The New York City Fire Department (FDNY), which operates ambulances, disclosed in August that 10,253 patients treated or transported by the FDNY from 2011 to 2018 may have had their protected health information (PHI) compromised after an external hard drive containing unencrypted data went missing in March, according to an FDNY press release.
Q: Is there anything that a hospital needs to do regarding HIPAA and the confidentiality of famous patients? Obviously employees shouldn’t snoop, but can you recommend any added protections?
A Kentucky community health center paid hackers $70,000 in bitcoin to regain access to its computer systems after suffering its second ransomware attack in three months.
U.S. District Court Judge Michael H. Simon issued preliminary approval on July 29 of an agreement that would require Premera Blue Cross to pay $74 million to settle a class-action lawsuit resulting from a 2015 data breach.
HIPAA training is required by the HIPAA rules, under § 164.530, Administrative requirements. But just because it’s required doesn’t mean it has to be repetitive, boring, or unappealing. There are ways to make your healthcare staff excited about HIPAA training. At the very least, you can do your part to make sure they’re engaged.
OCR in 2013, through the Health Information Technology for Economic and Clinical Health (HITECH) Ac,t issued a final rule identifying provisions of the HIPAA rules that apply directly to business associates (BA) and those provisions for which BAs are directly liable.
