HIPAA and Medicaid - Health Care Compliance Brief

Agencies Call on Group Health Plan Sponsors to Extend Special Enrollment Period for Medicaid Redeterminations

Compliance Now

AUGUST 10, 2023

As background, according to federal Health Insurance Portability and Accountability Act (HIPAA) rules, individuals have 60 days from losing CHIP and Medicaid eligibility to elect coverage under their group plan. It is not mandatory that an employer extend their HIPAA special enrollment period beyond the existing 60-day requirement.

Medicaid

Medicaid Medicaid Compliance Health Insurance

HIPAA Compliance for Behavioral Health Billing

Medisys Compliance

APRIL 24, 2024

The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that safeguards the privacy of individuals’ health information, including mental health and substance abuse treatment records. Understanding and complying with HIPAA regulations is crucial for your practice. What is HIPAA?

HIPAA

HIPAA Compliance Medical Billing Outsourcing Medical Billing

What did the HIPAA Omnibus Rule Mandate?

HIPAA Journal

JANUARY 12, 2024

The HIPAA Omnibus Rule mandated modifications to the Privacy, Security, and Enforcement Rules in order to adopt measures passed in the HITECH Act, finalized the Breach Notification Rule, and added standards to account for the passage of the GINA Act. The adoption of a four-tired civil monetary penalty structure for violations of HIPAA.

HIPAA

HIPAA Compliance Health Insurance Medicaid

What is a HIPAA Violation?

HIPAA Journal

DECEMBER 31, 2022

To best answer the question what is a HIPAA violation, it is necessary to explain what HIPAA is, who it applies to, and what constitutes a violation; for although most people believe they know what a HIPAA compliance violation is, evidence suggests otherwise. What is HIPAA and Who Does It Apply To?

HIPAA

HIPAA Due Diligence Compliance Fraud

Clarifying the HIPAA Retention Requirements

HIPAA Journal

MARCH 31, 2023

The reason the HIPAA retention requirements needs clarifying is that the distinction between HIPAA medical records retention and HIPAA record retention can be confusing. Throughout the Administrative Simplification Regulations of HIPAA, there are several references to HIPAA data retention.

HIPAA

HIPAA Medicare Medicare Compliance

What is HIPAA?

HIPAA Journal

FEBRUARY 23, 2022

What is HIPAA? HIPAA is an acronym for the Health Insurance Portability and Accountability Act. So how did HIPAA evolve from being a vehicle for improving the portability and continuity of health insurance coverage to being one of the most comprehensive and detailed federal privacy laws? What is HIPAA Title II?

HIPAA

HIPAA Fraud Health Insurance Medicaid

Oklahoma State University Settles HIPAA Case with OCR for $875,000

HIPAA Journal

JULY 15, 2022

OCR launched a HIPAA investigation after receiving a breach report on January 5, 2018, in response to the hacking of an OSU-CHS web server. HIPAA-covered entities are vulnerable to cyber-attackers if they fail to understand where ePHI is stored in their information systems,” said OCR Director Lisa J. 164.502(a). 164.502(a).

HIPAA

HIPAA Compliance Medicaid Medicaid

What is HIPAA Enforcement Discretion?

HIPAA Journal

JUNE 26, 2023

HIPAA enforcement discretion occurs when the Secretary for Health and Human Services (HHS) announces the Department will exercise discretion in the enforcement of HIPAA Rules. Typically, Notices of Enforcement Discretion last between 72 hours and 60 days, are state or region-specific and apply to specific provisions of the HIPAA Rules.

HIPAA

HIPAA COVID-19 COVID-19 Vaccine Public Health

State of HIPAA – May 2023 Report

HIPAA Journal

MAY 29, 2023

It has been 27 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law, but compliance is still proving a challenge for many HIPAA-regulated entities. The average HIPAA penalty has fallen from $2.6 reduction in total penalties compared to 2018, falling from $28.7

HIPAA

HIPAA Compliance Due Diligence COVID-19

ILS Data Breach Affects Almost 21K Iowan Medicaid Recipients

HIPAA Journal

APRIL 14, 2023

The Iowa Department of Health and Human Services (DHHS) has confirmed that the personal information of 20,800 Iowans who receive Medicaid was exposed in a cyberattack at a subcontractor of one of its business associates between June 30, 2022, and July 5, 2022. Telligen performs annual assessments on Medicaid recipients for the Iowa DHSS.

