Regardless of the challenges a smaller group might have, a risk assessment is a baseline for any HIPAA program. The cost of this assessment is considerably less than a HIPAA fine.
NRC Health, a software and patient satisfaction survey provider holding data from more than 25 million patients, was locked out of its computer system in February because of a ransomware attack. When a breach like this occurs, the fault (at least in the eyes of the federal Office for Civil Rights [OCR]) tends to land…
The US Department of Health and Human Services has given healthcare providers more latitude in delivering care via telemedicine.
Providers need to verify as best they can that apps they are using or offering patients are HIPAA compliant.
HIPAA-related lawsuits came to the attention of Alexander Wolff when a fellow attorney called him with a case a few years ago. The plaintiff was a woman and friend of a man who was dating a nurse. The nurse, who worked at a hospital where the plaintiff received healthcare, was suspicious that the plaintiff and…
Use staff meetings or emails to keep current issues like phishing or social engineering in front of employees.
To shed light on issues of cybersecurity in medical practices, MPR spoke to Michael J Sacopulos, JD, CEO of Medical Risk Institute (MRI), a firm that provides “proactive counsel” to the healthcare community to identify where liability risks originate and to reduce or remove those risks.
The federal Office for Civil Rights fined Sentara Hospitals nearly $2.2 million for mailing protected health information to wrong addresses.
New study finds that steps taken to beef up security in response to a breach has the potential to slow down delivery of clinical services.
Organizations can take steps to reduce the likelihood that employees will inadvertently click on a malicious link.