News & Analysis

Privacy and Security Primer

May 1, 2014

Briefings on HIPAA

Tips from this month's issue

ONC's risk assessment tool helps entities comply

May 1, 2014

Briefings on HIPAA

You hear it over and over again. Covered Entity (CE) A failed to produce an ongoing risk assessment for HIPAA security compliance. CE B had an incomplete risk analysis, leading to a failure to recognize security weaknesses and vulnerabilities. And in come the fines.

Compliance after the Omnibus Rule

April 1, 2014

HIM Briefings

The HIPAA Omnibus Rule has brought significant changes to the HIPAA landscape for covered entities (CE) and their business associates (BA).

Wisconsin hospital restricts the use of thumb drives for storing PHI

April 1, 2014

Briefings on HIPAA

Rick Ensenbach, CISSP-ISSMP, CISA, CISM, CCSFP, has one word for the HIPAA breach posted to OCR's wall of shame at the close of 2013: depressing.

USB drives, BA breaches, securing SMS messages

April 1, 2014

Briefings on HIPAA

Q: Our organization does not support the use of USB drives. Is that typical?

Finish these sentences

April 1, 2014

Briefings on HIPAA

We ask one BOH advisory board member and columnist to answer some questions about how the roles of CEs and BAs have changed over the years.

News & Analysis

Privacy and Security Primer

ONC's risk assessment tool helps entities comply

Compliance after the Omnibus Rule

Wisconsin hospital restricts the use of thumb drives for storing PHI

USB drives, BA breaches, securing SMS messages

Finish these sentences

Pages