Medicaid

Medicaid Medicaid Ransomware HIPAA

How Does HIPAA Compliance Affect Healthcare Facilities

MedTrainer

JANUARY 12, 2024

Healthcare facilities, from hospitals and clinics to insurance providers, are deeply affected by the regulations set forth by the Health Insurance Portability and Accountability Act (HIPAA). How does HIPAA compliance affect healthcare facilities? What is Healthcare Compliance?

HIPAA

HIPAA Compliance Health Insurance Hospitals

Oklahoma State University Agrees to $875k HIPAA Breach Fine

Compliancy Group

JULY 15, 2022

A 2016 hacking incident that hit Oklahoma State University’s Center for Health Sciences has led to an $875,000 HIPAA breach fine settlement to address potential violations. Background of Oklahoma State University HIPAA Breach. The university announced the HIPAA breach on January 5, 2018. failure to perform an evaluation .

HIPAA

HIPAA Medicaid Medicaid Compliance

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

HIPAA Journal

JUNE 8, 2023

The Iowa Department of Health and Human Services has announced there have been three separate breaches of the protected health information of Iowa Medicaid recipients in the past two months – two hacking incidents and an impermissible disclosure, all three of which involved third-party contractors.

Medicaid

Medicaid Medicaid Ransomware Health Insurance

How to Report a HIPAA Violation Anonymously

HIPAA Journal

DECEMBER 31, 2022

One of the questions we are sometimes asked is how to report a HIPAA violation anonymously. Consequently, it is not possible to report a HIPAA violation anonymously via the OCR Complaints Portal. HHS´ Office for Civil Rights is not the only “enforcer” of HIPAA. How Else to Report a HIPAA Violation Anonymously.

HIPAA

HIPAA Medicaid Medicaid Medicare

Understanding Sanction Screening: Safeguarding Healthcare Integrity Under HIPAA

Total Medical ComplianceHIPAA

JANUARY 11, 2024

HIPAA stands as a beacon of privacy and security standards within the industry. These screenings search through various databases containing records of individuals or organizations barred from participating in Medicaid, Medicare, or other federal/state healthcare programs due to fraud, abuse, or other offenses.

HIPAA

HIPAA Regulatory Compliance Malpractice Compliance

Virtual 40th National HIPAA Summit – Early Bird Discount Ends 2/3

HIPAA Journal

JANUARY 30, 2023

The National HIPAA Summit is the leading forum on healthcare EDI, privacy, breach notification, confidentiality, data security, and HIPAA compliance, and the deadline for registration for the Virtual 40th National HIPAA Summit is fast approaching.

US Department of Health and Human Services

US Department of Health and Human Services HIPAA Compliance Medicaid

L.A. Care Health Plan Settles Multiple HIPAA Security Rule Violations for $1.3 Million

HIPAA Journal

SEPTEMBER 11, 2023

Care Health Plan, has settled multiple violations of the HIPAA Privacy and Security Rules with the HHS’ Office for Civil Rights (OCR) and will pay a $1,300,000 penalty and adopt a robust corrective action plan. OCR determined that there had been several failures to fully comply with the requirements of the HIPAA Privacy and Security Rules.

HIPAA

HIPAA Compliance Medicaid Medicaid

4 Trusted HIPAA Compliance Resources Online

Compliancy Group

FEBRUARY 9, 2023

Navigating the complexities of HIPAA compliance takes work, especially for healthcare providers and their vendors. Because of the vague nature of the law and the fact that HIPAA compliance is an all-or-nothing endeavor, too many organizations depend on hope more than knowledge. Learn More × Get HIPAA Compliant! Please Wait.

HIPAA

HIPAA Compliance Regulations Compliance Medicaid

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

HIPAA Journal

NOVEMBER 21, 2022

million being defrauded from Medicaid, Medicare, and private health insurance programs. Five state Medicaid programs, two Medicare Administrative Contractors, and two private health insurers were tricked into changing the bank account details for payments. Medicare, Medicaid, and private health insurers suffered losses of more than $4.7

Medicaid

Medicaid Medicaid Medicare Medicare

Editorial: 5 Gaps in HIPAA and How They Are Being Filled

HIPAA Journal

OCTOBER 21, 2022

There are – and always have been – gaps in HIPAA and, after more than a quarter of a century, some have yet to be addressed. Most of the gaps in HIPAA are attributable to omissions from the original Act, provisions of HIPAA and HITECH that have never been enacted, and the increasing use of technology in healthcare.

