News & Analysis

Lessons found in OCR resolution agreements

June 1, 2014
Briefings on HIPAA

It's one of the most common questions privacy and security officers ask, and one I hear frequently myself: "How can I prepare for HIPAA compliance?"

Privacy and Security Primer

June 1, 2014
Briefings on HIPAA

Tips from this month's issue

Security Q&A: look at encryption, breaches, and policies

June 1, 2014
Briefings on HIPAA

A look at encryption, breaches, and policies

Mental health records, marketing, PHI disposal

May 1, 2014
HIM Briefings

Q: I work for a hospital with a geriatric psychiatry unit. Many patients are discharged to nursing homes.

What's that I read in the NPP?

May 1, 2014
Briefings on HIPAA

Q: My brother claims he read in his dentist's HIPAA statement that information was disclosed to CIA and other government agencies. I suspect that his dentist was editorializing, but wanted to check. Could you explain what should be included in a HIPAA statement that should be in physician/dentist offices? Can you direct me to the official statement?

ONC's risk assessment tool helps entities comply

May 1, 2014
Briefings on HIPAA

You hear it over and over again. Covered Entity (CE) A failed to produce an ongoing risk assessment for HIPAA security compliance. CE B had an incomplete risk analysis, leading to a failure to recognize security weaknesses and vulnerabilities. And in come the fines.

Pages