News & Analysis

November 23, 2020
Briefings on HIPAA

Q: If we end a contract with a business associate (BA), does the BA need to provide us with assurance that all protected health information (PHI) has been destroyed? Is this something that should be written into the initial contract? What are the steps to take if the BA does not respond to requests to confirm deletion of PHI?

November 19, 2020
News & Insights

Q: What type of information can be sent to patients via unencrypted email?

November 16, 2020
Briefings on HIPAA

As we cope with the COVID-19 pandemic, it is important to take a few extra measures to protect your organization, your patients, and your clients—as well as your data.

November 12, 2020
News & Insights

Q: What are the essential steps when conducting a risk analysis? Are there any sample tools out there to provide guidance on best practices for risk analyses? How often should organizations be conducting these tests?

November 9, 2020
Briefings on HIPAA

The complexity and competitiveness of today’s business environment require that organizations have early warning systems to identify times when they face certain risks. Compliance officers should be active participants in the organization’s risk assessment process.

November 5, 2020
News & Insights

Q: Workers will likely remain remote for the foreseeable future, but as coffee shops and restaurants begin to reopen, it’s possible that employees may be accessing protected health information (PH)  in these locations. While it is best practice to avoid doing this altogether, what should employees do to avoid exposing PHI in this scenario?

Pages