HIPAA

HIPAA Compliance Medicare Medicare

L.A. Care must pay $1.3M settlement over data breaches that violated HIPAA: HHS

Fierce Healthcare

SEPTEMBER 11, 2023

million people in Medicaid, Medicare, and Affordable Care Act plans, was ordered to shore up its data protection systems. Care, which provides coverage for about 2.9

HIPAA

HIPAA Medicaid Medicaid Medicare

Deadline for Reporting Small HIPAA Breaches Is March 1st

Total HIPAA

JANUARY 18, 2022

HIPAA breaches involving fewer than 500 individuals which occurred during 2021 must be reported to the US Department of Health and Human Services (HHS) by Tuesday, March 1, 2022. Reporting HIPAA Breaches: When Should I Contact HHS? Reporting HIPAA Breaches: When Should I Contact HHS? Definition of HIPAA Breaches.

HIPAA

HIPAA US Department of Health and Human Services Compliance Medicaid

Advice for New Physicians on Avoiding Medicare and Medicaid Fraud and Abuse

HIPAA Journal

FEBRUARY 8, 2024

Department of Health & Human Services Office of Inspector General (HHS-OIG) has published a Roadmap for New Physicians on avoiding Medicare and Medicaid fraud and abuse. The post Advice for New Physicians on Avoiding Medicare and Medicaid Fraud and Abuse appeared first on HIPAA Journal.

Fraud

Fraud Medicaid Medicaid Medicare

Missouri Department of Social Services Confirms Medicaid Recipients’ Data Compromised in MOVEit Hacks

HIPAA Journal

AUGUST 10, 2023

Missouri Department of Social Services The Missouri Department of Social Services (DSS) has confirmed that the data of Medicaid recipients was compromised in the recent mass MOVEit hacks by the Clop threat group. It is currently unclear exactly how many Medicaid recipients were affected.

Medicaid

Medicaid Medicaid Health Insurance HIPAA

OCR Announces Resolutions to Eleven HIPAA Violations

Med-Net Compliance

JULY 25, 2022

The Office for Civil Rights (OCR) at the US Department of Health and Human Services (HHS) announced the resolution of eleven investigations in its Health Insurance Portability and Accountability Act (HIPAA) Right of Access Initiative, bringing the total number of these enforcement actions to thirty-eight since the initiative began.

HIPAA

HIPAA US Department of Health and Human Services Nursing Homes Nurses

Uber Health to add OTC meds, food delivery to its logistics platform

Healthcare It News

JUNE 13, 2023

Uber Health launched its HIPAA-enabled API and dashboard in 2018 to offer logistics services to population health management programs. KFF's online Medicaid Waiver Tracker has information on which state Medicaid programs are granted 1115 waivers.

Medicaid

Medicaid Medicaid HIPAA Hospitals

The New Search for Reproductive Justice in Old Laws

Bill of Health

OCTOBER 26, 2022

In the post- Dobbs fight to safeguard reproductive healthcare, a new spotlight has been placed on two existing federal laws: the Health Insurance Portability and Accountability Act (HIPAA) and the Emergency Medical Treatment and Active Labor Act (EMTALA). . OCR HIPAA Privacy Rule Guidance. The Old Laws.

HIPAA

HIPAA Medicare Medicare Medicaid

Forging a Secure Healthcare Future: HHS OCR Achieves Resolution with L.A. Care Health Plan in HIPAA Security Rule Case

Compliancy Group

SEPTEMBER 11, 2023

As guardians of privacy and security in the realm of protected health information (PHI), OCR enforces the HIPAA: Privacy Rule Security Rule Breach Notification Rule These set forth the mandatory obligations of HIPAA-regulated entities. Schedule a Demo See the software that makes getting compliant a breeze! Please Wait.

HIPAA

HIPAA Compliance Medicaid Medicaid

Health Data Analytics Firm Reports 1.1-Million Record MSP Data Breach

HIPAA Journal

APRIL 29, 2024

The information exposed or stolen in the incident included names, addresses, dates of birth, Social Security numbers, health insurance policy numbers, Medicare or Medicaid numbers, state or governmental ID numbers, passport numbers, and medical information. Million Record MSP Data Breach appeared first on HIPAA Journal.

Health Insurance

Health Insurance Health Analytics HIPAA Medicaid

Johns Hopkins Medicine Confirms More Than 310,400 Individuals Affected by MOVEit Hack

HIPAA Journal

AUGUST 14, 2023

Several other HIPAA-regulated entities have confirmed that they have been affected. The Colorado Department of Health Care Policy and Financing , which oversees the state’s Medicaid program and the Child Health Plan Plus (CHP+) program, was also affected. Maximus handles the department’s communications with Medicaid recipients.

