Watch out, HIPAA privacy and security officers. The criminals are coming, and they want to make money off of PHI your organization stores. It's one more thing to add to the growing list of compliance concerns covered entities (CE) and business associates (BA) have to worry about when protecting internal PHI.
You hear it over and over again. Covered Entity (CE) A failed to produce an ongoing risk assessment for HIPAA security compliance. CE B had an incomplete risk analysis, leading to a failure to recognize security weaknesses and vulnerabilities. And in come the fines.
Not all good solutions work in healthcare. Take Code42's CrashPlan Pro®. CrashPlan Pro gets high marks when it comes to supporting software as a service (SaaS)?based secure continuous backup. On the other hand, Code42 is currently unwilling to update its business associate agreement (BAA) to address conflicts with HIPAA requirements.