HIPAA Journal

MARCH 7, 2022

The development, implementation, and enforcement of HIPAA policies and procedures is the cornerstone of HIPAA compliance. The requirement to develop, implement, and enforce HIPAA policies and procedures appears in the very first standard of the Administrative Requirements of the Privacy Rule ( 45 CFR § 164.530 ).

HIPAA 128

HIPAA Compliance 128

MedTrainer

FEBRUARY 19, 2024

The Health Insurance Portability and Accountability Act (HIPAA) has been a cornerstone healthcare regulation since 1996. Twenty-eight years later, the importance of HIPAA compliance in healthcare has not waned. What is HIPAA? OCR inspectors will assess your organization’s internal processes for handling patient data.

HIPAA 52

HIPAA Compliance Health Insurance Governance 52

HIPAA Journal

MAY 29, 2023

It has been 27 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law, but compliance is still proving a challenge for many HIPAA-regulated entities. The average HIPAA penalty has fallen from $2.6 reduction in total penalties compared to 2018, falling from $28.7

HIPAA 96

HIPAA Compliance Due Diligence COVID-19 96

MedTrainer

JANUARY 26, 2024

In the realm of healthcare, ensuring the privacy and security of patients’ sensitive medical information is of paramount importance. To safeguard this critical aspect of patient care, the Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996. Who enforces HIPAA compliance in healthcare?

HIPAA 52

HIPAA Compliance Health Insurance Compliance Officers 52

HIPAA Journal

APRIL 28, 2023

Healthcare hacking incidents are increasing, there are new regulatory requirements and compliance initiatives due to Dobbs and Pixel use, and lawsuits against healthcare organizations over privacy violations are soaring. That surge has coincided with increases in ransom demands, paid ransoms, and ransomware recovery times.

HIPAA 102

HIPAA Ransomware Compliance Hospitals 102

HIPAA Journal

JANUARY 30, 2023

The National HIPAA Summit is the leading forum on healthcare EDI, privacy, breach notification, confidentiality, data security, and HIPAA compliance, and the deadline for registration for the Virtual 40th National HIPAA Summit is fast approaching.

US Department of Health and Human Services 84

US Department of Health and Human Services HIPAA Compliance Medicaid 84

HIPAA Journal

DECEMBER 31, 2022

All HIPAA covered entities must familiarize themselves with the HIPAA breach notification requirements and develop a breach response plan that can be implemented as soon as a breach of unsecured protected health information (PHI) is discovered. Summary of the HIPAA Breach Notification Rule.

HIPAA 121

HIPAA Compliance Ransomware 121

HIPAA Journal

APRIL 11, 2023

The HHS’ Office for Civil Rights (OCR) has confirmed that the Notifications of Enforcement Discretion that were issued in response to the COVID-19 Public Health Emergency will expire one month from today, at 11:59 pm on May 11, 2023. The transition period starts on May 12, 2023, and expires at 11:59 pm on August 9, 2023.

COVID-19 104

COVID-19 HIPAA COVID-19 Vaccine Public Health 104

AIHC

APRIL 10, 2024

Checklist for Individual & Small Group Practices Written by: Nancie Lee Cummins, CFE, CHA, CIFHA, OHCC, CHCM, CHCO, CORCM This article provides an overview of Health Information Technology for Economic and Clinical Health Act (HITECH) and basic checklist of policies and procedures for compliance of smaller health care organizations.

Compliance 52

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records 52

HIPAA Journal

DECEMBER 31, 2022

To best answer the question what is a HIPAA violation, it is necessary to explain what HIPAA is, who it applies to, and what constitutes a violation; for although most people believe they know what a HIPAA compliance violation is, evidence suggests otherwise. What is HIPAA and Who Does It Apply To?

HIPAA 134

HIPAA Due Diligence Compliance Fraud 134

HIT Consultant

APRIL 25, 2023

healthcare companies must comply with the data security and privacy standards defined by the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The purpose of the legislation is to safeguard the privacy and security of protected health information (PHI) and electronic protected health information (ePHI).

HIPAA 94

HIPAA Compliance Health Insurance 94

HIPAA Journal

APRIL 24, 2023

If you are a HIPAA-covered entity and use tracking technologies on your websites or apps, you must ensure that they are HIPAA-compliant. OCR has recently undergone restructuring to improve efficiency which will allow it to undertake more enforcement actions against HIPAA-regulated entities for non-compliance with the HIPAA Rules.

HIPAA 95

HIPAA Compliance Hospitals 95

HIPAA Journal

OCTOBER 21, 2022

There are – and always have been – gaps in HIPAA and, after more than a quarter of a century, some have yet to be addressed. Most of the gaps in HIPAA are attributable to omissions from the original Act, provisions of HIPAA and HITECH that have never been enacted, and the increasing use of technology in healthcare.