Medicaid

Medicaid Medicaid HIPAA Health Insurance

Asynchronous Telehealth & Patient Privacy

AIHC

FEBRUARY 7, 2024

This article provides a basic overview of Artificial Intelligence, Telehealth, Asynchronous Services and HIPAA privacy concerns. Medicaid policies on this issue vary from state to state. Address HIPAA and Privacy Concerns Technology considerations The telehealth platform you use should meet HIPAA requirements.

HIPAA

HIPAA Medicaid Medicaid Telemedicine

OCR Releases Guidance on HIPAA Compliance When Providing Audio-Only Telehealth

Health Law RX

JUNE 28, 2022

The Guidance is the strongest signal yet from OCR that it intends to resume imposing penalties against covered entities that do not comply with the HIPAA Rules when providing telehealth. The Guidance is meant to assist covered entities with HIPAA compliance when the Telehealth Notification (defined below) is no longer in effect.

HIPAA

HIPAA Compliance COVID-19 Medicaid

Records of 4 Million Coloradans Compromised in MOVEit Transfer Attack

HIPAA Journal

AUGUST 14, 2023

The Colorado Department of Health Care Policy and Financing (HCPF), which oversees the state’s Medicaid program and the Child Health Plan Plus (CHP+) program, has recently confirmed that the protected health information of 4,091,794 individuals was compromised. Maximus handles the department’s communications with Medicaid recipients.

Medicaid

Medicaid Medicaid HIPAA Health Insurance

Asynchronous Telehealth & Patient Privacy

AIHC

FEBRUARY 7, 2024

This article provides a basic overview of Artificial Intelligence, Telehealth, Asynchronous Services and HIPAA privacy concerns. Medicaid policies on this issue vary from state to state. Address HIPAA and Privacy Concerns Technology considerations The telehealth platform you use should meet HIPAA requirements.

HIPAA

HIPAA Medicaid Medicaid Telemedicine

HITECH Compliance

AIHC

APRIL 10, 2024

HITECH is a critical aspect of the Health Insurance Portability & Accountability Act (HIPAA). Since 2009, HITECH has given “teeth” to HIPAA law. What’s the difference between HIPAA and HITECH? HIPAA guarantees patients access to their paper medical records. Understanding HIPAA is crucial.

Compliance

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records

Security Breaches in Healthcare in 2023

HIPAA Journal

JANUARY 31, 2024

In the paper, the HHS indicated it will be adopting a carrot-and-stick approach by developing voluntary Healthcare and Public Health (HPH) Sector Cybersecurity Goals (CPGs) that consist of cybersecurity measures that will have the greatest impact on security along with an update to the HIPAA Security Rule to add new cybersecurity requirements.

Ransomware

Ransomware HIPAA Hospitals Compliance

AHA, AMA, BCBSA Urge CMS Not to Adopt Proposed Standards for Healthcare Attachments

HIPAA Journal

JULY 28, 2023

The HHS’ Centers for Medicare and Medicaid Services (CMS) is being urged not to implement the proposed standards for prior authorization attachments, as detailed in its December 2022 Notice of Proposed Rulemaking (NPR). As such, the AHA, AMA, and BCBSA strongly advise against the adoption of the standards for prior authorization attachments.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

Protecting the Consumer at the Heart of DTC Precision Medicine

Bill of Health

OCTOBER 27, 2023

The HIPAA Problem The privatization of next-generation medical technologies, especially in regenerative and precision medicine, further muddies the data-protection waters. In the context of health, let alone highly sophisticated cell signaling and microenvironment data, the web gets even more tangled.

HIPAA

HIPAA FDA Informed Consent Health Insurance

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

HIPAA Journal

OCTOBER 7, 2022

On August 5, 2022, Anthem discovered that an unauthorized individual had gained access to a database and downloaded files containing plan members’ protected health information, including names, addresses, dates of birth, phone numbers, email addresses, Medicare ID numbers, and Medicaid ID numbers.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

Great Valley Cardiology Notifies 181,700+ Individuals About PHI Exposure

HIPAA Journal

JUNE 16, 2023

Further information on the data breach has been covered by The HIPAA Journal here. The letters included Medicaid benefit information, although only around 200 of the 5,800 individuals affected had either their Medicare health insurance claim number (HICN) or Social Security number disclosed.

