HIPAA professionals all work to prevent their facilities from getting fined by OCR for violations of HIPAA’s Privacy, Security, and Breach Notification rules, but you need to stay up to date on what those penalties could be and where OCR stands on enforcement.
In June 2018, the state of California passed the California Consumer Privacy Act of 2018 (CaCPA), which has implications for healthcare professionals doing business in California, but with other states proposing similar bills, it’s worth taking a look to see what these privacy laws mean for HIPAA compliance and privacy more broadly.
It can be impractical for medical researchers to seek authorization from all the patients whose medical records are sought for a study. That’s why HIPAA allows researchers to use de-identified PHI from records without individual authorization.
In this month's security Q&A, our expert answers questions on smart devices used in residential care, security incidents vs. security breaches, clinical staff using personal cell phones, and more.