HIPAA 98

HIPAA Compliance Medicare Medicare 98

Healthcare IT News - Telehealth

JUNE 15, 2022

Department of Health and Human Services has issued new guidance describing how HIPAA covered entities can use remote communication technologies to provide audio-only telehealth services. WHY IT MATTERS. THE LARGER TREND. ON THE RECORD.

HIPAA 109

HIPAA Compliance Public Health 109

HIPAA Journal

JULY 15, 2023

We have compiled these HIPAA Compliance Guidelines because HIPAA rules and regulations can be very confusing for healthcare professionals tasked with ensuring HIPAA compliance at their organization. Please use the form on this page to arrange to receive a free copy of the HIPAA Guidelines Checklist.

HIPAA 82

HIPAA Compliance Compliance Officers Licensing 82

HIPAA Journal

DECEMBER 30, 2022

Avalon Healthcare has agreed to settle alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) and state laws with the Oregon and Utah Attorneys General that were uncovered during an investigation of a 2019 breach of the personal and protected health information of 14,500 of its employees and patients.

HIPAA 74

HIPAA Compliance Compliance Officers Licensing 74

HIPAA Journal

MARCH 31, 2023

The reason the HIPAA retention requirements needs clarifying is that the distinction between HIPAA medical records retention and HIPAA record retention can be confusing. Throughout the Administrative Simplification Regulations of HIPAA, there are several references to HIPAA data retention.

HIPAA 129

HIPAA Medicare Medicare Compliance 129

HIPAA Journal

MAY 18, 2022

On July 1, 2022, updated data breach notification laws (HB 1351) will take effect in Indiana that require notifications to be issued within 45 days of the discovery of a breach of the personally identifiable information (PII) of Indiana residents. Breaches must also be reported to the state attorney general.

HIPAA 79

HIPAA Licensing Health Insurance Compliance 79

Healthcare IT Today

NOVEMBER 30, 2023

This information must be protected to avoid any legal implications and ensure compliance with privacy regulatory laws, like the Health Insurance Portability and Accountability Act (HIPAA). To implement AWS security best practices , you must understand how the platform allows for enhanced security. What is HIPAA?

Compliance 87

Compliance HIPAA Health Insurance Hospitals 87

Compliancy Group

JANUARY 14, 2022

is facing a data breach lawsuit following an August cyberattack that may have compromised the privacy of 319,778 patients. Background of QRS Data Breach Lawsuit. The Knoxville, Tennessee-based company immediately shut down the server and notified law enforcement. Claims Made in QRS Data Breach Lawsuit.

HIPAA 98

HIPAA Compliance Ransomware 98

Compliancy Group

FEBRUARY 9, 2023

Navigating the complexities of HIPAA compliance takes work, especially for healthcare providers and their vendors. Because of the vague nature of the law and the fact that HIPAA compliance is an all-or-nothing endeavor, too many organizations depend on hope more than knowledge. Learn More × Get HIPAA Compliant!

HIPAA 52

HIPAA Compliance Regulations Compliance Medicaid 52

Health Law RX

JULY 31, 2023

The Joint Letter With the letter, the FTC and OCR draw recipients’ attention to “serious privacy and security risks related to the use of online tracking technologies” that are “impermissibly disclosing consumers’ sensitive personal health information to third parties.”

HIPAA 52

HIPAA Hospitals Compliance Compliance Officers 52

HIPAA Journal

FEBRUARY 10, 2023

Achieving compliance with the Rules of the Health Insurance Portability and Accountability Act (HIPAA) can be a challenge for healthcare organizations and their business associates. One of the biggest challenges for compliance professionals is interpreting the HIPAA Rules and applying those requirements to their organization.

HIPAA 104

HIPAA Compliance Compliance Officers Health Insurance 104

Compliancy Group

AUGUST 7, 2023

Department of Health and Human Services’ Office for Civil Rights (OCR) and the Federal Trade Commission (FTC) are warning hospitals and telehealth providers about security risks and privacy risks posed by online tracking technologies. Companies that HIPAA does not regulate must also use tracking technologies appropriately.

HIPAA 52

HIPAA Compliance Hospitals 52

Compliancy Group

MARCH 3, 2023

In February 2023, the HHS Office for Civil Rights released two reports to Congress, one of which discusses HIPAA complaints ( HIPAA Privacy, Security, and Breach Notification Rule Compliance ) and the other discussing healthcare breaches ( Breaches of Unsecured Protected Health Information ).

