News & Analysis

Enforcing accountability: The role of sanction policies in healthcare cybersecurity

December 13, 2023
Briefings on HIPAA

HIPAA security compliance leaders should ensure that their organization’s sanction policies are well documented, transparent, understood by all workforce members, and applied consistently to reinforce a robust HIPAA compliance program.

HIPAA compliance in telehealth: Best practices for providers and patients

December 6, 2023
Briefings on HIPAA

The Office for Civil Rights recently issued two resources to help explain to patients the privacy and security risks associated with telehealth services, as related to personal health information.

HIPAA Q&A: Privacy challenges, business associates, and OCR audits

November 15, 2023
Briefings on HIPAA

Rebecca Herold, CDPSE, FIP, CISSP, CIPM, CIPP/US, CIPT, CISM, CISA, FLMI, answers submitted questions on a variety of HIPAA topics.

Cybersecurity on the mind: Key takeaways for HIPAA security officers from recent HHS reports

November 8, 2023
Briefings on HIPAA

HHS released two reports recently that provide in-depth insights and compliance tips to help healthcare covered entities contend with cybersecurity threats.

What covered entities need to know to overcome right of access challenges

November 1, 2023
Briefings on HIPAA

Healthcare covered entities continue to have trouble getting patients their medical records. Since 2019, when the Office for Civil Rights began its Right of Access initiative, the HIPAA privacy and security enforcer has settled 45 cases related to patient requests for medical records.

HIPAA Q&A: Celebrating Cybersecurity Awareness Month

October 18, 2023
Briefings on HIPAA

As the Office for Civil Rights celebrates Cybersecurity Awareness Month in October, review Briefings on HIPAA's best cybersecurity-related Q&As.

Pages