By Chris Bowen – At the beginning of this year I said I would do a series of blog posts for CISOs and Privacy/Security Officers. Here was the first installment in that series: Building Habits for CISO and Security Officer Success.Read More
Health IT Security and Compliance
By Art Gross – A patient’s right to access their healthcare data so that they can make informed decisions regarding their own health and wellbeing is the component of HIPAA known as the HIPAA Right of Access.
By John Racine – Many healthcare organizations have started relying on contingent workers for a variety of reasons, including responding to talent shortages and addressing the rising costs of hiring full-time healthcare employees.
By Matt Fisher – The first HIPAA settlement of 2020 brings home a couple of key considerations for compliance. The first consideration is to be comfortable with one’s own level of adherence to HIPAA before filing a report (even a necessary one) that will inevitably result in an investigation.
By Art Gross – When an emergency situation occurs, like that of the recent Novel Coronavirus (2019-nCoV) outbreak that is said to have originated in mainland China, the healthcare industry is affected worldwide.
By Art Gross – What lies ahead for the healthcare industry in 2020? Like patient health, we can’t predict the future accurately, but we know that preventative care can go a long way when we know the risk factors.
By Matt Fisher – Who owns healthcare data? Who can access healthcare data? Who can control how healthcare data are used? Those three questions can form the basis for going into any number of directions in the discussion around healthcare data.
By Art Gross – As if the fear of the Coronavirus outbreak weren’t enough to have the world on edge, there’s a new way that the virus is impacting humans: through email cyber-attacks.
By Matt Fisher – When individuals seek access to medical records or information, the process can often prove frustrating and labyrinthine. The long and convoluted process can arise from an unintentional misunderstanding of HIPAA (or state law) requirements, or an absence of knowledge.