News & Analysis

HIPAA security made simple: Tips for compliance

May 1, 2014
HIM Briefings

The HIPAA Security Rule preamble reinforces training "criticality" and restates the standard, "We require training of the workforce as reasonable and appropriate to carry out their functions in the facility." Security training is essential.

Privacy and Security Primer

April 1, 2014
Briefings on HIPAA

Tips from this month's issue

Wisconsin hospital restricts the use of thumb drives for storing PHI

April 1, 2014
Briefings on HIPAA

Rick Ensenbach, CISSP-ISSMP, CISA, CISM, CCSFP, has one word for the HIPAA breach posted to OCR's wall of shame at the close of 2013: depressing.

Compliance after the Omnibus Rule

April 1, 2014
HIM Briefings

The HIPAA Omnibus Rule has brought significant changes to the HIPAA landscape for covered entities (CE) and their business associates (BA).

USB drives, BA breaches, securing SMS messages

April 1, 2014
Briefings on HIPAA

Q: Our organization does not support the use of USB drives. Is that typical?

Digging into the TSS fine - is it too much?

April 1, 2014
Briefings on HIPAA

Sending out a mass mailing of a pamphlet that contained Medicare beneficiary numbers resulted in a civil monetary penalty of $6,768,000 for Triple-S Salud, Inc. (TSS), a Puerto Rican health insurance subsidiary.

Pages