regulatory Compliance HIPAA Health Insurance

Email Accounts Compromised at UW Health and Medical Home Network

HIPAA Journal

APRIL 22, 2024

University of Wisconsin Hospitals and Clinics Authority Email Account Breach The University of Wisconsin Hospitals and Clinics Authority (UW Health) recently provided an update on a security incident that was detected in late 2023. The breach was recently reported to the HHS’ Office for Civil Rights as affecting 85,902 individuals.

HIPAA

HIPAA Hospitals Health Insurance

Truveta Unveils Largest Mother-Child EHR Dataset for Pregnancy and Pediatric Research

HIT Consultant

APRIL 26, 2024

What You Should Know: – Truveta , a data company dedicated to “Saving Lives with Data,” announced today the launch of the most comprehensive mother-child electronic health record (EHR) dataset ever assembled. Unmatched Privacy and Security: Truveta prioritizes data privacy and security.

Health Outcomes

Health Outcomes HIPAA

ATA takes a national stance on how states treat consumer health data

Healthcare IT News - Telehealth

AUGUST 31, 2023

Following conversations in Washington and state capitals, the American Telemedicine Association published its new Health Data Privacy Principles this week. ATA, which represents the full range of providers that deliver telehealth, has intervened with some states as they grapple with health data privacy legislation, he said.

HIPAA

HIPAA COVID-19 Telemedicine Health Insurance

Nevada Joins Washington and Connecticut to Protect Consumer Health Data Privacy

Health Law Advisor

JULY 11, 2023

On June 16, 2023, Nevada enacted Senate Bill 370 (“ SB 370 ”), which imposes broad restrictions on the collection, use, and sale of consumer health data. Click here for EBG’s previous discussions of the My Health, My Data Act, along with other recent state privacy law developments.

HIPAA

HIPAA Governance Health Insurance

What Are HIPAA Laws?

HIPAA Journal

JULY 19, 2023

The main objective of HIPAA law is to protect the privacy of an individuals’ health information while at the same time permitting needed information to be disclosed for patient care and other purposes such as billing. Under the Privacy Rule, healthcare providers must implement necessary safeguards to protect the privacy of PHI.

HIPAA

HIPAA Compliance

Health IT Leadership’s Role in Patient Data Security and Privacy

Security and Privacy Hurdles Plaguing AI-Driven Health Services

Trending Sources

New Framework for Assessing the Privacy, Security, and Safety of Digital Health Technologies

HHS opens investigation into Change Healthcare cyberattack

ViVE 2023: Hospitals, health tech companies face shortages in data privacy, security talent. Recruiting 'outsiders' could be one fix

HHS urges patient education on privacy basics

Sharing hospital website user data with 3rd parties is common, study shows

Skyflow Secures $45M to Expand Health Data Privacy Vault – HLTH21

Privacy and Security — Protecting Patients’ Health Information

Study: Popular women's health apps don't meet basic privacy, security standards

ONC pubs Common Agreement v2.0, with regs for FHIR exchange

Sensitive Data Requires Great Responsibility: The Importance of ‘Privacy and Security by Design’ in Healthcare

HHS issues guidance on the use of online tracking tools in healthcare CRM

WebMD Ignite collaborates on data privacy in omnichannel outreach

Rethinking culture in healthcare cybersecurity strategy

Why HHS’ Cybersecurity Concept Paper Falls Short for Healthcare

HITECH Compliance

Diabetes WA reports hack and more briefs

Navigating the Interoperability Maze: 3 Key Challenges for Healthcare Providers and Payers

Protecting the Consumer at the Heart of DTC Precision Medicine

New healthcare privacy challenges as online data tracking, sharing methods evolve

HIPAA Compliance for Behavioral Health Billing

HIPAA Security Rule and Security Risk Assessments in Healthcare

Improving Cybersecurity and Increasing Accountability in 2024

Mitigating Risk and Reducing Costs with Smart Healthcare Records Management

HIMSS24 Cyber Forum keynote stresses collaboration on standards

Study: Popular women's health apps don't meet basic privacy, security standards

Interoperability, are we getting anywhere?

How a rushed California law will change the privacy and security landscape for mobile health apps

Cybersecurity and HIPAA Overview Training for Healthcare Personnel

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

Feds Launches Investigation of Change Healthcare Cybersecurity Attack

Health Systems Grapple with AI Governance: Balancing Promise and Risk

Will 2024 See True Value-Based Care Transformation?

Securing Healthcare Data in AWS: Best Practices and Compliance

Comparing HIPAA and NIST

FTC settles first case on privacy, security of genetic information with 1Health.io

HIPAA Compliance for Email

Guarding Patient Privacy in the Age of AI Healthcare

Email Accounts Compromised at UW Health and Medical Home Network

Truveta Unveils Largest Mother-Child EHR Dataset for Pregnancy and Pediatric Research

ATA takes a national stance on how states treat consumer health data

Nevada Joins Washington and Connecticut to Protect Consumer Health Data Privacy

What Are HIPAA Laws?

Stay Connected