HIPAA Compliance


You Received a Letter from OCR, Now What?

By Matt Fisher – At some point in time most group practices, hospitals or other provider organizations will receive a letter from the OCR. The letter will state that OCR received a complaint from a patient, employee or some other party with knowledge or information as to alleged acts at the healthcare organization.


HIPAA Compliance and the HITECH Act in 2018

By Kayla Matthews – HIPAA compliance is an essential part of running a medical practice. The current incarnation of the HIPAA regulations has been in place since 2003 and they haven’t changed much in the intervening years — until now, that is.


Fulfilling a Promise: Big, Juicy HIPAA Fine

By Matt Fisher – The HHS Office for Civil Rights announced a $3.5 million settlement with Fresenius Medical Care Holdings, Inc. and five of its subsidiaries (collectively, Fresenius) following the report and investigation of five separate breach notifications.



The Great Digital Hope or Just Hype

By Matt Fisher – Healthcare has become the proverbial shiny object to many technology companies, both within and without of Silicon Valley. The technology companies seem to view healthcare as a great, untapped wilderness that is flush with potential profits.


Protecting ePHI in a BYOD World

When it comes to the use of mobile or portable devices for accessing patient healthcare records, a key official responsible for enforcing HIPAA compliance at…


Communication Breakdown: Fax Failure

By Matt Fisher – Healthcare entities have received another warning from the OCR concerning yet another aspect of HIPAA compliance. OCR’s settlement with St. Luke’s-Roosevelt Hospital Center focuses on controlling when and how PHI is released.