HIPAA 52

HIPAA Compliance 52

Compliancy Group

SEPTEMBER 27, 2023

This unfortunate incident has led to the breach notification of over 1.2 Although the vulnerability has since been addressed, the repercussions continue to unfold as breach notifications flood. Upon discovering the breach on May 31, 2023, Nuance wasted no time. Please Wait. Something is wrong with your submission.

HIPAA 52

HIPAA Compliance Health Insurance Fraud 52

HIPAA Journal

FEBRUARY 28, 2023

The FTC also took issue with GoodRx displaying a seal on its website confirming the company was “HIPAA Secure: Patient Data Protected”, which indicated that GoodRx was a covered entity under HIPAA when it was not and that it was compliant with the HIPAA Rules when it wasn’t.

HIPAA 108

HIPAA Doctors Compliance 108

MedTrainer

MARCH 8, 2024

Employee compliance training is essential to any healthcare organization’s onboarding process. This blog post will explore why compliance training is vital for an industry where mistakes or non-compliance can seriously affect patients, staff, and the organization.

Compliance 52

Compliance Fraud Governance HIPAA 52

Compliancy Group

SEPTEMBER 11, 2023

This agreement stems from two OCR investigations triggered by a significant breach report and an eye-opening media article highlighting a distinct security incident. This agreement stems from two OCR investigations triggered by a significant breach report and an eye-opening media article highlighting a distinct security incident.

HIPAA 52

HIPAA Compliance Medicaid Medicaid 52

American Medical Compliance

FEBRUARY 23, 2023

The HIPAA Regulations and Cybersecurity Training for Dental Healthcare Personnel course educates employees and management on how to be compliant with the Health Insurance Portability and Accountability Act (HIPAA). HIPAA is a federal law that protects patient security in multiple different ways.

HIPAA 52

HIPAA Compliance Governance Health Insurance 52

Compliancy Group

JANUARY 8, 2024

HIPAA fines are issued for various reasons and are usually the result of a settlement to end an Office for Civil Rights (OCR) investigation. OCR investigates organizations when breaches occur, or there is a complaint by a patient or employee. OCR then brought an enforcement action, which was resolved through settlement.

HIPAA 52

HIPAA Ransomware COVID-19 Doctors 52

HIPAA Journal

DECEMBER 2, 2022

The HHS’ Office for Civil Rights has issued a bulletin confirming that the use of third-party tracking technologies on websites, web applications, and mobile apps without a business associate agreement (BAA) is a HIPAA violation if the tracking technology collects and transmits individually identifiable health information.

HIPAA 107

HIPAA Compliance Hospitals Fraud 107

Health Law RX

APRIL 27, 2023

On April 11, 2023, the Department of Health and Human Services’ Office for Civil Rights (OCR) confirmed that four notifications of enforcement discretion regarding enforcement of the HIPAA Privacy, Security, and Breach Notification Rules (the HIPAA rules) during the COVID-19 public health emergency (PHE) will expire at the end of the PHE.

COVID-19 52

COVID-19 COVID-19 Vaccine HIPAA Public Health 52

HIPAA Journal

APRIL 20, 2023

Our monthly data breach reports are based on data breaches of 500 or more records that have been reported to the Department of Health and Human Services’ Office for Civil Rights (OCR) each month. The monthly reports provide an indication of the extent to which healthcare data breaches are increasing, decreasing, or remaining flat.

US Department of Health and Human Services 102

US Department of Health and Human Services Ransomware HIPAA Hospitals 102

HIPAA Journal

MAY 5, 2023

Compliancy Group has recently assessed Lez Van De Mortel LLC and determined that the company has implemented an effective HIPAA compliance program and is fully compliant with the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules, and has achieved compliance with the regulatory standards of the HITECH Act.

HIPAA 52

HIPAA Compliance 52

HIPAA Journal

FEBRUARY 23, 2022

What is HIPAA? HIPAA is an acronym for the Health Insurance Portability and Accountability Act. So how did HIPAA evolve from being a vehicle for improving the portability and continuity of health insurance coverage to being one of the most comprehensive and detailed federal privacy laws? What is HIPAA Title II?

HIPAA 90

HIPAA Fraud Health Insurance Medicaid 90

Healthcare IT Today

JANUARY 27, 2023

Even an ‘Internal Breach’ is a Breach According to an announcement on its website , Alabama-based DCH Health Systems fired an employee for accessing and viewing over 2,500 patient records “without a legitimate business need related to the employee’s job duties.” HIPAA includes a requirement for MINIMUM NECESSARY ACCESS.

HIPAA 89

HIPAA Nurses Hospitals Doctors 89