Medicaid

Medicaid Medicaid HIPAA Health Insurance

EHNAC and CARIN Alliance launch new accreditation program

Healthcare It News

OCTOBER 4, 2022

The Electronic Healthcare Network Accreditation Commission and The CARIN Alliance have partnered to bring both the CARIN Code of Conduct and EHNAC’s criteria review process to health plans, health systems, EHR vendors and others for reporting to the Centers for Medicare & Medicaid Services on their data practices and privacy protections.

COVID-19 Vaccine

COVID-19 Vaccine Medicaid Medicaid COVID-19

Everything You Need To Know About NPI Numbers

Verisys

NOVEMBER 8, 2023

CMS.gov The Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the creation of a standard, unique health identifier for healthcare providers, which the NPI satisfies. While health plans may use other numbers internally, the NPI is mandatory for HIPAA transactions.

Fraud

Fraud HIPAA Medicare Medicare

Hospitals Notify Patients About 2021 Phishing Attack on Adelanto HealthCare Ventures

HIPAA Journal

APRIL 4, 2023

The compromised information included the following data elements: Name, facility name, Medicaid claim ID, Medicaid client ID, care plan name, Medicaid program, gender, date of birth, admission and discharge date, medical and diagnosis information, and mental health comorbidity.

Hospitals

Hospitals Medicaid Medicaid HIPAA

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

HIPAA Journal

MARCH 15, 2023

The United States Department of Justice has agreed to settle alleged False Claims Act violations with Jelly Bean Communications Design LLC and manager Jeremy Spinks related to the failure to protect HIPAA-covered data. FHKC receives Medicaid funds and state funds for providing health insurance programs for children in Florida.

Health Insurance

Health Insurance HIPAA Due Diligence Fraud

Agencies Call on Group Health Plan Sponsors to Extend Special Enrollment Period for Medicaid Redeterminations

HIPAA Compliance for Behavioral Health Billing

Trending Sources

What did the HIPAA Omnibus Rule Mandate?

What is a HIPAA Violation?

Clarifying the HIPAA Retention Requirements

What is HIPAA?

Oklahoma State University Settles HIPAA Case with OCR for $875,000

What is HIPAA Enforcement Discretion?

State of HIPAA – May 2023 Report

ILS Data Breach Affects Almost 21K Iowan Medicaid Recipients

How Does HIPAA Compliance Affect Healthcare Facilities

Oklahoma State University Agrees to $875k HIPAA Breach Fine

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

How to Report a HIPAA Violation Anonymously

Understanding Sanction Screening: Safeguarding Healthcare Integrity Under HIPAA

Virtual 40th National HIPAA Summit – Early Bird Discount Ends 2/3

L.A. Care Health Plan Settles Multiple HIPAA Security Rule Violations for $1.3 Million

4 Trusted HIPAA Compliance Resources Online

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

Editorial: 5 Gaps in HIPAA and How They Are Being Filled

L.A. Care must pay $1.3M settlement over data breaches that violated HIPAA: HHS

Deadline for Reporting Small HIPAA Breaches Is March 1st

Advice for New Physicians on Avoiding Medicare and Medicaid Fraud and Abuse

Missouri Department of Social Services Confirms Medicaid Recipients’ Data Compromised in MOVEit Hacks

OCR Announces Resolutions to Eleven HIPAA Violations

Uber Health to add OTC meds, food delivery to its logistics platform

The New Search for Reproductive Justice in Old Laws

Forging a Secure Healthcare Future: HHS OCR Achieves Resolution with L.A. Care Health Plan in HIPAA Security Rule Case

Health Data Analytics Firm Reports 1.1-Million Record MSP Data Breach

Johns Hopkins Medicine Confirms More Than 310,400 Individuals Affected by MOVEit Hack

Asynchronous Telehealth & Patient Privacy

OCR Releases Guidance on HIPAA Compliance When Providing Audio-Only Telehealth

Records of 4 Million Coloradans Compromised in MOVEit Transfer Attack

Asynchronous Telehealth & Patient Privacy

HITECH Compliance

Security Breaches in Healthcare in 2023

AHA, AMA, BCBSA Urge CMS Not to Adopt Proposed Standards for Healthcare Attachments

Protecting the Consumer at the Heart of DTC Precision Medicine

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

Great Valley Cardiology Notifies 181,700+ Individuals About PHI Exposure

EHNAC and CARIN Alliance launch new accreditation program

Everything You Need To Know About NPI Numbers

Hospitals Notify Patients About 2021 Phishing Attack on Adelanto HealthCare Ventures

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

Stay Connected