Among medical practices, there is widespread noncompliance with HIPAA’s right of access rule.
To make the best use of the money they have to spend, practices need to perform a risk analysis.
Health care organizations must determine where protective health information (PHI) is held and where those systems are vulnerable to breaches.
A quick, efficient response to a PHI breach can sometimes mean the difference between OCR pursuing a settlement or closing the HIPAA case.
More and more states have enacted laws calling for stricter breach-reporting requirements than HIPAA
In a recent press release, the federal Office for Civil Rights (OCR) announced it concluded 2018 with a record of $28.7 million from the settlement of 10 cases and the winning of a judgment in another regarding HIPAA compliance violations. The amount was 22% greater than its previous high of $23.5 million in 2016. These…
In addition to other input, the federal Office for Civil Rights wants to know how the privacy rule might be amended to encourage information sharing among providers.
Failure to categorize data is among the mistakes made in medical practices that could set the stage for violating patient confidentiality.
Staff at medical practices should be taught to recognize suspicious email messages
A study found that more than half of information breaches at health care organizations were due to internal issues such as sending emails to the wrong recipient.