Most covered entities still use mailings to communicate with patients and members, so it is worth revisiting Aetna's 2017 mailing breach and the surrounding litigation to understand where negligence occurred and to take away some valuable lessons learned.
As coders mark the third anniversary this October of the U.S. implementation of ICD-10, its newly minted successor is waiting in the wings, nearly ready for adoption.
UMass Memorial Medical Group Inc. and UMass Memorial Medical Center Inc. reached a $230,000 settlement with the state of Massachusetts in response to two data breaches that exposed the personal health information of more than 15,000 Massachusetts residents.
Q: How long are we required to retain the records of out-of-state patients? Do we follow HIPAA’s record retention requirements, our state record retention requirements, or the record retention requirements of the state in which the patient lives?
