HIPAA

In this article, we continue our examination of HHS’ reports to Congress regarding HIPAA compliance and data from 2021, specifically focusing on the HIPAA Privacy, Security, and Breach Notification Rule Compliance report released in February.  

In February, HHS published two reports covering HIPAA privacy and security compliance and breaches of protected health information to help HIPAA compliance privacy and security professionals better conduct their roles.

This month, we’ve compiled some questions for HIPAA security and privacy officers to consider when trying to strengthen compliance in their organizations.

OCR released its “Improving Cybersecurity Posture in Healthcare for 2022” news bulletin last February, noting that healthcare organizations are prime targets for cyberattacks due to the sensitive nature of the data they hold.

The Office for Civil Rights (OCR) has announced two resolutions for potential HIPAA violations two months into 2023. These resolutions fall at opposite ends of the HIPAA compliance spectrum—cybersecurity and medical record access. Each is focused on the goal of protecting patient privacy.

Rebecca Herold, CDPSE, FIP, CISSP, CIPM, CIPP/US, CIPT, CISM, CISA, FLMI, answers submitted questions on a variety of HIPAA topics.

What changes will be made to HIPAA compliance in 2023? Looking back at OCR’s compiled data on the topic may provide some insight.

The Office for Civil Rights finished 2022 with some enforcement action relating to the HIPAA Security and Privacy Rule enforcer’s Right of Access Initiative.

Julia Huddleston, CIPP/US, CIPM, CCSFP, answers submitted questions on a variety of HIPAA topics.

When it comes to HIPAA compliance, there’s always something new to learn. In 2022, Paubox, a security provider, reported more than 3 million people were affected by breaches involving electronic medical records.