By Art Gross – The Health Insurance Portability and Accountability Act, or as it is commonly known as HIPAA, was created to set standards nationally. These are in place to protect the personal health information and medical records of individuals as well as give them access easily. As the March 1st deadline for reporting a breach draws closer…Read More
By Art Gross – The HIPAA Breach Notification Rule is a requirement put in place that requires HIPAA-covered entities and their business associates to “provide notification following a breach of unsecured protected health information.”
By Matt Fisher – The first HIPAA settlement of 2020 brings home a couple of key considerations for compliance. The first consideration is to be comfortable with one’s own level of adherence to HIPAA before filing a report (even a necessary one) that will inevitably result in an investigation.
By Art Gross – If in 2019 you had a HIPAA breach that affected fewer than 500 individuals, you must report that to the US Department of Health and Human Services (HHS) by Saturday, February 29, 2020.
It has been four years since our first panel discussion addressing the growing and alarming rise of cybersecurity threats to healthcare. Yet, despite the addition of security protocols, and training to thwart hacking incidents, the industry continues to be plagued.
By Matt Fisher – Healthcare organizations are learning tough lessons that actions of employees can come back with serious consequences to the organization. When it comes to maintaining the privacy and security of patient data, no action comes without a consequence.
We regularly publish resources on cybersecurity to help physician practices, hospitals and business associates understand how to best thwart attacks and minimize exposure if there is a breach.
By Matt Fisher – The HHS Office for Civil Rights announced a $3.5 million settlement with Fresenius Medical Care Holdings, Inc. and five of its subsidiaries (collectively, Fresenius) following the report and investigation of five separate breach notifications.
By Art Gross – Billion-dollar EHR company Allscripts has fallen victim to a ransomware attack, which began on Thursday, January 18 around 2:00 am EST. By 6:00 am EST, the ransomware attack was full-blown requiring Microsoft and Cisco’s incident response teams to be called upon for assistance.